Bug 254515 - www/gitea: Update to 1.13.6 (fixes security vulnerabilities)
Summary: www/gitea: Update to 1.13.6 (fixes security vulnerabilities)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Adam Weinberger
URL:
Keywords: buildisok
Depends on:
Blocks:
 
Reported: 2021-03-23 22:30 UTC by stb
Modified: 2021-03-24 03:20 UTC (History)
1 user (show)

See Also:
stb: maintainer-feedback+


Attachments
vuxml entry for gitea older than 1.13.6 (1.24 KB, patch)
2021-03-23 22:37 UTC, stb
stb: maintainer-approval+
Details | Diff
Update port to gitea 1.13.6 (895 bytes, patch)
2021-03-23 22:39 UTC, stb
stb: maintainer-approval+
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description stb 2021-03-23 22:30:26 UTC
Release 1.13.6 fixes two security issues, and two bugs.

Release notes:

https://blog.gitea.io/2021/03/gitea-1.13.6-is-released/
Comment 1 stb 2021-03-23 22:36:24 UTC
$ make validate
/bin/sh /usr/home/vagrant/vuxml/files/tidy.sh "/usr/home/vagrant/vuxml/files/tidy.xsl" "/usr/home/vagrant/vuxml/vuln-flat.xml" > "/usr/home/vagrant/vuxml/vuln.xml.tidy"
>>> Validating...
/usr/local/bin/xmllint --valid --noout /usr/home/vagrant/vuxml/vuln-flat.xml
>>> Successful.
Checking if tidy differs...
... seems okay
Checking for space/tab...
... seems okay
/usr/local/bin/python3.7 /usr/home/vagrant/vuxml/files/extra-validation.py /usr/home/vagrant/vuxml/vuln-flat.xml
Warning: description too long (6137 chars, 5000 is warning threshold): f00b65d8-7ccb-11eb-b3be-e09467587c17)
Comment 2 stb 2021-03-23 22:37:24 UTC
Created attachment 223531 [details]
vuxml entry for gitea older than 1.13.6
Comment 3 stb 2021-03-23 22:39:37 UTC
Created attachment 223532 [details]
Update port to gitea 1.13.6
Comment 4 Automation User 2021-03-23 23:36:48 UTC
Build and package info is available at https://gitlab.com/swills/freebsd-ports/pipelines/275305005
Comment 5 commit-hook freebsd_committer 2021-03-24 03:15:19 UTC
A commit references this bug:

Author: adamw
Date: Wed Mar 24 03:15:10 UTC 2021
New revision: 569083
URL: https://svnweb.freebsd.org/changeset/ports/569083

Log:
  security/vuxml: Add entry for gitea < 1.13.6

  PR:		254515
  Submitted by:	maintainer

Changes:
  head/security/vuxml/vuln.xml
Comment 6 commit-hook freebsd_committer 2021-03-24 03:19:21 UTC
A commit references this bug:

Author: adamw
Date: Wed Mar 24 03:18:54 UTC 2021
New revision: 569084
URL: https://svnweb.freebsd.org/changeset/ports/569084

Log:
  www/gitea: Update to 1.13.16

  This is a security release.

  PR:		254515
  Submitted by:	maintainer
  MFH:		2021Q1
  Security:	yes

Changes:
  head/www/gitea/Makefile
  head/www/gitea/distinfo
Comment 7 commit-hook freebsd_committer 2021-03-24 03:20:22 UTC
A commit references this bug:

Author: adamw
Date: Wed Mar 24 03:19:36 UTC 2021
New revision: 569085
URL: https://svnweb.freebsd.org/changeset/ports/569085

Log:
  MFH: r569084

  www/gitea: Update to 1.13.16

  This is a security release.

  PR:		254515
  Submitted by:	maintainer
  Security:	yes

Changes:
_U  branches/2021Q1/
  branches/2021Q1/www/gitea/Makefile
  branches/2021Q1/www/gitea/distinfo
Comment 8 Adam Weinberger freebsd_committer 2021-03-24 03:20:41 UTC
Done. Thanks, Stefan.