VulnerableCode Package Details - pkg:apk/alpine/libgit2@0.24.3-r0?arch=aarch64&distroversion=v3.11&reponame=main

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/libgit2@0.24.3-r0?arch=aarch64&distroversion=v3.11&reponame=main

purl	pkg:apk/alpine/libgit2@0.24.3-r0?arch=aarch64&distroversion=v3.11&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-tkgy-cec8-dfdy	The git_oid_nfmt function in commit.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a cat-file command with a crafted object file.	CVE-2016-8569
VCID-yq57-g8j1-kfeu	The git_commit_message function in oid.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a cat-file command with a crafted object file.	CVE-2016-8568

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-06T04:48:34.973742+00:00	Alpine Linux Importer	Fixing	VCID-tkgy-cec8-dfdy	https://secdb.alpinelinux.org/v3.11/main.json	38.1.0
2026-04-01T19:25:40.063573+00:00	Alpine Linux Importer	Fixing	VCID-yq57-g8j1-kfeu	https://secdb.alpinelinux.org/v3.11/main.json	38.0.0