FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gitea -- Prevent anonymous container access

Affected packages
gitea < 1.21.5

Details

VuXML ID bd7592a1-cbfd-11ee-a42a-5404a6f3ca32
Discovery 2024-01-24
Entry 2024-02-15

Problem Description:

Even with RequireSignInView enabled, anonymous users can use docker pull to fetch public images.

References

URL https://blog.gitea.com/release-of-1.21.5/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.