CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-8568

The git_commit_message function in oid.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a cat-file command with a crafted object file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.8%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

Products affected by CVE-2016-8568

Libgit2 Project » Libgit2 » Version: Any

cpe:2.3:a:libgit2_project:libgit2:*
Fedoraproject » Fedora » Version: 23

cpe:2.3:o:fedoraproject:fedora:23
Fedoraproject » Fedora » Version: 24

cpe:2.3:o:fedoraproject:fedora:24
Fedoraproject » Fedora » Version: 25

cpe:2.3:o:fedoraproject:fedora:25
Opensuse » Leap » Version: 42.1

cpe:2.3:o:opensuse:leap:42.1
Opensuse » Leap » Version: 42.2

cpe:2.3:o:opensuse:leap:42.2
Opensuse » Opensuse » Version: 13.2

cpe:2.3:o:opensuse:opensuse:13.2
Suse » Linux Enterprise » Version: 12.0

cpe:2.3:o:suse:linux_enterprise:12.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-8568

Products

Pricing

Contact Us