CVE Field Guide
About Us
CVE-2026-58421
PUBLISHED
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service
Assigner:
Gitea
Reserved:
30.06.2026
Published:
03.07.2026
Updated:
03.07.2026
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service
Product Status
Vendor
Gitea
Product
Gitea Open Source Git Server
Versions
Default:
unaffected
affected from 0 to 1.26.2 (excl.)
Credits
AdamKorcz
reporter
References
GitHub Security Advisory
GitHub Pull Request #38011
Gitea v1.26.4 Release
Gitea v1.26.4 Release Blog Post
Problem Types
CWE-284
CWE