Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
1.1_6 29 Sep 2023 20:56:19 |
Guido Falsi (madpilot) |
security/vuxml: Add devel/php-composer* vulnerability |
1.1_6 29 Sep 2023 10:20:58 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 117.0.5938.132
Obtained
from: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html |
1.1_6 29 Sep 2023 09:32:20 |
Fernando Apesteguía (fernape) |
security/vuxml: fix long description warning
Eliminate an annoying warning from "make validate"
Modify entry 441e1e1a-27a5-11ee-a156-080027f5fec9 description and get rid of
empty lines and some expendable words. vuxml.freebsd.org prints all the lines
joined together. |
1.1_6 29 Sep 2023 08:55:40 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron heap buffer overflow in vp8 encoding
Obtained from: https://github.com/electron/electron/releases/tag/v22.3.25,
https://github.com/electron/electron/releases/tag/v24.8.5,
https://github.com/electron/electron/releases/tag/v25.8.4 |
1.1_6 29 Sep 2023 03:23:28 |
Matthias Fechner (mfechner) |
security/vuxml: add gitlab vulnerabilities 2023-09-28 |
1.1_6 27 Sep 2023 18:43:41 |
Koichiro Iwao (meta) |
security/vuxml: document multiple xrdp vulnerabilities |
1.1_6 27 Sep 2023 11:06:35 |
Fernando Apesteguía (fernape) |
security/vuxml: Fix name |
1.1_6 27 Sep 2023 11:02:36 |
Fernando Apesteguía (fernape) |
security/vuxml: Record net/routinator vulnerability
CVE-2023-39916
Base Score: 6.5 MEDIUM
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
PR: 274105 |
1.1_6 27 Sep 2023 10:58:42 |
Fernando Apesteguía (fernape) |
security/vuxml: Fix make newentry CVE_ID
Fix description body, broken when introducing SA_ID
Fixes: e90a0b117fdc61d6d6bc4b02a4b7b5be5a878b2d |
1.1_6 25 Sep 2023 11:25:55 |
Fernando Apesteguía (fernape) |
security/vuxml: Add SA_ID to make newentry
Automate registration of FreeBSD Security Advisories.
It adds a new parameter for the newentry subcommand accepting a SA ID as present
in the FreeBSD Security Advisories web page
(https://www.freebsd.org/security/advisories/)
Fills an entry following the common structure for FreeBSD SAs and leaves some
"FIXME" strings in those places that need special care.
Developers should NOT blindly trust the output of the script.
`make newentry SA_ID=FreeBSD-SA-23:11.wifi.asc`
`make newentry SA_ID=FreeBSD-SA-22:01.vt`
Reviewed by: philip@
Differential Revision: https://reviews.freebsd.org/D41966 |
1.1_6 25 Sep 2023 07:24:33 |
Li-Wen Hsu (lwhsu) |
security/vuxml: Document Jenkins Security Advisory 2023-09-20
Sponsored by: The FreeBSD Foundation |
1.1_6 23 Sep 2023 13:03:41 |
Guido Falsi (madpilot) |
security/vuxml: Add information about mail/mailpit vulnerability. |
1.1_6 22 Sep 2023 10:39:05 |
Fernando Apesteguía (fernape) |
security/vuxml: Remove spurious file
Fixes: 20c93ef1ae8f43a36f9b05e79e6531b6186f3a86 |
1.1_6 21 Sep 2023 09:31:22 |
Ronald Klop (ronald) |
security/vuxml: add graphics/webp heap buffer overflow
graphics/webp was updated to 1.3.2
PR: 273766
Security: CVE-2023-4863 |
1.1_6 20 Sep 2023 12:21:30 |
Fernando Apesteguía (fernape) |
security/vuxml: Add Tor browser libwebp vulnerability
CVE-2023-4863
Base Score: 8.8 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
PR: 273416
Reported by: kaltheat <kaltheat@gmail.com>
Security: CVE-2023-4863 |
1.1_6 19 Sep 2023 10:53:14 |
Matthias Fechner (mfechner) |
security/vuxml: document gitlab vulnerability |
1.1_6 17 Sep 2023 15:26:40 |
Robert Clausecker (fuz) |
security/vuxml: document routinator vulnerabilities
Obtained from: https://nlnetlabs.nl/news/2023/Sep/13/routinator-0.12.2-released/ |
1.1_6 16 Sep 2023 13:27:51 |
Bernard Spil (brnrd) |
