Created attachment 247026 [details] Patch to update the gitea port to 1.21.2 pdate gitea to 1.21.2 This release fixes two security issues as well as a number of bugs, and includes some enhancements. Release notes: https://github.com/go-gitea/gitea/releases/tag/v1.21.2 Patch contains the addition of the message to pkg-message from #275373
Because of the security issue, I recommend merging this to quarterly.
Created attachment 247191 [details] Update prot to 1.21.3 plus vuxml entries It would be great if someone could pick this up sooner or later. This is the second release with security fixes, and the SSH issue is somewhat severe, as I understand.
Release notes for 1.21.3: https://blog.gitea.com/release-of-1.21.3/
And this should be merged to quarterly, as there will be no release of 1.20 forthcoming.
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=478a7fab1aa36ee655d2840c7f282de684ca4d51 commit 478a7fab1aa36ee655d2840c7f282de684ca4d51 Author: Stefan Bethke <stb@lassitu.de> AuthorDate: 2023-12-21 23:19:59 +0000 Commit: Muhammad Moinur Rahman <bofh@FreeBSD.org> CommitDate: 2023-12-22 01:24:35 +0000 www/gitea: Update version 1.21.0=>1.21.3 - Add relevant vuxml entry - Move pkg-message to SUB_FILES as we are using PREFIX Changelog: https://blog.gitea.com/release-of-1.21.3/ PR: 275742 Approved by: submitter is maintainer security/vuxml/vuln/2023.xml | 56 +++++++++++++++++++++++++ www/gitea/Makefile | 5 +-- www/gitea/distinfo | 6 +-- www/gitea/{pkg-message => files/pkg-message.in} | 15 +++++++ 4 files changed, 76 insertions(+), 6 deletions(-)