Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie

Type deb

Namespace debian

Name libgit2

Version 1.9.0+ds-2

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1.9.4+ds-1

Latest_non_vulnerable_version 1.9.4+ds-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1wkq-e3rx-w3ck

vulnerability_id VCID-1wkq-e3rx-w3ck

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15501.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15501.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-15501

reference_id

reference_type

scores

value	0.02924
scoring_system	epss
scoring_elements	0.86712
published_at	2026-06-11T12:55:00Z

value	0.02924
scoring_system	epss
scoring_elements	0.8676
published_at	2026-06-12T12:55:00Z

value	0.02924
scoring_system	epss
scoring_elements	0.86772
published_at	2026-06-13T12:55:00Z

value	0.02924
scoring_system	epss
scoring_elements	0.86768
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-15501

reference_url	https://bugzilla.suse.com/show_bug.cgi?id=1104641
reference_id
reference_type
scores
url	https://bugzilla.suse.com/show_bug.cgi?id=1104641

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15501
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15501

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1615585
reference_id	1615585
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1615585

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2018-15501
reference_id	CVE-2018-15501
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2018-15501

fixed_packages

url	pkg:deb/debian/libgit2@0.27.4%2Bdfsg.1-0.1?distro=trixie
purl	pkg:deb/debian/libgit2@0.27.4%2Bdfsg.1-0.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.27.4%252Bdfsg.1-0.1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2018-15501

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1wkq-e3rx-w3ck

url VCID-2qy7-u1nr-t3cv

vulnerability_id VCID-2qy7-u1nr-t3cv

summary denial of service

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8568

reference_id

reference_type

scores

value	0.0038
scoring_system	epss
scoring_elements	0.59961
published_at	2026-06-12T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.59972
published_at	2026-06-13T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.59964
published_at	2026-06-14T12:55:00Z

value	0.00426
scoring_system	epss
scoring_elements	0.62723
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8568

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8568
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8568

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840227
reference_id	840227
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840227

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860989
reference_id	860989
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860989

reference_url	https://security.archlinux.org/ASA-201611-17
reference_id	ASA-201611-17
reference_type
scores
url	https://security.archlinux.org/ASA-201611-17

reference_url

https://security.archlinux.org/AVG-45

reference_id

AVG-45

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-45

reference_url	https://usn.ubuntu.com/USN-4798-1/
reference_id	USN-USN-4798-1
reference_type
scores
url	https://usn.ubuntu.com/USN-4798-1/

fixed_packages

url	pkg:deb/debian/libgit2@0.24.5-1?distro=trixie
purl	pkg:deb/debian/libgit2@0.24.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.24.5-1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2016-8568

risk_score 1.4

exploitability 0.5

weighted_severity 2.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2qy7-u1nr-t3cv

url VCID-5nnu-33bm-qyaa

vulnerability_id VCID-5nnu-33bm-qyaa

summary

An attacker could execute arbitrary commands via Git repositories
    in a case-insensitive or case-normalizing filesystem.

references

reference_url

http://article.gmane.org/gmane.linux.kernel/1853266

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://article.gmane.org/gmane.linux.kernel/1853266

reference_url

http://git-blame.blogspot.com/2014/12/git-1856-195-205-214-and-221-and.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://git-blame.blogspot.com/2014/12/git-1856-195-205-214-and-221-and.html

reference_url

http://mercurial.selenic.com/wiki/WhatsNew

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://mercurial.selenic.com/wiki/WhatsNew

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9390.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9390.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-9390

reference_id

reference_type

scores

value	0.77155
scoring_system	epss
scoring_elements	0.98992
published_at	2026-06-11T12:55:00Z

value	0.77155
scoring_system	epss
scoring_elements	0.98997
published_at	2026-06-14T12:55:00Z

value	0.77155
scoring_system	epss
scoring_elements	0.98996
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-9390

