Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 11 Sep 2022 14:03:45 GMT
From:      Dmitri Goutnik <dmgk@FreeBSD.org>
To:        ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org
Subject:   git: 1ffdc83f6987 - main - security/vuxml: Document Gitea vulnerabilities
Message-ID:  <202209111403.28BE3j5S003340@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help 
The branch main has been updated by dmgk:

URL: https://cgit.FreeBSD.org/ports/commit/?id=1ffdc83f69875b2eb86483307eaa3355e0d65c7d

commit 1ffdc83f69875b2eb86483307eaa3355e0d65c7d
Author:     Stefan Bethke <stb@lassitu.de>
AuthorDate: 2022-09-11 13:58:13 +0000
Commit:     Dmitri Goutnik <dmgk@FreeBSD.org>
CommitDate: 2022-09-11 14:03:23 +0000

    security/vuxml: Document Gitea vulnerabilities
    
    PR:             266359
---
 security/vuxml/vuln-2022.xml | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/security/vuxml/vuln-2022.xml b/security/vuxml/vuln-2022.xml
index 8c8ccd70683a..d355a810401b 100644
--- a/security/vuxml/vuln-2022.xml
+++ b/security/vuxml/vuln-2022.xml
@@ -1,3 +1,31 @@
+  <vuln vid="f75722ce-31b0-11ed-8b56-0800277bb8a8">
+    <topic>gitea -- multiple issues</topic>
+    <affects>
+      <package>
+	<name>gitea</name>
+	<range><lt>1.17.2</lt></range>
+      </package>
+    </affects>
+    <description>
+      <body xmlns="http://www.w3.org/1999/xhtml">;
+	<p>The Gitea team reports:</p>
+	<blockquote cite="https://github.com/go-gitea/gitea/pull/20869">;
+	  <p>Double check CloneURL is acceptable</p>
+	</blockquote>
+	<blockquote cite="https://github.com/go-gitea/gitea/pull/21011">;
+	  <p>Add more checks in migration code</p>
+	</blockquote>
+      </body>
+    </description>
+    <references>
+      <url>https://blog.gitea.io/2022/09/gitea-1.17.2-is-released/</url>;
+    </references>
+    <dates>
+      <discovery>2022-08-19</discovery>
+      <entry>2022-09-11</entry>
+    </dates>
+  </vuln>
+
   <vuln vid="80e057e7-2f0a-11ed-978f-fcaa147e860e">
     <topic>Python -- multiple vulnerabilities</topic>
     <affects>

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202209111403.28BE3j5S003340>