)]}'
{
  "commit": "ccee8cabc3fd187046bbfccb407de95dafc310f6",
  "tree": "fd0ac67bb4033e954df59032c224e2cc1d7c2ffc",
  "parents": [
    "0d38f1b26da2cfae07a0bf8347fe43dd2a2e942a"
  ],
  "author": {
    "name": "Patrick Steinhardt",
    "email": "ps@pks.im",
    "time": "Tue Nov 15 11:36:27 2016 +0100"
  },
  "committer": {
    "name": "Edward Thomson",
    "email": "ethomson@github.com",
    "time": "Mon Jan 09 14:05:20 2017 -0500"
  },
  "message": "smart_pkt: verify packet length exceeds PKT_LEN_SIZE\n\nEach packet line in the Git protocol is prefixed by a four-byte\nlength of how much data will follow, which we parse in\n`git_pkt_parse_line`. The transmitted length can either be equal\nto zero in case of a flush packet or has to be at least of length\nfour, as it also includes the encoded length itself. Not\nchecking this may result in a buffer overflow as we directly pass\nthe length to functions which accept a `size_t` length as\nparameter.\n\nFix the issue by verifying that non-flush packets have at least a\nlength of `PKT_LEN_SIZE`.\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "2ea57bb6428eaf4c163157d4b126137e876ddfab",
      "old_mode": 33188,
      "old_path": "src/transports/smart_pkt.c",
      "new_id": "b1eee3e3b6e673f74e4043d0757143d4e58bfb88",
      "new_mode": 33188,
      "new_path": "src/transports/smart_pkt.c"
    }
  ]
}