Bitnami package
gitea
pkg:bitnami/gitea
Vulnerabilities (42)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-14144 | — | >= 1.1.0, < 1.12.6 | 1.12.6 | Oct 16, 2020 | The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood (e.g., one viewpoint is that the dangerousness of this feature should be documented immediately above the ENA | ||
| CVE-2020-13246 | — | < 1.11.6 | 1.11.6 | May 20, 2020 | An issue was discovered in Gitea through 1.11.5. An attacker can trigger a deadlock by initiating a transfer of a repository's ownership from one organization to another. |
- CVE-2020-14144Oct 16, 2020affected >= 1.1.0, < 1.12.6fixed 1.12.6
The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood (e.g., one viewpoint is that the dangerousness of this feature should be documented immediately above the ENA
- CVE-2020-13246May 20, 2020affected < 1.11.6fixed 1.11.6
An issue was discovered in Gitea through 1.11.5. An attacker can trigger a deadlock by initiating a transfer of a repository's ownership from one organization to another.
Page 3 of 3