[Bug 269409] www/grafana{8,9}: Update to 8.5.20 and 9.3.6 (Fixes security vulnerabilities)

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 269409] www/grafana{8,9}: Update to 8.5.20 and 9.3.6 (Fixes security vulnerabilities)"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 08 Feb 2023 12:31:20 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=269409

Boris Korzun <drtr0jan@yandex.ru> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |ports-secteam@FreeBSD.org
 Attachment #239995|                            |maintainer-approval?(ports-
              Flags|                            |secteam@FreeBSD.org)

--- Comment #2 from Boris Korzun <drtr0jan@yandex.ru> ---
Created attachment 239995
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=239995&action=edit
vuxml.patch

vuxml:

* CVE-2022-39324 - Spoofing originalUrl of snapshots
* CVE-2022-23552 - Stored XSS in ResourcePicker component

-- 
You are receiving this mail because:
You are the assignee for the bug.