Endpoint Vulnerability

CVE-2018-10888libgit2: an improper input validation leads to an out-of-bound read in git_delta_apply, allowing to read beyond delta limits

Description

A missing check in git_delta_apply function in delta.c file may lead to an out-of-bound read while reading a binary delta file. An attacker may use this flaw to cause a Denial of Service.

Affected Products

libgit2

References

CVE-2018-10888,