CVE-2022-42968
9.8CRITICALGitea before 1.17.3 does not sanitize and escape refs in the git backend. Arguments to git commands are mishandled.
Опубликовано: 10/16/2022Обновлено: 5/14/2025
Описание
Gitea before 1.17.3 does not sanitize and escape refs in the git backend. Arguments to git commands are mishandled.
ИИ-АнализНа базе ИИ
Затронутые продукты
giteagitea
Ссылки
- https://github.com/go-gitea/gitea/pull/21463PatchThird Party Advisory
- https://github.com/go-gitea/gitea/releases/tag/v1.17.3Release NotesThird Party Advisory
- https://security.gentoo.org/glsa/202210-14Third Party Advisory
- https://github.com/go-gitea/gitea/pull/21463PatchThird Party Advisory
- https://github.com/go-gitea/gitea/releases/tag/v1.17.3Release NotesThird Party Advisory
- https://security.gentoo.org/glsa/202210-14Third Party Advisory