UbuntuUpdates.org

Package "libgit2-24"

Name: libgit2-24

Description:

low-level Git library

Latest version: 0.24.1-2ubuntu0.2
Release: xenial (16.04)
Level: updates
Repository: universe
Head package: libgit2
Homepage: http://libgit2.github.com/

Links


Download "libgit2-24"


Other versions of "libgit2-24" in Xenial

Repository Area Version
base universe 0.24.1-2
security universe 0.24.1-2ubuntu0.2

Changelog

Version: 0.24.1-2ubuntu0.2 2018-09-12 18:06:41 UTC

  libgit2 (0.24.1-2ubuntu0.2) xenial-security; urgency=medium

  * SECURITY UPDATE: Out of bounds read
    - debian/patches/CVE-2018-10887-1.patch: delta: Fix sign-extension of big
      left-shift
    - debian/patches/CVE-2018-10887-2.patch: delta: fix overflow when
      computing limit
    - CVE-2018-10887, CVE-2018-10888

 -- Mike Salvatore <email address hidden> Wed, 05 Sep 2018 12:15:48 -0400

CVE-2018-10887 A flaw was found in libgit2 before version 0.27.3. It has been discovered that an unexpected sign extension in git_delta_apply function in delta.c fi
CVE-2018-10888 A flaw was found in libgit2 before version 0.27.3. A missing check in git_delta_apply function in delta.c file, may lead to an out-of-bound read whil



About   -   Send Feedback to @ubuntu_updates