pkg:Alpine/libgit2

16 total CVEsCRITICAL2HIGH9MEDIUM4LOW1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2019-1353An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6.
    from 0, < 0.28.4-r0
  • CRITICAL9.8CVE-2016-10128Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and…
    from 0, < 0.25.1-r0
  • HIGH8.8CVE-2019-1354A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
    from 0, < 0.28.4-r0
  • HIGH8.8CVE-2019-1352A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
    from 0, < 0.28.4-r0
  • HIGH8.8CVE-2019-1350A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
    from 0, < 0.28.4-r0
  • HIGH8.8CVE-2019-1349A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
    from 0, < 0.28.4-r0
  • HIGH8.8CVE-2019-1387git - security update
    from 0, < 0.28.4-r0
  • HIGH8.1CVE-2018-10887libgit2 - security update
    from 0, < 0.27.3-r0
  • HIGH7.5CVE-2019-1351A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vu…
    from 0, < 0.28.4-r0
  • HIGH7.5CVE-2018-15501In ng_pkt in transports/smart_pkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol…
    from 0, < 0.27.4-r0
  • HIGH7.5CVE-2016-10129The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL…
    from 0, < 0.25.1-r0
  • MEDIUM6.5CVE-2018-10888A flaw was found in libgit2 before version 0.27.3.
    from 0, < 0.27.3-r0
  • MEDIUM5.9CVE-2016-10130The http_connect function in transports/http.c in libgit2 before 0.24.6 and 0.25.x before 0.25.1 might allow man-in-the-middle attackers to…
    from 0, < 0.25.1-r0
  • MEDIUM5.5CVE-2016-8569The git_oid_nfmt function in commit.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (NULL pointer dereferen…
    from 0, < 0.24.3-r0
  • MEDIUM5.5CVE-2016-8568The git_commit_message function in oid.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (out-of-bounds read)…
    from 0, < 0.24.3-r0
  • LOW3.3CVE-2019-1348git - security update
    from 0, < 0.28.4-r0