ALT-PU-2022-3074-2

Package gitea updated to version 1.16.9-alt1 for branch c9f2 in task 303505.

An issue exsits in Gitea through 1.15.7, which could let a malicious user gain privileges due to client side cookies not being deleted and the session remains valid on the server side for reuse.

Severity: HIGH (7.5)Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: CRITICAL (9.8)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Missing Authorization in GitHub repository go-gitea/gitea prior to 1.16.4.

Severity: MEDIUM (5.5)Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N

Severity: HIGH (7.1)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

References:

Open Redirect on login in GitHub repository go-gitea/gitea prior to 1.16.5.

Severity: MEDIUM (5.8)Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Severity: MEDIUM (6.1)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

References:

Cross-site Scripting (XSS) - Stored in GitHub repository go-gitea/gitea prior to 1.16.9.

Severity: LOW (3.5)Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Severity: MEDIUM (5.4)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

References:

Gitea before 1.16.7 does not escape git fetch remote.

Severity: MEDIUM (5.0)Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Severity: HIGH (7.5)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

References:

In Gitea before 1.16.9, it was possible for users to add existing issues to projects. Due to improper access controls, an attacker could assign any issue to any project in Gitea (there was no permission check for fetching the issue). As a result, the attacker would get access to private issue titles.

Severity: MEDIUM (6.5)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References:

Gitea Open Redirect

Severity: MEDIUM (6.1)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

References:

Gitea allowed assignment of private issues

Severity: MEDIUM (6.5)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References:

Gitea Missing Authorization vulnerability

Severity: HIGH (7.1)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

References:

Shell command injection in gitea

Severity: HIGH (7.5)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

References:

Improper Privilege Management in Gitea

Severity: CRITICAL (9.8)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Stored Cross-site Scripting in gitea

Severity: MEDIUM (4.4)Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N

References:

Version: 2.1.2

Package gitea update in c9f2 on 2022-11-14

ALT-PU-2022-3074-2

Closed vulnerabilities

CVE-2021-45330

CVE-2022-0905

CVE-2022-1058

CVE-2022-1928

CVE-2022-30781

CVE-2022-38183

GHSA-4rqq-rxvc-v2rc

GHSA-fhv8-m4j4-cww2

GHSA-jr9c-h74f-2v28

GHSA-p5f9-c9j9-g8qx

GHSA-pg38-r834-g45j

GHSA-ph3w-2843-72mx