CVE-2009-2108

Name of the Vulnerable Software and Affected Versions git versions 1.4.4.5 through 1.6.3 git versions prior to 1.6.3.3

Description The issue allows remote attackers to cause a denial of service, resulting in an infinite loop and CPU consumption. This can be achieved by sending a request with extra unrecognized arguments. The vulnerability can be exploited remotely, potentially leading to a disruption in the availability of protected information.

Recommendations For git versions 1.4.4.5 through 1.6.3, consider updating to a version outside of this range to mitigate the risk. For git versions prior to 1.6.3.3, update to version 1.6.3.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the git-daemon to minimize the risk of exploitation.