alpine · CVE-2026-23633

Quick triage

Priority: not assigned Published: Updated:

View at Official alpine advisory, NVD, CVE.org · CVE detail

Freshness: no update timestamp found; verify against the upstream OS advisory manually.

Tracker summary

CVE-2026-23633: 1 source package rows (gogs); 4 state rows across 1 repos (edge-community); fixed 0, open 4.

Description:

Gogs is an open source self-hosted Git service. In version 0.13.3 and prior, there is an arbitrary file read/write via path traversal in Git hook editing. This issue has been patched in versions 0.13.4 and 0.14.0+dev.

cvelogic Threat Intelligence