VDB

GCVE-110-MAGEIA-2018-434

GCVE-110-MAGEIA-2018-434
Advisory Published
Vulnetix · Advisory published November 3, 2018
Updated gitolite package fixes security vulnerability: Gitolite before 3.6.9 does not (in certain configurations involving @all or a regex) properly restrict access to a Git repository that is in the process of being migrated until the full set of migration steps has been completed. This can allow valid users to obtain unintended access (CVE-2018-16976).

Affected Products

VendorProductVersionsPlatforms
Mageiagitolite0 (affected), 3.6.10-1.mga6 (unaffected)

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›