230360 – security/vuxml: Document directory traversal vulnerability in cgit (CVE-2018-14912)

Bug 230360 - security/vuxml: Document directory traversal vulnerability in cgit (CVE-2018-14912)

Summary: security/vuxml: Document directory traversal vulnerability in cgit (CVE-2018-...

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Some People
Assignee:	Thomas Zander

URL:
Keywords:	patch

Depends on:
Blocks:	230361
	Show dependency tree / graph

Reported:	2018-08-04 19:56 UTC by Yasuhiro Kimura
Modified:	2018-08-12 17:02 UTC (History)
CC List:	1 user (show)

See Also:	230361

Flags:	riggs: maintainer-feedback+

Attachments
patch file (1.34 KB, patch) 2018-08-04 19:56 UTC, Yasuhiro Kimura	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Yasuhiro Kimura freebsd_committer

2018-08-04 19:56:56 UTC

Created attachment 195854 [details]
patch file

Document directory traversal vulnerability in cgit (CVE-2018-14912).

Comment 1 commit-hook freebsd_committer

2018-08-05 11:57:49 UTC

A commit references this bug:

Author: riggs
Date: Sun Aug  5 11:56:50 UTC 2018
New revision: 476408
URL: https://svnweb.freebsd.org/changeset/ports/476408

Log:
  Document CVE-2018-14912 in devel/cgit before version 1.2.1

  PR:		230360
  Submitted by:	yasu@utahime.org

Changes:
  head/security/vuxml/vuln.xml