VDB

GO-2026-4473

GO-2026-4473 PUBLISHED

Improper verification of data integrity values for .idx and .pack files in github.com/go-git/go-git

Affected Products

VendorProductVersions
github.comgo-git/go-git0, 0
github.comgo-git/go-git/v50, 0
github.comgo-git/go-git/v40, 0

Timeline

  • Feb 19, 2026 CVE Published
  • Feb 20, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›