Detections
Analytics
Fedora 37 : rust-libgit2-sys0.12 (2023-129fd06006)
high Nessus Plugin ID 170739
Language:
Synopsis
The remote Fedora host is missing one or more security updates.Description
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-129fd06006 advisory.- Update bundled libgit2 to version 1.3.2 for the latest security fixes. Neither the 0.12 branch libgit2-sys nor the 1.3 branch of libgit2 branch are still supported upstream, so this is the best we can do until packages are ported to newer versions of the libgit2-sys crate. (FEDORA-2023-129fd06006)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected rust-libgit2-sys0.12 package.See Also
https://bodhi.fedoraproject.org/updates/FEDORA-2023-129fd06006
Plugin Details
Severity: High
ID: 170739
File Name: fedora_2023-129fd06006.nasl
Version: 1.0
Type: local
Agent: unix
Family: Fedora Local Security Checks
Published: 1/28/2023
Updated: 1/28/2023
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Vulnerability Information
CPE: cpe:/o:fedoraproject:fedora:37, p-cpe:/a:fedoraproject:fedora:rust-libgit2-sys0.12
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 1/21/2023
Vulnerability Publication Date: 1/21/2023
Reference Information
FEDORA: 2023-129fd06006