10044 matches found
CVE-2025-12073
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.0 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions, could have allowed an authenticated user to perform server-side request forgery against internal services by bypassing...
CVE-2025-12073
Removed by vendor...
RLSA-2026:2323 Important: git-lfs security update
Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted...
[SECURITY] Fedora 42 Update: rust-pretty-git-prompt-0.2.2-9.fc42
Your current git repository information inside a beautiful shell prompt...
[SECURITY] Fedora 42 Update: rust-onefetch-2.26.1-7.fc42
Command-line Git information tool...
[SECURITY] Fedora 42 Update: rust-git-interactive-rebase-tool-2.4.1-15.fc42
Full-featured terminal-based sequence editor for Git interactive rebase...
[SECURITY] Fedora 42 Update: rust-git-delta-0.18.2-13.fc42
A syntax-highlighting pager for git...
[SECURITY] Fedora 42 Update: rust-git2-0.20.4-1.fc42
Bindings to libgit2 for interoperating with git repositories. This library is both threadsafe and memory safe and allows both reading and writing git repositories...
AlmaLinux 8 : git-lfs (ALSA-2026:2323)
The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:2323 advisory. crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 Tenable has extracted the preceding description...
RockyLinux 8 : git-lfs (RLSA-2026:2323)
The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:2323 advisory. crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 Tenable has extracted the preceding descriptio...
FreeBSD : Gitlab -- vulnerabilities (9d9940e7-071c-11f1-93ca-2cf05da270f3)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 9d9940e7-071c-11f1-93ca-2cf05da270f3 advisory. Gitlab reports: Incomplete Validation issue in Web IDE impacts GitLab CE/EE Denial of Service...
RHSA-2026:2323 Red Hat Security Advisory: git-lfs security update
Bulletin has no description...
[SECURITY] Fedora 43 Update: rust-pretty-git-prompt-0.2.2-9.fc43
Your current git repository information inside a beautiful shell prompt...
[SECURITY] Fedora 43 Update: rust-onefetch-2.26.1-7.fc43
Command-line Git information tool...
[SECURITY] Fedora 43 Update: rust-git2-0.20.4-1.fc43
Bindings to libgit2 for interoperating with git repositories. This library is both threadsafe and memory safe and allows both reading and writing git repositories...
[SECURITY] Fedora 43 Update: rust-git-delta-0.18.2-13.fc43
A syntax-highlighting pager for git...
Exploit for Path Traversal in Gogs
Affected Software: Gogs self‑hosted Git service versions pri...
GHSA-37CX-329C-33X3 go-git improperly verifies data integrity values for .idx and .pack files
Impact A vulnerability was discovered in go-git whereby data integrity values for .pack and .idx files were not properly verified. This resulted in go-git potentially consuming corrupted files, which would likely result in unexpected errors such as object not found. For context, clients fetch...
Linux Distros Unpatched Vulnerability : CVE-2026-25934
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - go-git is a highly extensible git implementation library written in pure Go. Prior to 5.16.5, a vulnerability was discovered in go-git whereby data integrity...
Oracle Linux 8 : git-lfs (ELSA-2026-2323)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-2323 advisory. 3.4.1-7 - Rebuild with new Golang - Resolves: RHEL-140536 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...