Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/cgit@0?distro=trixie
purl pkg:deb/debian/cgit@0?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (5)
Vulnerability Summary Aliases
VCID-chdb-9uwu-67f8 Git contains multiple vulnerabilities that allow for the remote execution of arbitrary code. CVE-2016-2315
VCID-cz1b-nsxp-57hu Argument injection vulnerability in syntax-highlighting.sh in cgit 9.0.3 and earlier allows remote authenticated users with permissions to add files to execute arbitrary commands via the --plug-in argument to the highlight command. CVE-2012-4548
VCID-dwux-f8gv-bbfq Directory traversal vulnerability in the cgit_parse_readme function in ui-summary.c in cgit before 0.9.2, when a readme file is set to a filesystem path, allows remote attackers to read arbitrary files via a .. (dot dot) in the url parameter. CVE-2013-2117
VCID-r2s1-ekyx-j3hc Heap-based buffer overflow in the substr function in parsing.c in cgit 0.9.0.3 and earlier allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via an empty username in the "Author" field in a commit. CVE-2012-4465
VCID-vjnp-dnar-p7gy Git contains multiple vulnerabilities that allow for the remote execution of arbitrary code. CVE-2016-2324

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T11:33:27.038043+00:00 Debian Importer Fixing VCID-dwux-f8gv-bbfq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:11:14.987795+00:00 Debian Importer Fixing VCID-vjnp-dnar-p7gy https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:56:04.767435+00:00 Debian Importer Fixing VCID-chdb-9uwu-67f8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:35:12.339984+00:00 Debian Importer Fixing VCID-cz1b-nsxp-57hu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:45:21.130666+00:00 Debian Importer Fixing VCID-r2s1-ekyx-j3hc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T07:52:43.859357+00:00 Debian Importer Fixing VCID-dwux-f8gv-bbfq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:36:17.963359+00:00 Debian Importer Fixing VCID-vjnp-dnar-p7gy https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:24:49.110133+00:00 Debian Importer Fixing VCID-chdb-9uwu-67f8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:09:08.883499+00:00 Debian Importer Fixing VCID-cz1b-nsxp-57hu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:52:57.322893+00:00 Debian Importer Fixing VCID-r2s1-ekyx-j3hc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-02T17:12:02.007020+00:00 Debian Importer Fixing VCID-dwux-f8gv-bbfq https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:10:42.937665+00:00 Debian Importer Fixing VCID-vjnp-dnar-p7gy https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:09:54.266384+00:00 Debian Importer Fixing VCID-chdb-9uwu-67f8 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:08:40.218428+00:00 Debian Importer Fixing VCID-cz1b-nsxp-57hu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:02:36.738314+00:00 Debian Importer Fixing VCID-r2s1-ekyx-j3hc https://security-tracker.debian.org/tracker/data/json 38.1.0