FreeBSD Bugzilla – Attachment 202892 Details for
Bug 236563
www/gitea: Update to 1.7.3 (fixes security vulnerability)
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
vuln.xml entry for the security issue
vuln-xml-gitea-1.7.3.patch (text/plain), 1.14 KB, created by
Stefan Bethke
on 2019-03-15 23:17:41 UTC
(
hide
)
Description:
vuln.xml entry for the security issue
Filename:
MIME Type:
Creator:
Stefan Bethke
Created:
2019-03-15 23:17:41 UTC
Size:
1.14 KB
patch
obsolete
>Index: vuln.xml >=================================================================== >--- vuln.xml (revision 495808) >+++ vuln.xml (working copy) >@@ -58,6 +58,31 @@ > * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) > --> > <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> >+ <vuln vid="c67e05fb-4777-11e9-bbca-08002705f877"> >+ <topic>gitea -- XSS vulnerability</topic> >+ <affects> >+ <package> >+ <name>gitea</name> >+ <range><lt>1.7.4</lt></range> >+ </package> >+ </affects> >+ <description> >+ <body xmlns="http://www.w3.org/1999/xhtml"> >+ <p>The Gitea team reports:</p> >+ <blockquote cite="https://blog.gitea.io/2019/03/gitea-1.7.4-is-released/"> >+ <p>Fix potential XSS vulnerability in repository description. </p> >+ </blockquote> >+ </body> >+ </description> >+ <references> >+ <url>https://blog.gitea.io/2019/03/gitea-1.7.4-is-released/</url> >+ </references> >+ <dates> >+ <discovery>2019-03-12</discovery> >+ <entry>2019-03-16</entry> >+ </dates> >+ </vuln> >+ > <vuln vid="e56f2f7c-410e-11e9-b95c-b499baebfeaf"> > <topic>OpenSSL -- ChaCha20-Poly1305 nonce vulnerability</topic> > <affects>
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=202892">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 236563
:
202891
| 202892