diff options
| author | Stefan Bethke <stb@lassitu.de> | 2023-01-02 03:37:26 +0000 |
|---|---|---|
| committer | Li-Wen Hsu <lwhsu@FreeBSD.org> | 2023-01-02 03:37:26 +0000 |
| commit | 3ae134b99731d30ec9b2babfbe453ab860d94dd5 (patch) | |
| tree | c0160f2d3373779dbcba34100092a8da06bc0c7b | |
| parent | ac0c7ff164c538f9a220dca7bb50e4272d2bca5a (diff) | |
| download | ports-3ae134b99731d30ec9b2babfbe453ab860d94dd5.tar.gz ports-3ae134b99731d30ec9b2babfbe453ab860d94dd5.zip | |
security/vuxml: Document Gitea multiple vulnerabilities
PR: 268667
| -rw-r--r-- | security/vuxml/vuln/2023.xml | 32 |
1 files changed, 32 insertions, 0 deletions
diff --git a/security/vuxml/vuln/2023.xml b/security/vuxml/vuln/2023.xml new file mode 100644 index 000000000000..794ada3ebc27 --- /dev/null +++ b/security/vuxml/vuln/2023.xml @@ -0,0 +1,32 @@ + <vuln vid="86c330fe-bbae-4ca7-85f7-5321e627a4eb"> + <topic>gitea -- multiple issues</topic> + <affects> + <package> + <name>gitea</name> + <range><lt>1.18.0</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>The Gitea team reports:</p> + <blockquote cite="https://github.com/go-gitea/gitea/pull/22219"> + <p>Remove ReverseProxy authentication from the API</p> + </blockquote> + <blockquote cite="https://github.com/go-gitea/gitea/pull/21139"> + <p>Support Go Vulnerability Management</p> + </blockquote> + <blockquote cite="https://github.com/go-gitea/gitea/pull/20935"> + <p>Forbid HTML string tooltips</p> + </blockquote> + </body> + </description> + <references> + <url>https://blog.gitea.io/2022/12/gitea-1.18.0-is-released/</url> + <url>https://github.com/go-gitea/gitea/releases/tag/v1.18.0</url> + </references> + <dates> + <discovery>2022-08-23</discovery> + <entry>2023-01-02</entry> + </dates> + </vuln> + |