FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
d51b52cf-c199-11e9-b13f-001b217b3468	Libgit2 -- multiple vulnerabilities The Git community reports: A carefully constructed commit object with a very large number of parents may lead to potential out-of-bounds writes or potential denial of service. The ProgramData configuration file is always read for compatibility with Git for Windows and Portable Git installations. The ProgramData location is not necessarily writable only by administrators, so we now ensure that the configuration file is owned by the administrator or the current user. Discovery 2019-08-13 Entry 2019-08-18 libgit2 lt 0.28.3 https://github.com/libgit2/libgit2/releases/tag/v0.28.3

VuXML ID

Description

d51b52cf-c199-11e9-b13f-001b217b3468

Libgit2 -- multiple vulnerabilities

The Git community reports:

A carefully constructed commit object with a very large number of parents may lead to potential out-of-bounds writes or potential denial of service.

The ProgramData configuration file is always read for compatibility with Git for Windows and Portable Git installations. The ProgramData location is not necessarily writable only by administrators, so we now ensure that the configuration file is owned by the administrator or the current user.

Discovery 2019-08-13
Entry 2019-08-18
libgit2

lt 0.28.3

https://github.com/libgit2/libgit2/releases/tag/v0.28.3