First published: Fri Mar 24 2017(Updated: )
The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via an empty packet line.
Credit: security@debian.org
Affected Software | Affected Version | How to fix |
---|---|---|
Libgit2 Project Libgit2 | <=0.24.5 | |
Libgit2 Project Libgit2 | =0.25.0 | |
Libgit2 Project Libgit2 | =0.25.0-rc1 | |
Libgit2 Project Libgit2 | =0.25.0-rc2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.