CVE-2022-42968

Gitea before 1.17.3 does not sanitize and escape refs in the git backend. Arguments to git commands are mishandled.
References
Link Resource
https://github.com/go-gitea/gitea/pull/21463 Patch Third Party Advisory
https://github.com/go-gitea/gitea/releases/tag/v1.17.3 Release Notes Third Party Advisory
https://security.gentoo.org/glsa/202210-14 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:gitea:gitea:*:*:*:*:*:*:*:*

Information

Published : 2022-10-16 04:15

Updated : 2022-12-03 01:35


NVD link : CVE-2022-42968

Mitre link : CVE-2022-42968

Products Affected
No products.
CWE