security/vuxml: Document cURL vulnerability
PR: 273764
Reported by: yasu |
1.1_6 16 Sep 2023 10:24:59 |
Bernard Spil (brnrd) |
security/vuxml: Document Roundcube XSS vuln |
1.1_6 13 Sep 2023 11:16:42 |
Hiroki Tagato (tagattie) |
security/vuxml: remove unnecessary placeholder for cvename and url |
1.1_6 13 Sep 2023 11:11:10 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v22.3.24,
https://github.com/electron/electron/releases/tag/v24.8.3,
https://github.com/electron/electron/releases/tag/v25.8.1 |
1.1_6 13 Sep 2023 10:01:19 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 117.0.5938.62
Obtained
from: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_12.htm |
1.1_6 13 Sep 2023 09:09:25 |
Hiroki Tagato (tagattie) |
security/vuxml: document vscode remote code execution vulnerability
Obtained from: https://github.com/microsoft/vscode/issues/192906 |
1.1_6 12 Sep 2023 21:26:02 |
Craig Leres (leres) |
security/vuxml: Mark zeek < 6.0.1 as vulnerable as per:
https://github.com/zeek/zeek/releases/tag/v6.0.1
This release fixes the following potential DoS vulnerabilities:
- File extraction limits were not correctly enforced for files
containing large amounts of missing bytes.
- Sessions are sometimes not cleaned up completely within Zeek
during shutdown,
potentially causing a crash when using the -B dpd flag for debug logging.
- A specially-crafted HTTP packet can cause Zeek's filename
extraction code to take a long time to process the data.
- A specially-crafted series of FTP packets made up of a CWD request
followed by a large amount of ERPT requests may cause Zeek to
spend a long time logging the commands.
- A specially-crafted VLAN packet can cause Zeek to overflow memory
and potentially crash.
Reported by: Tim Wojtulewicz |
1.1_6 10 Sep 2023 11:09:50 |
Nuno Teixeira (eduardo) Author: Stefan Bethke |
security/vuxml: Document Gitea vulnerabilities
PR: 273691 |
1.1_6 07 Sep 2023 13:54:16 |
Wen Heping (wen) |
security/vuxml: Document Python multiple vulnerabilities |
1.1_6 07 Sep 2023 12:14:26 |
Dmitri Goutnik (dmgk) |
security/vuxml: Document Go vulnerabilities |
1.1_6 07 Sep 2023 04:28:14 |
Philip Paeps (philip) |
security/vuxml: add FreeBSD SA-2023:11.wifi |
1.1_6 07 Sep 2023 04:28:13 |
Philip Paeps (philip) |
security/vuxml: add FreeBSD SA-23:10.pf |
1.1_6 07 Sep 2023 02:31:49 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document possible bypassing ACL configuration in redis |
1.1_6 06 Sep 2023 08:57:28 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 116.0.5845.179
Obtained
from: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop.html |
1.1_6 05 Sep 2023 00:18:54 |
Wen Heping (wen) |
security/vuxml: Fix a typo in previous commit |
1.1_6 05 Sep 2023 00:02:52 |
Wen Heping (wen) |
security/vuxml: Document Django multiple vulnerabilities |
1.1_6 01 Sep 2023 05:33:18 |
Matthias Fechner (mfechner) |
security/vuxml: document gitlab vulnerabilities |
1.1_6 31 Aug 2023 20:42:59 |
Matthias Andree (mandree) |
security/vuxml: document borgbackup < 1.2.5 archive spoofing
Security: b8a52e5a-483d-11ee-971d-3df00e0f9020
Security: CVE-2023-36811
Security: https://github.com/borgbackup/borg/blob/1.2.5-cvedocs/docs/changes.rst#pre-125-archives-spoofing-vulnerability-cve-2023-36811 |
1.1_6 31 Aug 2023 11:55:09 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v22.3.23,
https://github.com/electron/electron/releases/tag/v24.8.2,
https://github.com/electron/electron/releases/tag/v25.8.0 |
1.1_6 31 Aug 2023 11:13:29 |
Kai Knoblich (kai) Author: Hubert Tournier |
security/vuxml: Document 18 py*-* vulnerabilities
Vulnerable Python ports discovered with pysec2vuxml.
