FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

git -- integer overflow

Affected packages
		git	<	2.4.11
2.5.0	<=	git	<	2.5.5
2.6.0	<=	git	<	2.6.6
2.7.0	<=	git	<	2.7.4
		git-gui	<	2.4.11
2.5.0	<=	git-gui	<	2.5.5
2.6.0	<=	git-gui	<	2.6.6
2.7.0	<=	git-gui	<	2.7.4
		git-lite	<	2.4.11
2.5.0	<=	git-lite	<	2.5.5
2.6.0	<=	git-lite	<	2.6.6
2.7.0	<=	git-lite	<	2.7.4
		git-subversion	<	2.4.11
2.5.0	<=	git-subversion	<	2.5.5
2.6.0	<=	git-subversion	<	2.6.6
2.7.0	<=	git-subversion	<	2.7.4

Details

VuXML ID	d2a84feb-ebe0-11e5-92ce-002590263bf5
Discovery	2016-02-24
Entry	2016-03-18

Debian reports:

integer overflow due to a loop which adds more to "len".

[source]

References

CVE Name	CVE-2016-2324
URL	https://github.com/git/git/commit/9831e92bfa833ee9c0ce464bbc2f941ae6c2698d
URL	https://security-tracker.debian.org/tracker/CVE-2016-2324

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.