CVE-2013-7203

MEDIUM5.5EPSS 0.07%

Published: 9/21/2018Modified: 4/28/2026

Also known as:DEBIAN-CVE-2013-7203

Description

gitolite before commit fa06a34 might allow local users to read arbitrary files in repositories via vectors related to the user umask when running gitolite setup.

Affected packages (1)

Debian/gitolite3from 0, < 3.5.3.1-1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.5	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-7203