VDB

GCVE-110-MAGEIA-2024-59

GCVE-110-MAGEIA-2024-59
Advisory Published
Vulnetix · Advisory published March 14, 2024
When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. (CVE-2023-22742) Using well-crafted inputs to `git_index_add` can cause heap corruption that could be leveraged for arbitrary code execution. (CVE-2024-24577)

Affected Products

VendorProductVersionsPlatforms
Mageialibgit20 (affected), 1.3.2-1.1.mga9 (unaffected), 1.3.2-1.1.mga9 (unaffected), 0 (affected)
Mageiamariadb0 (affected), 10.11.7-1.mga9 (unaffected)

Browse GCVE Records

71,925 records in the GCVE database · Updated July 13, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›