CVE-2024-4982 Information

Description

A directory traversal vulnerability was discovered in Pagure server. If a malicious user submits a specially cratfted git repository they could discover secrets on the server.

Reference

https://access.redhat.com/security/cve/CVE-2024-4982 https://bugzilla.redhat.com/show_bug.cgi?id=2279411 https://bugzilla.redhat.com/show_bug.cgi?id=2280726 https://pagure.io/pagure/c/c43844d23c919133fc983fe8c0f1dfb3b86e67d0