[Bug 276022] databases/mantis: Update to patch known vulns

Reply: bugzilla-noreply_a_freebsd.org: "[Bug 276022] databases/mantis: Update to patch known vulns"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sat, 30 Dec 2023 13:14:01 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=276022

            Bug ID: 276022
           Summary: databases/mantis: Update to patch known vulns
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-bugs@FreeBSD.org
          Reporter: dvl@FreeBSD.org
                CC: zab@zltech.eu
             Flags: maintainer-feedback?(zab@zltech.eu)
                CC: zab@zltech.eu

I'm posting this as a drive-by because I just noticed this:

https://mantisbt.org/bugs/changelog_page.php?version_id=370

 2.25.8
 Released 2023-10-14

Security and maintenance release addressing an information disclosure issue
(CVE-2023-44394) and a security issue in bundled GuzzleHttp library
(CVE-2023-29197). This release also resolves several PHP 8.x compatibility and
REST API issues.
All installations are strongly advised to upgrade as soon as possible.

-- 
You are receiving this mail because:
You are the assignee for the bug.