See also: <https://github.com/HubTou/pysec2vuxml>.
PR: 270923
Co-Authored by: kai |
1.1_6 31 Aug 2023 07:01:22 |
Philip Paeps (philip) |
security/vuxml: fix the vuxml build
Correctly spell the <cvename> entries added in d6f580f7470f.
Pointy hat to: philip |
1.1_6 31 Aug 2023 06:01:56 |
Philip Paeps (philip) |
security/vuxml: catch up with recent FreeBSD SAs
Add FreeBSD SAs issued since FreeBSD-SA-22:13.zlib in August 2022.
2022-11-15 FreeBSD-SA-22:14.heimdal
2022-11-29 FreeBSD-SA-22:15.ping
2023-02-08 FreeBSD-SA-23:01.geli
2023-02-16 FreeBSD-SA-23:02.openssh
2023-02-16 FreeBSD-SA-23:03.openssl
2023-06-21 FreeBSD-SA-23:04.pam_krb5
2023-06-21 FreeBSD-SA-23:05.openssh
2023-08-01 FreeBSD-SA-23:06.ipv6
2023-08-01 FreeBSD-SA-23:07.bhyve
2023-08-01 FreeBSD-SA-23:08.ssh
2023-08-01 FreeBSD-SA-23:09.pam_krb5 |
1.1_6 30 Aug 2023 05:59:17 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 116.0.5845.140
Obtained
from: https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_29.html |
1.1_6 28 Aug 2023 15:17:02 |
Li-Wen Hsu (lwhsu) Author: Stefan Bethke |
security/vuxml: Document gitea -- information disclosure
PR: 273379 |
1.1_6 24 Aug 2023 10:34:44 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 116.0.5845.110
Obtained
from: https://chromereleases.googleblog.com/2023/08/chrome-desktop-stable-update.html |
1.1_6 24 Aug 2023 02:05:09 |
Hiroki Tagato (tagattie) |
security/vuxml: fix an error in the previous commit
<package> tag was wrongly formatted. |
1.1_6 24 Aug 2023 01:59:58 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v22.3.22,
https://github.com/electron/electron/releases/tag/v24.8.1,
https://github.com/electron/electron/releases/tag/v25.7.0 |
1.1_6 23 Aug 2023 06:32:25 |
Florian Smeets (flo) |
security/vuxml: add phpmyfaq < 3.1.16 |
1.1_6 17 Aug 2023 16:07:45 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 116.0.5845.96
Obtained
from: https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html |
1.1_6 17 Aug 2023 10:35:39 |
Bernard Spil (brnrd) |
security/vuxml: Document 2023Q3 MySQL vulnerabilities |
1.1_6 17 Aug 2023 03:32:32 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document two vulnerabilities in ClamAV |
1.1_6 14 Aug 2023 16:48:26 |
Cy Schubert (cy) |
security/vuxml: Document MIT krb5 CVE-2023-39975 |
1.1_6 14 Aug 2023 16:07:21 |
Li-Wen Hsu (lwhsu) |
security/vuxml: Fix vid entry b1ac663f-3aa9-11ee-b887-b42e991fc52e
Sponsored by: The FreeBSD Foundation |
1.1_6 14 Aug 2023 14:10:09 |
Fernando Apesteguía (fernape) |
security/vuxml: add typo3 vulnerabilities
https://typo3.org/article/typo3-1244-and-11530-security-releases-published
CVE-2023-38500 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVE-2023-38499 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVE-2023-37905 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
PR: 273128 |
