View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-10128 severity moderate: SUSE including 27 source package names (libgit2-1_1-1.1.1-1.2, libgit2-1_1-32bit-1.1.1-1.2, …), 33 product×package rows across 18 product lines (SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Module for Development Tools 15 SP1, … (18 product lines)): Fixed 33.
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to have unspecified impact via a crafted non-flush packet.