pkg:Alpine/libgit2

All known vulnerabilities

• CRITICAL9.8CVE-2019-1353An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6.
  from 0, < 0.28.4-r0
• CRITICAL9.8CVE-2016-10128Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and…
  from 0, < 0.25.1-r0
• HIGH8.8A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
  from 0, < 0.28.4-r0
• HIGH8.8A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
  from 0, < 0.28.4-r0
• HIGH8.8A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
  from 0, < 0.28.4-r0
• HIGH8.8A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
  from 0, < 0.28.4-r0
• HIGH8.8git - security update
  from 0, < 0.28.4-r0
• HIGH8.1libgit2 - security update
  from 0, < 0.27.3-r0
• HIGH7.5A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vu…
  from 0, < 0.28.4-r0
• HIGH7.5In ng_pkt in transports/smart_pkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol…
  from 0, < 0.27.4-r0
• HIGH7.5The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL…
  from 0, < 0.25.1-r0
• MEDIUM6.5A flaw was found in libgit2 before version 0.27.3.
  from 0, < 0.27.3-r0
• MEDIUM5.9The http_connect function in transports/http.c in libgit2 before 0.24.6 and 0.25.x before 0.25.1 might allow man-in-the-middle attackers to…
  from 0, < 0.25.1-r0
• MEDIUM5.5The git_oid_nfmt function in commit.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (NULL pointer dereferen…
  from 0, < 0.24.3-r0
• MEDIUM5.5The git_commit_message function in oid.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (out-of-bounds read)…
  from 0, < 0.24.3-r0
• LOW3.3git - security update
  from 0, < 0.28.4-r0