CVE-2016-1901

Name of the Vulnerable Software and Affected Versions CGit versions prior to 0.12

Description The issue is related to an integer overflow in the authenticate post function, which can be triggered by a large value in the Content-Length HTTP header. This leads to a buffer overflow, allowing remote attackers to have an unspecified impact.

Recommendations For versions prior to 0.12, update to version 0.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the authenticate post function to minimize the risk of exploitation. Avoid using large values in the Content-Length HTTP header until the issue is resolved.