CNNVD-202512-4789 Information

CNNVD ID

CNNVD-202512-4789

Related CVE

CVE-2025-68940

• CNNVD Published: 2025-12-26

Description (Chinese)

Gitea是Gitea社区的一个基于Go开发的轻量型git服务。 Gitea 1.22.5之前版本存在安全漏洞，该漏洞源于合并拉取请求后分支删除权限执行不足。

Description (English)

Gitea is a light-size git service developed by Go in the Gitea community. There was a security loophole in the pre-Gitea 1.22.5 version, which resulted from the lack of enforcement of the power to remove from the branch after the merger request.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

Gitea

Published

2025-12-26

Last Modified

2026-02-24

References

https://blog.gitea.com/release-of-1.22.5/ https://github.com/go-gitea/gitea/pull/32654 https://github.com/go-gitea/gitea/releases/tag/v1.22.5 https://access.redhat.com/security/cve/cve-2025-68940

Patch

https://github.com/go-gitea/gitea/releases