High severityNVD Advisory· Published May 20, 2020· Updated Aug 4, 2024
CVE-2020-13246
CVE-2020-13246
Description
An issue was discovered in Gitea through 1.11.5. An attacker can trigger a deadlock by initiating a transfer of a repository's ownership from one organization to another.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/go-gitea/giteaGo | < 1.12.0 | 1.12.0 |
Affected products
3- Gitea/Giteadescription
- osv-coords2 versions
< 1.11.6+ 1 more
- (no CPE)range: < 1.11.6
- (no CPE)range: < 1.12.0
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-g2qx-6ghw-67hmghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-13246ghsaADVISORY
- github.com/go-gitea/gitea/issues/10549ghsax_refsource_MISCWEB
- github.com/go-gitea/gitea/pull/11438ghsax_refsource_MISCWEB
- www.youtube.com/watchghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.