CVE-2018-10887

A flaw was found in libgit2 before version 0.27.3. It has been discovered that an unexpected sign extension in git_delta_apply function in delta.c file may lead to an integer overflow which in turn leads to an out of bound read, allowing to read before the base object. An attacker may use this flaw to leak memory addresses or cause a Denial of Service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.1 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Affected Products (NVD)
VendorProductVersion
libgit2libgit2
𝑥
< 0.27.3
debiandebian_linux
8.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libgit2
bookworm
1.5.1+ds-1+deb12u1
fixed
bookworm (security)
1.5.1+ds-1+deb12u1
fixed
bullseye
1.1.0+dfsg.1-4+deb11u2
fixed
bullseye (security)
1.1.0+dfsg.1-4+deb11u2
fixed
sid
1.8.4+ds-1
fixed
trixie
1.8.2~rc1+ds2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libgit2
artful
ignored
bionic
Fixed 0.26.0+dfsg.1-1.1ubuntu0.2
released
trusty
Fixed 0.19.0-2ubuntu0.4
released
xenial
Fixed 0.24.1-2ubuntu0.2
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libgit2-1_3
suse enterprise desktop 15 SP4
1.3.0-150400.1.6
fixed
suse enterprise desktop 15 SP5
1.3.0-150400.3.6.1
fixed
suse enterprise sap 15 SP4
1.3.0-150400.1.6
fixed
suse enterprise sap 15 SP5
1.3.0-150400.3.6.1
fixed
suse enterprise server 15 SP4
1.3.0-150400.1.6
fixed
suse enterprise server 15 SP5
1.3.0-150400.3.6.1
fixed
libgit2-1_7
suse enterprise desktop 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise desktop 15 SP7
1.7.2-150600.3.3.1
fixed
suse enterprise sap 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise sap 15 SP7
1.7.2-150600.3.3.1
fixed
suse enterprise server 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise server 15 SP7
1.7.2-150600.3.3.1
fixed
libgit2-26
suse enterprise desktop 15
0.26.6-3.5.2
fixed
suse enterprise desktop 15 SP1
0.26.6-3.5.2
fixed
suse enterprise desktop 15 SP2
0.26.6-3.5.2
fixed
suse enterprise sap 15
0.26.6-3.5.2
fixed
suse enterprise sap 15 SP1
0.26.6-3.5.2
fixed
suse enterprise sap 15 SP2
0.26.6-3.5.2
fixed
suse enterprise server 15
0.26.6-3.5.2
fixed
suse enterprise server 15 SP1
0.26.6-3.5.2
fixed
suse enterprise server 15 SP2
0.26.6-3.5.2
fixed
libgit2-28
suse enterprise desktop 15 SP2
0.28.4-1.28
fixed
suse enterprise desktop 15 SP3
0.28.4-1.28
fixed
suse enterprise sap 15 SP2
0.28.4-1.28
fixed
suse enterprise sap 15 SP3
0.28.4-1.28
fixed
suse enterprise server 15 SP2
0.28.4-1.28
fixed
suse enterprise server 15 SP3
0.28.4-1.28
fixed
libgit2-devel
suse enterprise desktop 15
0.26.6-3.5.2
fixed
suse enterprise desktop 15 SP1
0.26.6-3.5.2
fixed
suse enterprise desktop 15 SP2
0.28.4-1.28
fixed
suse enterprise desktop 15 SP3
0.28.4-1.28
fixed
suse enterprise desktop 15 SP4
1.3.0-150400.1.6
fixed
suse enterprise desktop 15 SP5
1.3.0-150400.3.6.1
fixed
suse enterprise desktop 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise desktop 15 SP7
1.7.2-150600.3.3.1
fixed
suse enterprise sap 15
0.26.6-3.5.2
fixed
suse enterprise sap 15 SP1
0.26.6-3.5.2
fixed
suse enterprise sap 15 SP2
0.28.4-1.28
fixed
suse enterprise sap 15 SP3
0.28.4-1.28
fixed
suse enterprise sap 15 SP4
1.3.0-150400.1.6
fixed
suse enterprise sap 15 SP5
1.3.0-150400.3.6.1
fixed
suse enterprise sap 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise sap 15 SP7
1.7.2-150600.3.3.1
fixed
suse enterprise server 15
0.26.6-3.5.2
fixed
suse enterprise server 15 SP1
0.26.6-3.5.2
fixed
suse enterprise server 15 SP2
0.28.4-1.28
fixed
suse enterprise server 15 SP3
0.28.4-1.28
fixed
suse enterprise server 15 SP4
1.3.0-150400.1.6
fixed
suse enterprise server 15 SP5
1.3.0-150400.3.6.1
fixed
suse enterprise server 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise server 15 SP7
1.7.2-150600.3.3.1
fixed
libgit2-tools
suse enterprise desktop 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise desktop 15 SP7
1.7.2-150600.3.3.1
fixed
suse enterprise sap 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise sap 15 SP7
1.7.2-150600.3.3.1
fixed
suse enterprise server 15 SP6
1.7.1-150600.1.6
fixed
suse enterprise server 15 SP7
1.7.2-150600.3.3.1
fixed
Common Weakness Enumeration
References
https://bugzilla.redhat.com/show_bug.cgi?id=1598021
https://github.com/libgit2/libgit2/commit/3f461902dc1072acb8b7607ee65d0a0458ffac2a
https://github.com/libgit2/libgit2/commit/c1577110467b701dcbcf9439ac225ea851b47d22
https://github.com/libgit2/libgit2/releases/tag/v0.27.3
https://lists.debian.org/debian-lts-announce/2018/08/msg00024.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00031.html
https://bugzilla.redhat.com/show_bug.cgi?id=1598021
https://github.com/libgit2/libgit2/commit/3f461902dc1072acb8b7607ee65d0a0458ffac2a
https://github.com/libgit2/libgit2/commit/c1577110467b701dcbcf9439ac225ea851b47d22
https://github.com/libgit2/libgit2/releases/tag/v0.27.3
https://lists.debian.org/debian-lts-announce/2018/08/msg00024.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00031.html