Lucene search
K

163 matches found

NVD
NVD
added 2026/07/03 9:16 p.m.7 views

CVE-2026-28740

Gitea versions up to and including 1.26.2 allow Git LFS object reuse to authorize private source objects for users who have repository access but lack Code-unit access...

7.1CVSS0.00323EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/07/03 8:54 p.m.7 views

CVE-2026-58423

LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories...

7.7CVSS5.9AI score0.0031EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/07/03 8:19 p.m.35 views

CVE-2026-26292 Gitea LFS mirror synchronization bypasses migration HTTP transport restrictions

Gitea versions before 1.25.5 do not use the migration HTTP transport for LFS push and sync mirror operations, bypassing the configured migration transport protections for those LFS requests...

0.00482EPSS
Exploits0References4
OSV
OSV
added 2026/06/29 11:29 a.m.7 views

RHSA-2026:30853 Red Hat Security Advisory: git-lfs security update

Bulletin has no description...

8.2CVSS6.6AI score0.00478EPSS
Exploits0References11
AlmaLinux
AlmaLinux
added 2026/06/29 12:0 a.m.6 views

Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycod...

9.6CVSS6.8AI score0.00478EPSS
Exploits0References4
OSV
OSV
added 2026/06/29 12:0 a.m.5 views

ALSA-2026:30853 Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycod...

9.6CVSS5.8AI score0.00478EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/29 12:0 a.m.9 views

RHEL 9 : git-lfs (RHSA-2026:30854)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:30854 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing t...

9.6CVSS6.7AI score0.00478EPSS
Exploits0References4
OSV
OSV
added 2026/06/29 12:0 a.m.5 views

ALSA-2026:30854 Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycod...

9.6CVSS6.7AI score0.00478EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/29 12:0 a.m.8 views

RHEL 8 : git-lfs (RHSA-2026:30853)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:30853 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing t...

9.6CVSS6.7AI score0.00478EPSS
Exploits0References4
OSV
OSV
added 2026/05/26 10:7 a.m.19 views

RHSA-2026:20581 Red Hat Security Advisory: git-lfs security update

Bulletin has no description...

7.5CVSS7.2AI score0.00728EPSS
Exploits0References11
OSV
OSV
added 2026/05/26 10:7 a.m.27 views

RHSA-2026:20582 Red Hat Security Advisory: git-lfs security update

Bulletin has no description...

7.5CVSS7.2AI score0.00728EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2026/05/26 3:56 a.m.25 views

Important: Red Hat Security Advisory: git-lfs security update

An update for git-lfs is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.20 views

RHEL 8 : git-lfs (RHSA-2026:20582)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:20582 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing t...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.20 views

RHEL 8 : git-lfs (RHSA-2026:20581)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:20581 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing t...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in git-lfs

Git LFS is an extension of Git for versioning large files. When Git LFS requests credentials from Git for a remote host, it passes portions of the host’s URL to the git-credential1 command without checking for embedded line-ending control characters. It then sends any credentials it receives back...

8.5CVSS7.2AI score0.0104EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.16 views

RHEL 9 : git-lfs (RHSA-2026:19722)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:19722 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while...

7.5CVSS7.4AI score0.00621EPSS
Exploits0References8
Rockylinux
Rockylinux
added 2026/05/14 6:1 p.m.24 views

git-lfs security update

An update is available for git-lfs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Git Large File Storage LFS replaces large files such as audio samples, videos...

7.5CVSS7.3AI score0.00728EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/05/13 12:0 a.m.25 views

git-lfs security update

3.4.1-10 - Rebuild with new Golang - Resolves: RHEL-167541, RHEL-167379, RHEL-166518 3.4.1-9 - Rebuild with new Golang - Resolves: RHEL-156637...

7.5CVSS7.4AI score0.00728EPSS
Exploits0
Rockylinux
Rockylinux
added 2026/05/08 12:3 p.m.20 views

git-lfs security update

An update is available for git-lfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Git Large File Storage LFS replaces large files such as audio samples, videos...

7.5CVSS7.4AI score0.00621EPSS
Exploits0
OSV
OSV
added 2026/04/22 10:11 a.m.15 views

RHSA-2026:9435 Red Hat Security Advisory: git-lfs security update

Bulletin has no description...

7.5CVSS5.6AI score0.00728EPSS
Exploits0References11
Rows per page
Query Builder