CVE-2024-24575

描述

The [libgit2](https://github.com/libgit2/libgit2/) project fixed three security issues in the 1.7.2 release. These issues are: * The `git_revparse_single` function can potentially enter an infinite loop on a well-crafted input, potentially causing a Denial of Service. This function is exposed in the `git2` crate via the [`Repository::revparse_single`](https://docs.rs/git2/latest/git2/struct.Repository.html#method.revparse_single) method. * The `git_index_add` function may cause heap corruption and possibly lead to arbitrary code execution. This function is exposed in the `git2` crate via the [`Index::add`](https://docs.rs/git2/latest/git2/struct.Index.html#method.add) method. * The smart transport negotiation may experience an out-of-bounds read when a remote server did not advertise capabilities. The `libgit2-sys` crate bundles libgit2, or optionally links to a system libgit2 library. In either case, versions of the libgit2 library less than 1.7.2 are vulnerable. The 0.16.2 release of `libgit2-sys` bundles the fixed version of 1.7.2, and requires a system libgit2 version of at least 1.7.2. It is recommended that all users upgrade.

受影響套件(2)

• crates.io/libgit2-sys>= 0.0.0-0, < 0.16.2
• Debian/libgit2from 0, < 1.5.1+ds-1+deb12u1

CVSS 分數

參考連結(5)

• ADVISORYhttps://rustsec.org/advisories/RUSTSEC-2024-0013.html
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2024-24575
• PATCHhttps://crates.io/crates/libgit2-sys
• WEBhttps://github.com/libgit2/libgit2/releases/tag/v1.7.2
• WEBhttps://github.com/rust-lang/git2-rs/pull/1017