1.1_6 10 Aug 2023 21:55:50 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron22 multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v22.3.20 |
1.1_6 10 Aug 2023 14:13:24 |
Palle Girgensohn (girgen) |
security/vuxml: Add CVEs for PostgreSQL |
1.1_6 09 Aug 2023 19:13:00 |
Cy Schubert (cy) |
security/vuxml: Correct krb5-devel version string
An incorrect version string flags all krb5-devel as being vulnerable. |
1.1_6 07 Aug 2023 11:08:29 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v23.3.12,
https://github.com/electron/electron/releases/tag/v24.7.0,
https://github.com/electron/electron/releases/tag/v25.4.0 |
1.1_6 05 Aug 2023 06:02:23 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document multiple vulnerabilities in Samba
PR: 272638 |
1.1_6 04 Aug 2023 13:27:26 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 115.0.5790.170
Obtained
from: https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop.html |
1.1_6 02 Aug 2023 13:27:53 |
Dmitri Goutnik (dmgk) |
security/vuxml: Document Go vulnerabilities |
1.1_6 02 Aug 2023 05:50:23 |
Matthias Fechner (mfechner) |
security/vuxml: document gitlab vulnerabilities |
1.1_6 31 Jul 2023 20:41:03 |
Bernard Spil (brnrd) |
security/vuxml: Fix versions in previous commit |
1.1_6 31 Jul 2023 20:37:03 |
Bernard Spil (brnrd) |
security/vuxml: Document OpenSSL vulnerability (Low)
Security: CVE-2023-3817 |
1.1_6 26 Jul 2023 15:21:08 |
Li-Wen Hsu (lwhsu) |
security/vuxml: Document Jenkins Security Advisory 2023-07-26
Sponsored by: The FreeBSD Foundation |
1.1_6 23 Jul 2023 11:45:32 |
Nuno Teixeira (eduardo) Author: Stefan Bethke |
security/vuxml: Document www/gitea vulnerability
PR: 272672
Security: ab0bab3c-2927-11ee-8608-07b8d3947721 |
1.1_6 21 Jul 2023 14:36:50 |
Bryan Drewery (bdrewery) |
security/vuxml: Add entry for OpenSSH CVE-2023-38408 |
1.1_6 20 Jul 2023 10:47:40 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 115.0.5790.98
Approved by: rene (mentor, implicit)
Obtained
from: https://chromereleases.googleblog.com/2023/07/stable-channel-update-for-desktop.html |
1.1_6 20 Jul 2023 06:40:26 |
Fernando Apesteguía (fernape) Author: Patrick R Groeneveld |
security/vuxml: Document vulnerabilities in emulators/virtualbox-ose*
ChangeLog: https://www.oracle.com/security-alerts/
PR: 271141
Reported by: grahamperrin@freebsd.org |
1.1_6 18 Jul 2023 17:08:40 |
Ashish SHUKLA (ashish) |
security/vuxml: Document www/element-web vulnerability
Security: CVE-2023-37259
Security: c70c3dc3-258c-11ee-b37b-901b0e9408dc |
1.1_6 17 Jul 2023 13:07:12 |
Fernando Apesteguía (fernape) |
security/vuxml: record www/gitea vulnerabilities
* Test if container blob is accessible before mounting
* Set type="password" on all auth_token fields
PR: 272538 |
1.1_6 16 Jul 2023 18:23:07 |
Bernard Spil (brnrd) |
security/vuxml: Document OpenSSL 3.x vuln |
