vulnerability

Alpine Linux: CVE-2016-2324: git path_name() integer truncation and overflow leading to buffer overflow

Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Apr 8, 2016
Added
Aug 30, 2017
Modified
Oct 30, 2017

Description

Integer overflow in Git before 2.7.4 allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow.

Solution

alpine-linux-upgrade-git
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.