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9390
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9390

reference_url

http://securitytracker.com/id?1031404

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://securitytracker.com/id?1031404

reference_url

https://github.com/advisories/GHSA-6vvc-c2m3-cjf3

reference_id

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-6vvc-c2m3-cjf3

reference_url

https://github.com/blog/1938-git-client-vulnerability-announced

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/blog/1938-git-client-vulnerability-announced

reference_url	https://github.com/blog/1938-vulnerability-announced-update-your-git-clients
reference_id
reference_type
scores
url	https://github.com/blog/1938-vulnerability-announced-update-your-git-clients

reference_url

https://github.com/libgit2/libgit2/commit/928429c5c96a701bcbcafacb2421a82602b36915

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/libgit2/libgit2/commit/928429c5c96a701bcbcafacb2421a82602b36915

reference_url	https://github.com/libgit2/libgit2/releases/tag/v0.21.3
reference_id
reference_type
scores
url	https://github.com/libgit2/libgit2/releases/tag/v0.21.3

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/mercurial/PYSEC-2020-217.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/mercurial/PYSEC-2020-217.yaml

reference_url

https://libgit2.org/security

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://libgit2.org/security

reference_url	https://libgit2.org/security/
reference_id
reference_type
scores
url	https://libgit2.org/security/

reference_url

https://news.ycombinator.com/item?id=8769667

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://news.ycombinator.com/item?id=8769667

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-9390

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2014-9390

reference_url

https://projects.eclipse.org/projects/technology.jgit/releases/3.5.3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://projects.eclipse.org/projects/technology.jgit/releases/3.5.3

reference_url

http://support.apple.com/kb/HT204147

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://support.apple.com/kb/HT204147

reference_url

https://web.archive.org/web/20211204220400/https://securitytracker.com/id?1031404

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20211204220400/https://securitytracker.com/id?1031404

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1175960
reference_id	1175960
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1175960

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773640
reference_id	773640
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773640

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774048
reference_id	774048
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774048

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774050
reference_id	774050
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774050

reference_url	https://security.gentoo.org/glsa/201509-06
reference_id	GLSA-201509-06
reference_type
scores
url	https://security.gentoo.org/glsa/201509-06

reference_url	https://security.gentoo.org/glsa/201612-19
reference_id	GLSA-201612-19
reference_type
scores
url	https://security.gentoo.org/glsa/201612-19

reference_url	https://usn.ubuntu.com/2470-1/
reference_id	USN-2470-1
reference_type
scores
url	https://usn.ubuntu.com/2470-1/

fixed_packages

url	pkg:deb/debian/libgit2@0.21.3-1?distro=trixie
purl	pkg:deb/debian/libgit2@0.21.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.21.3-1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2014-9390, GHSA-6vvc-c2m3-cjf3, PYSEC-2020-217

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5nnu-33bm-qyaa

url VCID-7d33-6368-vqe1

vulnerability_id VCID-7d33-6368-vqe1

summary A flaw was found in libgit2 before version 0.27.3. A missing check in git_delta_apply function in delta.c file, may lead to an out-of-bound read while reading a binary delta file. An attacker may use this flaw to cause a Denial of Service.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-10888

reference_id

reference_type

scores

value	0.0062
scoring_system	epss
scoring_elements	0.70528
published_at	2026-06-11T12:55:00Z

value	0.0062
scoring_system	epss
scoring_elements	0.70618
published_at	2026-06-12T12:55:00Z

value	0.0062
scoring_system	epss
scoring_elements	0.70632
published_at	2026-06-13T12:55:00Z

value	0.0062
scoring_system	epss
scoring_elements	0.70628
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-10888

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1598024
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1598024

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10888
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10888

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903508
reference_id	903508
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903508

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2018-10888
reference_id	CVE-2018-10888
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2018-10888

fixed_packages

url	pkg:deb/debian/libgit2@0.27.4%2Bdfsg.1-0.1?distro=trixie
purl	pkg:deb/debian/libgit2@0.27.4%2Bdfsg.1-0.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.27.4%252Bdfsg.1-0.1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2018-10888

