CVE-2011-1027
First published: Mon Feb 28 2011(Updated: )
Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3.5 allows remote attackers to cause a denial of service (infinite loop) via a string composed of a % (percent) character followed by invalid hex characters, as demonstrated by a %gg sequence.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| cgit by Lars Hjemli | =0.7.1 | |
| cgit by Lars Hjemli | =0.8.3.1 | |
| cgit by Lars Hjemli | =0.6.1 | |
| cgit by Lars Hjemli | =0.6 | |
| cgit by Lars Hjemli | =0.8 | |
| cgit by Lars Hjemli | =0.3 | |
| cgit by Lars Hjemli | =0.5 | |
| cgit by Lars Hjemli | =0.8.1.1 | |
| cgit by Lars Hjemli | =0.2 | |
| cgit by Lars Hjemli | =0.8.3.2 | |
| cgit by Lars Hjemli | =0.8.3 | |
| cgit by Lars Hjemli | =0.1 | |
| cgit by Lars Hjemli | =0.6.2 | |
| cgit by Lars Hjemli | =0.8.2.2 | |
| cgit by Lars Hjemli | =0.7.2 | |
| cgit by Lars Hjemli | =0.4 | |
| cgit by Lars Hjemli | =0.8.2 | |
| cgit by Lars Hjemli | =0.8.1 | |
| cgit by Lars Hjemli | =0.8.3.3 | |
| cgit by Lars Hjemli | <=0.8.3.4 | |
| cgit by Lars Hjemli | =0.8.2.1 | |
| cgit by Lars Hjemli | =0.7 | |
| cgit by Lars Hjemli | =0.6.3 | |
| Fedora | =13 | |
| Fedora | =14 | |
| Fedora | =15 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://article.gmane.org/gmane.comp.version-control.git/168493
- http://hjemli.net/git/cgit/commit/?h=stable&id=fc384b16fb9787380746000d3cea2d53fccc548e
- http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055896.html
- http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055898.html
- http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055966.html
- http://openwall.com/lists/oss-security/2011/03/07/3
- http://secunia.com/advisories/43633
- http://secunia.com/advisories/43788
- http://www.osvdb.org/71005
- http://www.securityfocus.com/bid/46756
- http://www.vupen.com/english/advisories/2011/0667
- https://bugzilla.redhat.com/show_bug.cgi?id=680905
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65919
- http://git.gnome.org/browse/gdlmm/commit/?id=%gg
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=481360&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=481360&action=edit
- https://access.redhat.com/security/cve/CVE-2011-1027
- http://hjemli.net/git/cgit/commit/?id=fc384b16fb9787380746000d3cea2d53fccc548e
- http://thread.gmane.org/gmane.comp.version-control.git/168493
Frequently Asked Questions
What is the severity of CVE-2011-1027?
CVE-2011-1027 has a severity level categorized as moderate due to its potential to cause denial of service.
How do I fix CVE-2011-1027?
To fix CVE-2011-1027, upgrade cgit to version 0.8.3.5 or later.
Which versions of cgit are affected by CVE-2011-1027?
CVE-2011-1027 affects all versions of cgit prior to 0.8.3.5.
What type of vulnerability is CVE-2011-1027?
CVE-2011-1027 is an off-by-one error vulnerability.
What is the impact of CVE-2011-1027 on systems?
The impact of CVE-2011-1027 on systems includes the potential to cause an infinite loop and disrupt service.
- agent/author
- agent/weakness
- agent/type
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-1027
- agent/remedy
- agent/severity
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- vendor/lars hjemli
- canonical/cgit by lars hjemli
- version/cgit by lars hjemli/0.7.1
- version/cgit by lars hjemli/0.8.3.1
- version/cgit by lars hjemli/0.6.1
- version/cgit by lars hjemli/0.6
- version/cgit by lars hjemli/0.8
- version/cgit by lars hjemli/0.3
- version/cgit by lars hjemli/0.5
- version/cgit by lars hjemli/0.8.1.1
- version/cgit by lars hjemli/0.2
- version/cgit by lars hjemli/0.8.3.2
- version/cgit by lars hjemli/0.8.3
- version/cgit by lars hjemli/0.1
- version/cgit by lars hjemli/0.6.2
- version/cgit by lars hjemli/0.8.2.2
- version/cgit by lars hjemli/0.7.2
- version/cgit by lars hjemli/0.4
- version/cgit by lars hjemli/0.8.2
- version/cgit by lars hjemli/0.8.1
- version/cgit by lars hjemli/0.8.3.3
- version/cgit by lars hjemli/0.8.3.4
- version/cgit by lars hjemli/0.8.2.1
- version/cgit by lars hjemli/0.7
- version/cgit by lars hjemli/0.6.3
- vendor/fedoraproject
- canonical/fedora
- version/fedora/13
- version/fedora/14
- version/fedora/15