VDB

GCVE-110-MAGEIA-2017-440

GCVE-110-MAGEIA-2017-440
Advisory Published
Vulnetix · Advisory published December 1, 2017
Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a denial of service (memory consumption) via a crafted repository, aka a Git bomb. This can also have an impact of disk consumption; however, an affected process typically would not survive its attempt to build the data structure in memory before writing to disk (CVE-2017-15298).

Affected Products

VendorProductVersionsPlatforms
Mageiagit0 (affected), 2.7.6-1.1.mga5 (unaffected)
Mageiagit0 (affected), 2.13.6-1.1.mga6 (unaffected)

Browse GCVE Records

72,409 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›