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7d33-6368-vqe1

url VCID-7hsc-9429-2khr

vulnerability_id VCID-7hsc-9429-2khr

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8099.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8099.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-8099

reference_id

reference_type

scores

value	0.01182
scoring_system	epss
scoring_elements	0.79172
published_at	2026-06-11T12:55:00Z

value	0.01182
scoring_system	epss
scoring_elements	0.79236
published_at	2026-06-12T12:55:00Z

value	0.01182
scoring_system	epss
scoring_elements	0.7925
published_at	2026-06-13T12:55:00Z

value	0.01182
scoring_system	epss
scoring_elements	0.79246
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8099

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1554366
reference_id	1554366
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1554366

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892962
reference_id	892962
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892962

fixed_packages

url	pkg:deb/debian/libgit2@0.27.0%2Bdfsg.1-0.6?distro=trixie
purl	pkg:deb/debian/libgit2@0.27.0%2Bdfsg.1-0.6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.27.0%252Bdfsg.1-0.6%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2018-8099

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7hsc-9429-2khr

url VCID-8fz4-nz3h-kqfy

vulnerability_id VCID-8fz4-nz3h-kqfy

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8098.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8098.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-8098

reference_id

reference_type

scores

value	0.00741
scoring_system	epss
scoring_elements	0.73417
published_at	2026-06-11T12:55:00Z

value	0.00741
scoring_system	epss
scoring_elements	0.73493
published_at	2026-06-12T12:55:00Z

value	0.00741
scoring_system	epss
scoring_elements	0.73507
published_at	2026-06-13T12:55:00Z

value	0.00741
scoring_system	epss
scoring_elements	0.73505
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8098

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1554366
reference_id	1554366
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1554366

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892961
reference_id	892961
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892961

fixed_packages

url	pkg:deb/debian/libgit2@0.27.0%2Bdfsg.1-0.6?distro=trixie
purl	pkg:deb/debian/libgit2@0.27.0%2Bdfsg.1-0.6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.27.0%252Bdfsg.1-0.6%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2018-8098

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8fz4-nz3h-kqfy

url VCID-au21-d8gy-z3cx

vulnerability_id VCID-au21-d8gy-z3cx

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10129

reference_id

reference_type

scores

value	0.0321
scoring_system	epss
scoring_elements	0.87311
published_at	2026-06-11T12:55:00Z

value	0.0321
scoring_system	epss
scoring_elements	0.87355
published_at	2026-06-12T12:55:00Z

value	0.0321
scoring_system	epss
scoring_elements	0.87362
published_at	2026-06-13T12:55:00Z

value	0.0321
scoring_system	epss
scoring_elements	0.87359
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10129

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10129
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10129

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851406
reference_id	851406
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851406

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860990
reference_id	860990
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860990

reference_url	https://security.archlinux.org/ASA-201701-21
reference_id	ASA-201701-21
reference_type
scores
url	https://security.archlinux.org/ASA-201701-21

reference_url

https://security.archlinux.org/AVG-131

reference_id

AVG-131

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-131

fixed_packages

url	pkg:deb/debian/libgit2@0.25.1%2Breally0.24.6-1?distro=trixie
purl	pkg:deb/debian/libgit2@0.25.1%2Breally0.24.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.25.1%252Breally0.24.6-1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2016-10129

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-au21-d8gy-z3cx

url VCID-dg43-jk3y-r7gs

vulnerability_id VCID-dg43-jk3y-r7gs

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24577.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24577.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-24577

reference_id

reference_type

scores

value	0.00376
scoring_system	epss
scoring_elements	0.59592
published_at	2026-06-11T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59702
published_at	2026-06-14T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59712
published_at	2026-06-13T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.597
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-24577

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24577
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24577

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063416
reference_id	1063416
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063416

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2263095
reference_id	2263095
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2263095

