rpm package
suse/libgit2&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
pkg:rpm/suse/libgit2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-24577 | — | < 0.26.8-150000.3.21.1 | 0.26.8-150000.3.21.1 | Feb 6, 2024 | libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to `git_index_add` can cause heap corruption that could be leveraged for arbitrary | ||
| CVE-2022-29187 | — | < 0.28.4-150200.3.3.1 | 0.28.4-150200.3.3.1 | Jul 12, 2022 | Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, fo | ||
| CVE-2022-24765 | — | < 0.28.4-150200.3.3.1 | 0.28.4-150200.3.3.1 | Apr 12, 2022 | Git for Windows is a fork of Git containing Windows-specific patches. This vulnerability affects users working on multi-user machines, where untrusted parties have write access to the same hard disk. Those untrusted parties could create the folder `C:\.git`, which would be picked | ||
| CVE-2019-1352 | — | < 0.26.8-150000.3.15.1 | 0.26.8-150000.3.15.1 | Jan 24, 2020 | A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1354, CVE-2019-1387. |
- CVE-2024-24577Feb 6, 2024affected < 0.26.8-150000.3.21.1fixed 0.26.8-150000.3.21.1
libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to `git_index_add` can cause heap corruption that could be leveraged for arbitrary
- CVE-2022-29187Jul 12, 2022affected < 0.28.4-150200.3.3.1fixed 0.28.4-150200.3.3.1
Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, fo
- CVE-2022-24765Apr 12, 2022affected < 0.28.4-150200.3.3.1fixed 0.28.4-150200.3.3.1
Git for Windows is a fork of Git containing Windows-specific patches. This vulnerability affects users working on multi-user machines, where untrusted parties have write access to the same hard disk. Those untrusted parties could create the folder `C:\.git`, which would be picked
- CVE-2019-1352Jan 24, 2020affected < 0.26.8-150000.3.15.1fixed 0.26.8-150000.3.15.1
A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1354, CVE-2019-1387.