git: f7a5ae58011b - main - security/vuxml: Add entry for gitea < 1.14.3
Adam Weinberger
adamw at FreeBSD.org
Sun Jun 20 01:31:20 UTC 2021
The branch main has been updated by adamw:
URL: https://cgit.FreeBSD.org/ports/commit/?id=f7a5ae58011b7bbd155c53e071412155f0893d7f
commit f7a5ae58011b7bbd155c53e071412155f0893d7f
Author: Adam Weinberger <adamw at FreeBSD.org>
AuthorDate: 2021-06-20 01:27:07 +0000
Commit: Adam Weinberger <adamw at FreeBSD.org>
CommitDate: 2021-06-20 01:31:15 +0000
security/vuxml: Add entry for gitea < 1.14.3
PR: 256720
---
security/vuxml/vuln.xml | 31 +++++++++++++++++++++++++++++++
1 file changed, 31 insertions(+)
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index a518e160a594..25ae8196ec9b 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -76,6 +76,37 @@ Notes:
* Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="0e561c06-d13a-11eb-92be-0800273f11ea">
+ <topic>gitea -- multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>gitea</name>
+ <range><lt>1.14.3</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>The Gitea Team reports for release 1.14.3:</p>
+ <blockquote cite="https://blog.gitea.io/2021/06/gitea-1.14.3-is-released/">
+ <ul>
+ <li>Encrypt migration credentials at rest (<a href="https://github.com/go-gitea/gitea/pull/15895">#15895</a>) (<a href="https://github.com/go-gitea/gitea/pull/16187">#16187</a>)</li>
+ <li>Only check access tokens if they are likely to be tokens (<a href="https://github.com/go-gitea/gitea/pull/16164">#16164</a>) (<a href="https://github.com/go-gitea/gitea/pull/16171">#16171</a>)</li>
+ <li>Add missing SameSite settings for the i_like_gitea cookie (<a href="https://github.com/go-gitea/gitea/pull/16037">#16037</a>) (<a href="https://github.com/go-gitea/gitea/pull/16039">#16039</a>)</li>
+ <li>Fix setting of SameSite on cookies (<a href="https://github.com/go-gitea/gitea/pull/15989">#15989</a>) (<a href="https://github.com/go-gitea/gitea/pull/15991">#15991</a>)</li>
+ </ul>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>https://github.com/go-gitea/gitea/releases/tag/v1.14.3</url>
+ <freebsdpr>ports/256720</freebsdpr>
+ </references>
+ <dates>
+ <discovery>2021-05-16</discovery>
+ <entry>2021-06-19</entry>
+ </dates>
+ </vuln>
+
<vuln vid="afdc7579-d023-11eb-bcad-3065ec8fd3ec">
<topic>chromium -- multiple vulnerabilities</topic>
<affects>
More information about the dev-commits-ports-main
mailing list