[Bug 254793] security/vuxml: Document XML round-trip vulnerability of REXML in Ruby
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue Apr 6 14:08:34 UTC 2021
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=254793
--- Comment #5 from Koichiro Iwao <meta at FreeBSD.org> ---
Thanks for the quick follow-up.
Submitting patches generated by `git format-patch` is helpful. Because I can
reuse most parts of the submitter's commit message. At least I'm very happy
with receiving format-patch style patch.
I can apply the submitter's patch with the following commands.
$ curl -L '<patch URL>' > /tmp/patch
$ git am /tmp/patch
$ git commit --amend --reset-author
(add some commit messages)
The reason why I reset author is the repository blocks commits which has
different committer and author.
remote:
remote: ================================================================
remote: meta, you are pushing a commit which author and committer are
different:
remote:
remote: author: Yasuhiro Kimura <yasu at utahime.org>
remote: commit: e88e34f77ee344af29c0514ea45557a447d63b67
remote: subject: security/vuxml: Document XML round-trip vulnerability of REXML
in Ruby
remote:
remote: Please check the author name and email are correct and then use:
remote: git push --push-option=confirm-author
remote: ================================================================
To gitrepo.freebsd.org:ports.git
! [remote rejected] main -> main (pre-receive hook declined)
error: failed to push some refs to 'gitrepo.freebsd.org:ports.git'
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the freebsd-ruby
mailing list