Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1841-1
HistoryJul 25, 2009 - 12:00 a.m.

git-core - denial of service

2009-07-2500:00:00
Google
osv.dev
7

0.078 Low

EPSS

Percentile

94.2%

JSON

It was discovered that git-daemon which is part of git-core, a popular
distributed revision control system, is vulnerable to denial of service
attacks caused by a programming mistake in handling requests containing
extra unrecognized arguments which results in an infinite loop. While
this is no problem for the daemon itself as every request will spawn a
new git-daemon instance, this still results in a very high CPU consumption
and might lead to denial of service conditions.

For the oldstable distribution (etch), this problem has been fixed in
version 1.4.4.4-4+etch3.

For the stable distribution (lenny), this problem has been fixed in
version 1.5.6.5-3+lenny2.

For the testing distribution (squeeze), this problem has been fixed in
version 1:1.6.3.3-1.

For the unstable distribution (sid), this problem has been fixed in
version 1:1.6.3.3-1.

We recommend that you upgrade your git-core packages.

Related

openvas 19
debian 4
ubuntucve 1
nessus 7
prion 1
osv 1
gentoo 1
cvelist 1
freebsd 1
cve 1
fedora 3
nvd 1
openvas
openvas
Gentoo Security Advisory GLSA 200907-05 (git)
2009-07-29 00:00:00
Debian: Security Advisory (DSA-1841-1)
2009-07-29 00:00:00
Mandrake Security Advisory MDVSA-2009:155 (git)
2009-07-29 00:00:00
debian
debian
[SECURITY] [DSA 1841-2] New git-core packages fix build failure
2010-01-31 13:35:24
[Backports-security-announce] Security Update for git-core
2009-07-26 15:28:26
[Backports-security-announce] Security Update for git-core
2009-07-27 00:56:24
ubuntucve
ubuntucve
CVE-2009-2108
2009-06-18 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : git (MDVSA-2009:155)
2010-07-30 00:00:00
Debian DSA-1841-1 : git-core - denial of service
2010-02-24 00:00:00
Fedora 10 : git-1.6.0.6-4.fc10 (2009-6839)
2009-06-25 00:00:00
prion
prion
Design/Logic Flaw
2009-06-18 18:30:00
osv
osv
git-core - correct build failure introduced in DSA-1841-1
2009-07-25 00:00:00
gentoo
gentoo
git: git-daemon Denial of service
2009-07-12 00:00:00
cvelist
cvelist
CVE-2009-2108
2009-06-18 18:00:00
freebsd
freebsd
git -- denial of service vulnerability
2009-06-04 00:00:00
cve
cve
CVE-2009-2108
2009-06-18 18:30:00
fedora
fedora
[SECURITY] Fedora 9 Update: git-1.6.0.6-4.fc9
2009-06-24 19:17:33
[SECURITY] Fedora 11 Update: git-1.6.2.5-1.fc11
2009-06-24 19:19:21
[SECURITY] Fedora 10 Update: git-1.6.0.6-4.fc10
2009-06-24 19:28:42
nvd
nvd
CVE-2009-2108
2009-06-18 18:30:00

0.078 Low

EPSS

Percentile

94.2%

JSON
Related for OSV:DSA-1841-1
openvas19debian4ubuntucve1nessus7prion1osv1gentoo1cvelist1freebsd1cve1fedora3nvd1