cgit

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description A web interface for git written in plain C
Version 1.2.3.r70.g09d24d7-3 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-745 1.2-1 1.2.1-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2018-14912 AVG-745 High Yes Directory traversal
cgit_clone_objects in CGit before 1.2.1 has a directory traversal vulnerability when `enable-http-clone=1` is not turned off, as demonstrated by a...

Advisories

Date Advisory Group Severity Type
03 Aug 2018 ASA-201808-2 AVG-745 High directory traversal