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4M3P7WIEPXNRLBINQRJFXUSTNKBCHYC7/

reference_id

4M3P7WIEPXNRLBINQRJFXUSTNKBCHYC7

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4M3P7WIEPXNRLBINQRJFXUSTNKBCHYC7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7CNDW3PF6NHO7OXNM5GN6WSSGAMA7MZE/

reference_id

7CNDW3PF6NHO7OXNM5GN6WSSGAMA7MZE

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7CNDW3PF6NHO7OXNM5GN6WSSGAMA7MZE/

reference_url

https://github.com/libgit2/libgit2/security/advisories/GHSA-j2v7-4f6v-gpg8

reference_id

GHSA-j2v7-4f6v-gpg8

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://github.com/libgit2/libgit2/security/advisories/GHSA-j2v7-4f6v-gpg8

reference_url

https://lists.debian.org/debian-lts-announce/2024/02/msg00012.html

reference_id

msg00012.html

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://lists.debian.org/debian-lts-announce/2024/02/msg00012.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S635BGHHZUMRPI7QOXOJ45QHDD5FFZ3S/

reference_id

S635BGHHZUMRPI7QOXOJ45QHDD5FFZ3S

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S635BGHHZUMRPI7QOXOJ45QHDD5FFZ3S/

reference_url	https://usn.ubuntu.com/6678-1/
reference_id	USN-6678-1
reference_type
scores
url	https://usn.ubuntu.com/6678-1/

reference_url

https://github.com/libgit2/libgit2/releases/tag/v1.6.5

reference_id

v1.6.5

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://github.com/libgit2/libgit2/releases/tag/v1.6.5

reference_url

https://github.com/libgit2/libgit2/releases/tag/v1.7.2

reference_id

v1.7.2

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://github.com/libgit2/libgit2/releases/tag/v1.7.2

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z6MXOX7I43OWNN7R6M54XLG6U5RXY244/

reference_id

Z6MXOX7I43OWNN7R6M54XLG6U5RXY244

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z6MXOX7I43OWNN7R6M54XLG6U5RXY244/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZGNHOEE2RBLH7KCJUPUNYG4CDTW4HTBT/

reference_id

ZGNHOEE2RBLH7KCJUPUNYG4CDTW4HTBT

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T18:43:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZGNHOEE2RBLH7KCJUPUNYG4CDTW4HTBT/

fixed_packages

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.7.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.7.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.7.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2024-24577

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dg43-jk3y-r7gs

url VCID-hkn4-s19a-4qgy

vulnerability_id VCID-hkn4-s19a-4qgy

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24575.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24575.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-24575

reference_id

reference_type

scores

value	0.0182
scoring_system	epss
scoring_elements	0.83277
published_at	2026-06-11T12:55:00Z

value	0.0182
scoring_system	epss
scoring_elements	0.83343
published_at	2026-06-14T12:55:00Z

value	0.0182
scoring_system	epss
scoring_elements	0.83347
published_at	2026-06-13T12:55:00Z

value	0.0182
scoring_system	epss
scoring_elements	0.83338
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-24575

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063415
reference_id	1063415
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063415

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2263092
reference_id	2263092
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2263092

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4M3P7WIEPXNRLBINQRJFXUSTNKBCHYC7/

reference_id

4M3P7WIEPXNRLBINQRJFXUSTNKBCHYC7

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4M3P7WIEPXNRLBINQRJFXUSTNKBCHYC7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7CNDW3PF6NHO7OXNM5GN6WSSGAMA7MZE/

reference_id

7CNDW3PF6NHO7OXNM5GN6WSSGAMA7MZE

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7CNDW3PF6NHO7OXNM5GN6WSSGAMA7MZE/

reference_url

https://github.com/libgit2/libgit2/commit/add2dabb3c16aa49b33904dcdc07cd915efc12fa

reference_id

add2dabb3c16aa49b33904dcdc07cd915efc12fa

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://github.com/libgit2/libgit2/commit/add2dabb3c16aa49b33904dcdc07cd915efc12fa

reference_url

https://github.com/libgit2/libgit2/security/advisories/GHSA-54mf-x2rh-hq9v

reference_id

GHSA-54mf-x2rh-hq9v

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://github.com/libgit2/libgit2/security/advisories/GHSA-54mf-x2rh-hq9v