1.1_6 14 Jul 2023 07:05:30 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron22 multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v22.3.17 |
1.1_6 10 Jul 2023 19:32:04 |
Jason E. Hale (jhale) |
security/vuxml: cad/librecad < 2.2.0.1 OOB read
Security: CVE-2023-30259
Security: b67d768c-1f53-11ee-82ed-4ccc6adda413 |
1.1_6 10 Jul 2023 16:32:19 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document multiple vulnerabilities in redis |
1.1_6 09 Jul 2023 10:32:01 |
Po-Chuan Hsieh (sunpoet) |
security/vuxml: Fix py-suds entry (b31f7029-817c-4c1f-b7d3-252de5283393)
PR: 272346
Reported by: David M. <root@network-dev.org>
Reference: https://github.com/suds-community/suds/issues/94
https://github.com/advisories/GHSA-vpqp-hx68-p2wx |
1.1_6 06 Jul 2023 06:30:38 |
Fernando Apesteguía (fernape) |
security/vuxml: update www/gitea vulnerability
Avoid open HTTP redirects.
PR: 272380 |
1.1_6 06 Jul 2023 06:01:49 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v23.3.10,
https://github.com/electron/electron/releases/tag/v24.6.2 |
1.1_6 05 Jul 2023 18:53:59 |
Matthias Fechner (mfechner) |
security/vuxml: document gitlab vulnerability |
1.1_6 05 Jul 2023 06:08:29 |
Fernando Apesteguía (fernape) |
security/vuxml: add net/phpldapamin XSS vulnerability
An XSS issue has been discovered in phpLDAPadmin before 1.2.6.2 that allows
users to store malicious values that may be executed by other users at a later
time via get_request in lib/function.php.
CVE-2021-35132 with Base Score 7.8 (HIGH). |
1.1_6 03 Jul 2023 13:43:54 |
Wen Heping (wen) |
security/vuxml: Document Django multiple vulnerabilities |
1.1_6 01 Jul 2023 13:03:38 |
Wen Heping (wen) |
security/vuxml: Document mediawiki multiple vulnerabilities |
1.1_6 30 Jun 2023 18:23:21 |
Matthias Fechner (mfechner) |
security/vuxml: document gitlab vulnerabilities |
1.1_6 30 Jun 2023 15:19:27 |
Koichiro Iwao (meta) |
security/vuxml: Document security/softether{,-devel} vulnerability
Security: https://www.softether.org/9-about/News/904-SEVPN202301 |
1.1_6 27 Jun 2023 21:16:19 |
Matthias Andree (mandree) |
security/vuxml: document openexr dwa out-of-bounds read
OSS-Fuzz 59382
Security: 06428d91-152e-11ee-8b14-dbdd62da85fb |
1.1_6 27 Jun 2023 07:40:55 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 114.0.5735.198
Approved by: rene (mentor, implicit)
Obtained
from: https://chromereleases.googleblog.com/2023/06/stable-channel-update-for-desktop_26.html |
1.1_6 25 Jun 2023 07:23:15 |
Nuno Teixeira (eduardo) Author: Boris Korzun |
security/vuxml: Add www/grafana{8,9} vulnerabilities
* CVE-2023-3128 - Account takeover / authentication bypass
( https://grafana.com/security/security-advisories/cve-2023-3128 )
PR: 272161 |
1.1_6 23 Jun 2023 09:29:09 |
Eugene Grosbein (eugen) |
security/vuxml: another correction for devel/py-setuptools*
This time is covers two other records additionally.
