git: a9a607cfd9ca - 2023Q1 - security/vuxml: amend entry adding CVE-2023-22456 in devel/viewvc-devel

From: Dan Langille <dvl_at_FreeBSD.org>
Date: Thu, 05 Jan 2023 19:10:15 UTC 
The branch 2023Q1 has been updated by dvl:

URL: https://cgit.FreeBSD.org/ports/commit/?id=a9a607cfd9cac445aa1241613dae59d0d95a57df

commit a9a607cfd9cac445aa1241613dae59d0d95a57df
Author:     Dan Langille <dvl@FreeBSD.org>
AuthorDate: 2023-01-05 19:08:43 +0000
Commit:     Dan Langille <dvl@FreeBSD.org>
CommitDate: 2023-01-05 19:10:07 +0000

    security/vuxml: amend entry adding CVE-2023-22456 in devel/viewvc-devel
    
    PR:             268754
    Security:       CVE-2023-22456
    (cherry picked from commit 210b86be2bf9fa73f96d674eadc662030996cd27)
---
 security/vuxml/vuln/2023.xml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/security/vuxml/vuln/2023.xml b/security/vuxml/vuln/2023.xml
index aeb8e81e43d6..02b856371427 100644
--- a/security/vuxml/vuln/2023.xml
+++ b/security/vuxml/vuln/2023.xml
@@ -14,11 +14,16 @@
 	<blockquote cite="https://github.com/viewvc/viewvc/releases/tag/1.1.30">
 	  <p>security fix: escape revision view copy paths (#311) [CVE-2023-22464]</p>
 	</blockquote>
+	<blockquote cite="https://github.com/viewvc/viewvc/releases/tag/1.1.29">
+	  <p>security fix: escape revision view changed paths (#311) [CVE-2023-22456]</p>
+	</blockquote>
       </body>
     </description>
     <references>
       <cvename>CVE-2023-22464</cvename>
+      <cvename>CVE-2023-22456</cvename>
       <url>https://nvd.nist.gov/vuln/detail/CVE-2023-22464</url>
+      <url>https://nvd.nist.gov/vuln/detail/CVE-2023-22456</url>
     </references>
     <dates>
       <discovery>2023-01-04</discovery>