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S635BGHHZUMRPI7QOXOJ45QHDD5FFZ3S/

reference_id

S635BGHHZUMRPI7QOXOJ45QHDD5FFZ3S

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S635BGHHZUMRPI7QOXOJ45QHDD5FFZ3S/

reference_url	https://usn.ubuntu.com/6678-1/
reference_id	USN-6678-1
reference_type
scores
url	https://usn.ubuntu.com/6678-1/

reference_url

https://github.com/libgit2/libgit2/releases/tag/v1.6.5

reference_id

v1.6.5

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://github.com/libgit2/libgit2/releases/tag/v1.6.5

reference_url

https://github.com/libgit2/libgit2/releases/tag/v1.7.2

reference_id

v1.7.2

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://github.com/libgit2/libgit2/releases/tag/v1.7.2

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z6MXOX7I43OWNN7R6M54XLG6U5RXY244/

reference_id

Z6MXOX7I43OWNN7R6M54XLG6U5RXY244

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z6MXOX7I43OWNN7R6M54XLG6U5RXY244/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZGNHOEE2RBLH7KCJUPUNYG4CDTW4HTBT/

reference_id

ZGNHOEE2RBLH7KCJUPUNYG4CDTW4HTBT

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T18:43:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZGNHOEE2RBLH7KCJUPUNYG4CDTW4HTBT/

fixed_packages

url	pkg:deb/debian/libgit2@0?distro=trixie
purl	pkg:deb/debian/libgit2@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.7.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.7.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.7.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2024-24575

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hkn4-s19a-4qgy

url VCID-jr2f-dp3q-6fed

vulnerability_id VCID-jr2f-dp3q-6fed

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10128

reference_id

reference_type

scores

value	0.01918
scoring_system	epss
scoring_elements	0.83719
published_at	2026-06-11T12:55:00Z

value	0.01918
scoring_system	epss
scoring_elements	0.83777
published_at	2026-06-12T12:55:00Z

value	0.01918
scoring_system	epss
scoring_elements	0.83785
published_at	2026-06-13T12:55:00Z

value	0.01918
scoring_system	epss
scoring_elements	0.83782
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10128

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10128
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10128

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851406
reference_id	851406
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851406

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860990
reference_id	860990
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860990

reference_url	https://security.archlinux.org/ASA-201701-21
reference_id	ASA-201701-21
reference_type
scores
url	https://security.archlinux.org/ASA-201701-21

reference_url

https://security.archlinux.org/AVG-131

reference_id

AVG-131

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-131

fixed_packages

url	pkg:deb/debian/libgit2@0.25.1%2Breally0.24.6-1?distro=trixie
purl	pkg:deb/debian/libgit2@0.25.1%2Breally0.24.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.25.1%252Breally0.24.6-1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2016-10128

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jr2f-dp3q-6fed

url VCID-n5hh-umyv-j3b6

vulnerability_id VCID-n5hh-umyv-j3b6

summary An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. checkout.c mishandles equivalent filenames that exist because of NTFS short names. This may allow remote code execution when cloning a repository. This issue is similar to CVE-2019-1353.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12279.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12279.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-12279

reference_id

reference_type

scores

value	0.05164
scoring_system	epss
scoring_elements	0.90109
published_at	2026-06-11T12:55:00Z

value	0.05164
scoring_system	epss
scoring_elements	0.90141
published_at	2026-06-12T12:55:00Z

value	0.05164
scoring_system	epss
scoring_elements	0.9015
published_at	2026-06-13T12:55:00Z

value	0.05164
scoring_system	epss
scoring_elements	0.90147
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-12279

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12279
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12279

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1829407
reference_id	1829407
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1829407

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2020-12279
reference_id	CVE-2020-12279
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2020-12279

reference_url	https://usn.ubuntu.com/6678-1/
reference_id	USN-6678-1
reference_type
scores
url	https://usn.ubuntu.com/6678-1/

fixed_packages

url	pkg:deb/debian/libgit2@0.28.4%2Bdfsg.1-2?distro=trixie
purl	pkg:deb/debian/libgit2@0.28.4%2Bdfsg.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.28.4%252Bdfsg.1-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2020-12279, GHSA-589j-mmg9-733v

risk_score 3.6

exploitability 0.5

weighted_severity 7.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n5hh-umyv-j3b6

