CVE Vulnerability

CVE-2018-15501

In ng_pkt in transports/smart_pkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol "ng" packet that lacks a '' byte to trigger an out-of-bounds read that leads to DoS.

5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

Scope

7.5 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.pro-linux.de/sicherheit/2/44650/denial-of-service-in-libgit2.html Third Party Advisory
https://github.com/libgit2/libgit2/releases/tag/v0.27.4 Release Notes Third Party Advisory
https://github.com/libgit2/libgit2/releases/tag/v0.26.6 Release Notes Third Party Advisory
https://github.com/libgit2/libgit2/commit/1f9a8510e1d2f20ed7334eeeddb92c4dd8e7c649 Patch Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1104641 Issue Tracking Patch
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9406 Exploit Issue Tracking
https://lists.debian.org/debian-lts-announce/2018/08/msg00024.html Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/03/msg00031.html Mailing List Third Party Advisory
Configurations

Configuration 1

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:a:libgit2:libgit2:*:*:*:*:*:*:*:*
cpe:2.3:a:libgit2:libgit2:*:*:*:*:*:*:*:*
Information

Published : 2018-08-18 02:29

Updated : 2022-05-11 08:59

NVD link : CVE-2018-15501

Mitre link : CVE-2018-15501

Products Affected
No products.
CWE
CWE-125

Out-of-bounds Read