Attachment #239147 for bug #268667

View | Details | Raw Unified | Return to bug 268667
Collapse All | Expand All




  <vuln vid="48067fe2-88f9-11ed-8edb-0800277bb8a8">
    <topic>gitea -- multiple issues</topic>
    <affects>
      <package>
	<name>gitea</name>
	<range><lt>1.18.0</lt></range>
      </package>
    </affects>
    <description>
      <body xmlns="http://www.w3.org/1999/xhtml">
	<p>The Gitea team reports:</p>
	<blockquote cite="https://github.com/go-gitea/gitea/pull/22219">
	  <p>Remove ReverseProxy authentication from the API</p>
	</blockquote>
	<blockquote cite="https://github.com/go-gitea/gitea/pull/21139">
	  <p>Support Go Vulnerability Management</p>
	</blockquote>
	<blockquote cite="https://github.com/go-gitea/gitea/pull/20935">
	  <p>Forbid HTML string tooltips</p>
	</blockquote>
      </body>
    </description>
    <references>
      <url>https://blog.gitea.io/2022/12/gitea-1.18.0-is-released/</url>
      <url>https://github.com/go-gitea/gitea/releases/tag/v1.18.0</url>
    </references>
    <dates>
      <discovery>2022-08-23</discovery>
      <entry>2022-12-31</entry>
    </dates>
  </vuln>

  <vuln vid="140a20e1-8769-11ed-b074-002b67dfc673">
    <topic>webtrees -- vulnerability</topic>
    <affects>

Lines 1-6 Link Here

(-)b/www/gitea/Makefile (-1 / +1 lines)
1	PORTNAME= gitea	1	PORTNAME= gitea
2	DISTVERSIONPREFIX= v	2	DISTVERSIONPREFIX= v
3	DISTVERSION= 1.17.4	3	DISTVERSION= 1.18.0
4	CATEGORIES= www	4	CATEGORIES= www
5	MASTER_SITES= https://github.com/go-gitea/gitea/releases/download/${DISTVERSIONPREFIX}${DISTVERSION}/ \	5	MASTER_SITES= https://github.com/go-gitea/gitea/releases/download/${DISTVERSIONPREFIX}${DISTVERSION}/ \
6	https://dl.gitea.io/gitea/${DISTVERSION}/	6	https://dl.gitea.io/gitea/${DISTVERSION}/

Lines 1-3 Link Here

(-)b/www/gitea/distinfo (-3 / +3 lines)
1	TIMESTAMP = 1671705629	1	TIMESTAMP = 1672482187
2	SHA256 (gitea-src-1.17.4.tar.gz) = 928644afcf5087109fd8377fed25a24bf659a112017f2bb499bc4a9278d73cae	2	SHA256 (gitea-src-1.18.0.tar.gz) = 5f42af201d89bd2a21d8c47d15cc0a39b433a1dd86c6129e1aa20a53908a4c43
3	SIZE (gitea-src-1.17.4.tar.gz) = 52844862	3	SIZE (gitea-src-1.18.0.tar.gz) = 55508056

Return to bug 268667

Lines 1-3 Link Here

(-)b/security/vuxml/vuln/2022.xml (+32 lines)
		1	<vuln vid="48067fe2-88f9-11ed-8edb-0800277bb8a8">
		2	<topic>gitea -- multiple issues</topic>
		3	<affects>
		4	<package>
		5	<name>gitea</name>
		6	<range><lt>1.18.0</lt></range>
		7	</package>
		8	</affects>
		9	<description>
		10	<body xmlns="http://www.w3.org/1999/xhtml">
		11	<p>The Gitea team reports:</p>
		12	<blockquote cite="https://github.com/go-gitea/gitea/pull/22219">
		13	<p>Remove ReverseProxy authentication from the API</p>
		14	</blockquote>
		15	<blockquote cite="https://github.com/go-gitea/gitea/pull/21139">
		16	<p>Support Go Vulnerability Management</p>
		17	</blockquote>
		18	<blockquote cite="https://github.com/go-gitea/gitea/pull/20935">
		19	<p>Forbid HTML string tooltips</p>
		20	</blockquote>
		21	</body>
		22	</description>
		23	<references>
		24	<url>https://blog.gitea.io/2022/12/gitea-1.18.0-is-released/</url>
		25	<url>https://github.com/go-gitea/gitea/releases/tag/v1.18.0</url>
		26	</references>
		27	<dates>
		28	<discovery>2022-08-23</discovery>
		29	<entry>2022-12-31</entry>
		30	</dates>
		31	</vuln>
		32
1	<vuln vid="140a20e1-8769-11ed-b074-002b67dfc673">	33	<vuln vid="140a20e1-8769-11ed-b074-002b67dfc673">
2	<topic>webtrees -- vulnerability</topic>	34	<topic>webtrees -- vulnerability</topic>
3	<affects>	35	<affects>