A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications using only the in-memory filesystem supported by go-git are not affected by this vulnerability. This is a go-git implementation issue and does not affect the upstream git cli.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Bitdefender

Published: 2024-01-12T10:36:12.727Z

Updated: 2024-08-02T22:01:25.669Z

Reserved: 2023-11-27T14:21:51.157Z

Link: CVE-2023-49568

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-01-12T11:15:12.680

Modified: 2024-11-21T08:33:34.447

Link: CVE-2023-49568

cve-icon Redhat

Severity : Important

Publid Date: 2023-12-24T00:00:00Z

Links: CVE-2023-49568 - Bugzilla