Oval Definition:
oval:com.ubuntu.disco:def:2018155010000000
Revision Date
:
2018-08-18
Version
:
1
Title
:
CVE-2018-15501 on Ubuntu 19.04 (disco) - medium.
Description
:
In ng_pkt in transports/smart_pkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol "ng" packet that lacks a '\0' byte to trigger an out-of-bounds read that leads to DoS.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2018-15501
Platform(s)
:
Ubuntu 19.04
Product(s)
:
Definition Synopsis
Ubuntu 19.04 (disco) is installed.
AND
libgit2 package in disco, is related to the CVE in some way and has been fixed (note: '0.27.4+dfsg.1-0.1').
BACK