From c15a234456248f4af18d904d4c9a54f01f4d321e Mon Sep 17 00:00:00 2001 From: Stefan Bethke Date: Fri, 5 Aug 2022 17:33:32 +0100 Subject: security/vuxml: Document Gitea multiple vulnerabilities - Add write check for creating Commit status https://github.com/go-gitea/gitea/pull/20334 - Check for permission when fetching user controlled issues https://github.com/go-gitea/gitea/pull/20196 PR: 265526 --- security/vuxml/vuln-2022.xml | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) diff --git a/security/vuxml/vuln-2022.xml b/security/vuxml/vuln-2022.xml index d409f5d39390..ba963e7d410f 100644 --- a/security/vuxml/vuln-2022.xml +++ b/security/vuxml/vuln-2022.xml @@ -1,3 +1,31 @@ + + gitea -- multiple issues + + + gitea + 1.16.9 + + + + +

The Gitea team reports:

+
Add write check for creating Commit status
+

+
Check for permission when fetching user controlled issues
+

+ + + + https://github.com/go-gitea/gitea/releases/tag/v1.16.9 + + + 2022-07-12 + 2022-08-05 + + + Django -- multiple vulnerabilities -- cgit v1.2.3