-
Byte Open Security
(ByteOS Network)
Log In
Sign Up
CVE Vulnerability Details :
CVE-2026-58421
PUBLISHED
More Info
Official Page
Assigner
-
Gitea
Assigner Org ID
-
88ee5874-cf24-4952-aea0-31affedb7ff2
View Known Exploited Vulnerability (KEV) details
Published At
-
03 Jul, 2026 | 20:54
Updated At
-
03 Jul, 2026 | 20:54
Rejected At
-
▼
CVE Numbering Authority (CNA)
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service
Affected Products
Vendor
Gitea
Product
Gitea Open Source Git Server
Default Status
unaffected
Versions
Affected
From
0
before
1.26.2
(semver)
Problem Types
Type
CWE ID
Description
CWE
CWE-284
CWE-284
Type:
CWE
CWE ID:
CWE-284
Description:
CWE-284
Metrics
Version
Base score
Base severity
Vector
Metrics Other Info
Impacts
CAPEC ID
Description
Solutions
Configurations
Workarounds
Exploits
Credits
reporter
AdamKorcz
Timeline
Event
Date
Replaced By
Rejected Reason
References
Hyperlink
Resource
https://github.com/go-gitea/gitea/security/advisories/GHSA-v96j-25gv-g2w9
vendor-advisory
https://github.com/go-gitea/gitea/pull/38011
patch
https://github.com/go-gitea/gitea/releases/tag/v1.26.4
release-notes
https://blog.gitea.com/release-of-1.26.3-and-1.26.4/
release-notes
Hyperlink:
https://github.com/go-gitea/gitea/security/advisories/GHSA-v96j-25gv-g2w9
Resource:
vendor-advisory
Hyperlink:
https://github.com/go-gitea/gitea/pull/38011
Resource:
patch
Hyperlink:
https://github.com/go-gitea/gitea/releases/tag/v1.26.4
Resource:
release-notes
Hyperlink:
https://blog.gitea.com/release-of-1.26.3-and-1.26.4/
Resource:
release-notes
Details not found