Vulnerability Details : CVE-2016-10128
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to have unspecified impact via a crafted non-flush packet.
Vulnerability category: Overflow
Products affected by CVE-2016-10128
- cpe:2.3:a:libgit2_project:libgit2:*:*:*:*:*:*:*:*
- cpe:2.3:a:libgit2_project:libgit2:0.25.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:libgit2_project:libgit2:0.25.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:libgit2_project:libgit2:0.25.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-10128
2.73%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 85 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-10128
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
|
9.8
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2016-10128
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-10128
-
https://github.com/libgit2/libgit2/commit/4ac39c76c0153d1ee6889a0984c39e97731684b2
smart_pkt: verify packet length exceeds PKT_LEN_SIZE · libgit2/libgit2@4ac39c7 · GitHubIssue Tracking;Patch;Third Party Advisory
-
http://www.openwall.com/lists/oss-security/2017/01/10/5
oss-security - CVE Request: two security fixes in libgit2 0.25.1, 0.24.6Mailing List;Patch;Third Party Advisory
-
https://github.com/libgit2/libgit2/commit/66e3774d279672ee51c3b54545a79d20d1ada834
smart_pkt: verify packet length exceeds PKT_LEN_SIZE · libgit2/libgit2@66e3774 · GitHubIssue Tracking;Patch;Third Party Advisory
-
https://libgit2.github.com/security/
libgit2Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/95338
libgit2 'smart_pkt.c' Buffer Overflow Vulnerability
-
http://lists.opensuse.org/opensuse-updates/2017-02/msg00072.html
openSUSE-SU-2017:0484-1: moderate: Security update for libgit2Third Party Advisory
-
http://www.openwall.com/lists/oss-security/2017/01/11/6
oss-security - Re: CVE Request: two security fixes in libgit2 0.25.1, 0.24.6Mailing List;Patch;Third Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2017-02/msg00030.html
openSUSE-SU-2017:0397-1: moderate: Security update for libgit2Third Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2017-02/msg00036.html
openSUSE-SU-2017:0405-1: moderate: Security update for libgit2Third Party Advisory
Jump to