Reported-by: leres |
1.1_6 22 Jun 2023 14:09:33 |
Eugene Grosbein (eugen) |
security/vuxml: correct range after previous commit for py39-setuptools
Fixes: a3d611120fccf3b51b3dc62ec9246588e7d7a8ac |
1.1_6 22 Jun 2023 13:45:10 |
Eugene Grosbein (eugen) |
devel/py-setuptools{44,58}: fix CVE-2022-40897 backporting a patch
Follow recent commit to devel/py-setuptools and fix old versions same way.
Reported-by: vishwin |
1.1_6 22 Jun 2023 13:24:12 |
Eugene Grosbein (eugen) |
devel/py-setuptools: fix CVE-2022-40897 backporting a patch
This commit integrates one-line upstream fix for the problem:
https://github.com/pypa/setuptools/commit/43a9c9bfa6aa626ec2a22540bea28d2ca77964be.diff
Our port has not been fixed for several months making users unhappy.
It's upto the maintainer to update the port, this commit does not update it.
Bump PORTREVISION and adjust VuXML entry.
Due to the nature of the problem and fix there is no need in updating consumers. |
1.1_6 22 Jun 2023 11:34:12 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v22.3.14,
https://github.com/electron/electron/releases/tag/v23.3.8,
https://github.com/electron/electron/releases/tag/v24.6.0 |
1.1_6 16 Jun 2023 18:36:43 |
Jan Beich (jbeich) |
security/vuxml: mark libX11 < 1.8.6 as vulnerable
PR: 263190
Reported by: lwhsu |
1.1_6 16 Jun 2023 12:06:17 |
Hiroki Tagato (tagattie) |
security/vuxml: document electron multiple vulnerabilities
Obtained from: https://github.com/electron/electron/releases/tag/v22.3.13,
https://github.com/electron/electron/releases/tag/v23.3.7,
https://github.com/electron/electron/releases/tag/v24.5.1 |
1.1_6 14 Jun 2023 13:50:08 |
Li-Wen Hsu (lwhsu) |
security/vuxml: Document Jenkins Security Advisory 2023-06-14
Sponsored by: The FreeBSD Foundation |
1.1_6 13 Jun 2023 22:07:00 |
Hiroki Tagato (tagattie) |
security/vuxml: document vscode information disclosure vulnerability
Obtained
from: https://github.com/microsoft/vscode/security/advisories/GHSA-j5wm-6crw-xvmr |
1.1_6 13 Jun 2023 18:10:23 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 114.0.5735.133
Approved by: rene (mentor, implicit)
Obtained
from: https://chromereleases.googleblog.com/2023/06/stable-channel-update-for-desktop_13.html |
1.1_6 12 Jun 2023 15:08:30 |
Palle Girgensohn (girgen) |
security/vuxml: add devel/xmltooling vulnerability |
1.1_6 09 Jun 2023 18:21:40 |
Dan Langille (dvl) |
security/vuxml: add security/acme.sh vuln
I didn't find a CVE.
https://github.com/acmesh-official/acme.sh/issues/4659 |
1.1_6 08 Jun 2023 06:55:34 |
Fernando Apesteguía (fernape) Author: Boris Korzun |
security/vuxml: Add www/grafana{8,9} vulnerabilities
* CVE-2023-2183: with Base Score 4.1 (MEDIUM)
* CVE-2023-2801: with Base Score 7.5 (HIGH)
PR: 271893
Reported by: Boris Korzun <drtr0jan@yandex.ru> |
1.1_6 08 Jun 2023 02:52:02 |
Wen Heping (wen) |
security/vuxml: Document python's multiple vulnerabilities |
1.1_6 07 Jun 2023 06:07:37 |
Robert Nagy (rnagy) |
security/vuxml: add www/*chromium < 114.0.5735.106
Approved by: rene (mentor, implicit)
Obtained
from: https://chromereleases.googleblog.com/2023/06/stable-channel-update-for-desktop.html |
1.1_6 07 Jun 2023 04:44:27 |
Matthias Fechner (mfechner) |
security/vuxml: document gitlab vulnerabilities |