git: 3ae134b99731 - main - security/vuxml: Document Gitea multiple vulnerabilities
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Mon, 02 Jan 2023 03:39:57 UTC
The branch main has been updated by lwhsu:
URL: https://cgit.FreeBSD.org/ports/commit/?id=3ae134b99731d30ec9b2babfbe453ab860d94dd5
commit 3ae134b99731d30ec9b2babfbe453ab860d94dd5
Author: Stefan Bethke <stb@lassitu.de>
AuthorDate: 2023-01-02 03:37:26 +0000
Commit: Li-Wen Hsu <lwhsu@FreeBSD.org>
CommitDate: 2023-01-02 03:37:26 +0000
security/vuxml: Document Gitea multiple vulnerabilities
PR: 268667
---
security/vuxml/vuln/2023.xml | 32 ++++++++++++++++++++++++++++++++
1 file changed, 32 insertions(+)
diff --git a/security/vuxml/vuln/2023.xml b/security/vuxml/vuln/2023.xml
new file mode 100644
index 000000000000..794ada3ebc27
--- /dev/null
+++ b/security/vuxml/vuln/2023.xml
@@ -0,0 +1,32 @@
+ <vuln vid="86c330fe-bbae-4ca7-85f7-5321e627a4eb">
+ <topic>gitea -- multiple issues</topic>
+ <affects>
+ <package>
+ <name>gitea</name>
+ <range><lt>1.18.0</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>The Gitea team reports:</p>
+ <blockquote cite="https://github.com/go-gitea/gitea/pull/22219">
+ <p>Remove ReverseProxy authentication from the API</p>
+ </blockquote>
+ <blockquote cite="https://github.com/go-gitea/gitea/pull/21139">
+ <p>Support Go Vulnerability Management</p>
+ </blockquote>
+ <blockquote cite="https://github.com/go-gitea/gitea/pull/20935">
+ <p>Forbid HTML string tooltips</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>https://blog.gitea.io/2022/12/gitea-1.18.0-is-released/</url>
+ <url>https://github.com/go-gitea/gitea/releases/tag/v1.18.0</url>
+ </references>
+ <dates>
+ <discovery>2022-08-23</discovery>
+ <entry>2023-01-02</entry>
+ </dates>
+ </vuln>
+