url VCID-t34z-hfzb-6kh2

vulnerability_id VCID-t34z-hfzb-6kh2

summary An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow remote code execution when cloning a repository. This issue is similar to CVE-2019-1352.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12278.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12278.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-12278

reference_id

reference_type

scores

value	0.06011
scoring_system	epss
scoring_elements	0.90904
published_at	2026-06-11T12:55:00Z

value	0.06011
scoring_system	epss
scoring_elements	0.90934
published_at	2026-06-12T12:55:00Z

value	0.06011
scoring_system	epss
scoring_elements	0.9094
published_at	2026-06-13T12:55:00Z

value	0.06011
scoring_system	epss
scoring_elements	0.90939
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-12278

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12278
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12278

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1829397
reference_id	1829397
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1829397

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2020-12278
reference_id	CVE-2020-12278
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2020-12278

reference_url	https://usn.ubuntu.com/6678-1/
reference_id	USN-6678-1
reference_type
scores
url	https://usn.ubuntu.com/6678-1/

fixed_packages

url	pkg:deb/debian/libgit2@0.28.4%2Bdfsg.1-2?distro=trixie
purl	pkg:deb/debian/libgit2@0.28.4%2Bdfsg.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.28.4%252Bdfsg.1-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2020-12278, GHSA-5wph-8frv-58vj

risk_score 3.6

exploitability 0.5

weighted_severity 7.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t34z-hfzb-6kh2

url VCID-tz55-xa3g-tff8

vulnerability_id VCID-tz55-xa3g-tff8

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10130

reference_id

reference_type

scores

value	0.00699
scoring_system	epss
scoring_elements	0.72453
published_at	2026-06-11T12:55:00Z

value	0.00699
scoring_system	epss
scoring_elements	0.72531
published_at	2026-06-12T12:55:00Z

value	0.00699
scoring_system	epss
scoring_elements	0.72545
published_at	2026-06-13T12:55:00Z

value	0.00699
scoring_system	epss
scoring_elements	0.72541
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10130

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10130
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10130

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851406
reference_id	851406
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851406

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860990
reference_id	860990
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860990

reference_url	https://security.archlinux.org/ASA-201701-21
reference_id	ASA-201701-21
reference_type
scores
url	https://security.archlinux.org/ASA-201701-21

reference_url

https://security.archlinux.org/AVG-131

reference_id

AVG-131

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-131

fixed_packages

url	pkg:deb/debian/libgit2@0.25.1%2Breally0.24.6-1?distro=trixie
purl	pkg:deb/debian/libgit2@0.25.1%2Breally0.24.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.25.1%252Breally0.24.6-1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2016-10130

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tz55-xa3g-tff8

url VCID-vdnq-txb1-kkez

vulnerability_id VCID-vdnq-txb1-kkez

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22742.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22742.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-22742

reference_id

reference_type

scores

value	0.00121
scoring_system	epss
scoring_elements	0.30655
published_at	2026-06-11T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.30855
published_at	2026-06-14T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.3087
published_at	2026-06-13T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.30853
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22742

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029368
reference_id	1029368
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029368

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2163614
reference_id	2163614
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2163614

reference_url

https://github.com/libgit2/libgit2/commit/42e5db98b963ae503229c63e44e06e439df50e56

reference_id

42e5db98b963ae503229c63e44e06e439df50e56

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T20:59:36Z/

url

https://github.com/libgit2/libgit2/commit/42e5db98b963ae503229c63e44e06e439df50e56

reference_url

http://www.openwall.com/lists/oss-security/2023/11/06/5

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T20:59:36Z/

url

http://www.openwall.com/lists/oss-security/2023/11/06/5

reference_url

https://github.com/libgit2/libgit2/commit/cd6f679af401eda1f172402006ef8265f8bd58ea

reference_id

cd6f679af401eda1f172402006ef8265f8bd58ea

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T20:59:36Z/

url

https://github.com/libgit2/libgit2/commit/cd6f679af401eda1f172402006ef8265f8bd58ea

