CVE-2018-10887: Integer Overflow
First published: Wed Jul 04 2018(Updated: )
A flaw was found in libgit2 before version 0.27.3. It has been discovered that an unexpected sign extension in git_delta_apply function in delta.c file may lead to an integer overflow which in turn leads to an out of bound read, allowing to read before the base object. An attacker may use this flaw to leak memory addresses or cause a Denial of Service.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/libgit2 | <0.27.3 | 0.27.3 |
| redhat/libgit2 | <0.26.5 | 0.26.5 |
| CentOS Libgcc | <0.27.3 | |
| Debian Linux | =8.0 | |
| Debian Linux | =9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=1598021
- https://github.com/libgit2/libgit2/commit/3f461902dc1072acb8b7607ee65d0a0458ffac2a
- https://github.com/libgit2/libgit2/commit/c1577110467b701dcbcf9439ac225ea851b47d22
- https://github.com/libgit2/libgit2/releases/tag/v0.27.3
- https://lists.debian.org/debian-lts-announce/2018/08/msg00024.html
- https://lists.debian.org/debian-lts-announce/2022/03/msg00031.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1599319
Frequently Asked Questions
What is CVE-2018-10887?
CVE-2018-10887 is a vulnerability in libgit2 before version 0.27.3 that allows an integer overflow and out-of-bounds read, potentially leading to unauthorized access.
How severe is CVE-2018-10887?
CVE-2018-10887 has a severity rating of 8.1 (high).
Which software versions are affected by CVE-2018-10887?
Versions up to (but excluding) 0.27.3 of libgit2 are affected by CVE-2018-10887.
How can I fix CVE-2018-10887?
To fix CVE-2018-10887, update libgit2 to version 0.27.3 or higher.
Where can I find more information about CVE-2018-10887?
More information about CVE-2018-10887 can be found at the following references: [insert references here].
- agent/first-publish-date
- agent/remedy
- agent/type
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-10887
- agent/software-canonical-lookup
- agent/severity
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/weakness
- agent/author
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- package-manager/redhat
- vendor/libgit2
- canonical/centos libgcc
- vendor/debian
- canonical/debian linux
- version/debian linux/8.0
- version/debian linux/9.0