Index: vuln.xml =================================================================== --- vuln.xml +++ vuln.xml @@ -58,6 +58,33 @@ * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> + + Libgit2 -- Fxing insufficient validation of submodule names + + + libgit2 + py-pygit2 + 0.27.1 + + + + +

The Git community reports:

+
+

Insufficient validation of submodule names

+
+ + + + https://github.com/libgit2/libgit2/releases/tag/v0.27.1 + CVE-2018-11235 + + + 2018-05-29 + 2018-06-05 + + + Git -- Fix memory out-of-bounds and remote code execution vulnerabilities (CVE-2018-11233 and CVE-2018-11235)