reference_url

https://github.com/libgit2/libgit2/security/advisories/GHSA-8643-3wh5-rmjq

reference_id

GHSA-8643-3wh5-rmjq

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T20:59:36Z/

url

https://github.com/libgit2/libgit2/security/advisories/GHSA-8643-3wh5-rmjq

reference_url	https://security.gentoo.org/glsa/202411-05
reference_id	GLSA-202411-05
reference_type
scores
url	https://security.gentoo.org/glsa/202411-05

reference_url	https://usn.ubuntu.com/6678-1/
reference_id	USN-6678-1
reference_type
scores
url	https://usn.ubuntu.com/6678-1/

reference_url

https://github.com/libgit2/libgit2/releases/tag/v1.4.5

reference_id

v1.4.5

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T20:59:36Z/

url

https://github.com/libgit2/libgit2/releases/tag/v1.4.5

reference_url

https://github.com/libgit2/libgit2/releases/tag/v1.5.1

reference_id

v1.5.1

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T20:59:36Z/

url

https://github.com/libgit2/libgit2/releases/tag/v1.5.1

reference_url

https://www.libssh2.org

reference_id

www.libssh2.org

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T20:59:36Z/

url

https://www.libssh2.org

fixed_packages

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2023-22742, GHSA-8643-3wh5-rmjq

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vdnq-txb1-kkez

url VCID-z4ax-14uq-3kbg

vulnerability_id VCID-z4ax-14uq-3kbg

summary denial of service

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8569

reference_id

reference_type

scores

value	0.00438
scoring_system	epss
scoring_elements	0.63647
published_at	2026-06-12T12:55:00Z

value	0.00438
scoring_system	epss
scoring_elements	0.63661
published_at	2026-06-13T12:55:00Z

value	0.00438
scoring_system	epss
scoring_elements	0.63658
published_at	2026-06-14T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.66102
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8569

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8569
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8569

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840227
reference_id	840227
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840227

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860989
reference_id	860989
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860989

reference_url	https://security.archlinux.org/ASA-201611-17
reference_id	ASA-201611-17
reference_type
scores
url	https://security.archlinux.org/ASA-201611-17

reference_url

https://security.archlinux.org/AVG-45

reference_id

AVG-45

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-45

reference_url	https://usn.ubuntu.com/USN-4798-1/
reference_id	USN-USN-4798-1
reference_type
scores
url	https://usn.ubuntu.com/USN-4798-1/

fixed_packages

url	pkg:deb/debian/libgit2@0.24.2-2?distro=trixie
purl	pkg:deb/debian/libgit2@0.24.2-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.24.2-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2016-8569

risk_score 1.4

exploitability 0.5

weighted_severity 2.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z4ax-14uq-3kbg

url VCID-zvmv-7qgk-5qa4

vulnerability_id VCID-zvmv-7qgk-5qa4

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-10887

reference_id

reference_type

scores

value	0.00392
scoring_system	epss
scoring_elements	0.60643
published_at	2026-06-11T12:55:00Z

value	0.00392
scoring_system	epss
scoring_elements	0.60748
published_at	2026-06-12T12:55:00Z

value	0.00392
scoring_system	epss
scoring_elements	0.60758
published_at	2026-06-13T12:55:00Z

value	0.00392
scoring_system	epss
scoring_elements	0.60749
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-10887

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1598021
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1598021

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10887
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10887

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903509
reference_id	903509
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903509

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2018-10887
reference_id	CVE-2018-10887
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2018-10887

fixed_packages

url	pkg:deb/debian/libgit2@0.27.4%2Bdfsg.1-0.1?distro=trixie
purl	pkg:deb/debian/libgit2@0.27.4%2Bdfsg.1-0.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@0.27.4%252Bdfsg.1-0.1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libgit2@1.1.0%2Bdfsg.1-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.1.0%252Bdfsg.1-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/libgit2@1.5.1%2Bds-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.5.1%252Bds-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.0%2Bds-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

url	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
purl	pkg:deb/debian/libgit2@1.9.4%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.4%252Bds-1%3Fdistro=trixie

aliases CVE-2018-10887

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zvmv-7qgk-5qa4

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgit2@1.9.0%252Bds-2%3Fdistro=trixie

Package Instance