This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-25 21:13:12 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
cdb10765-6879-11eb-a7d8-08002734b9ed | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.13.2:
Discovery 2021-01-07 Entry 2021-02-06 gitea < 1.13.2 https://github.com/go-gitea/gitea/releases/tag/v1.13.2 ports/253295 |
b8a0fea2-9be9-11ed-8acf-0800277bb8a8 | gitea -- information disclosure The Gitea team reports:
Discovery 2022-01-22 Entry 2023-01-24 gitea < 1.18.3 https://blog.gitea.io/2023/01/gitea-1.18.3-is-released/ |
d3180f02-031e-11ec-875f-0800273f11ea | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.15.0:
Discovery 2021-04-29 Entry 2021-08-22 gitea < 1.15.0 https://github.com/go-gitea/gitea/releases/tag/v1.15.0 ports/257994 |
482bb980-99a3-11ee-b5f7-6bd56600d90c | gitea -- missing permission checks The Gitea team reports:
By crafting an API request, attackers can access the contents of issues even though the logged-in user does not have access rights to these issues. Discovery 2023-08-30 Entry 2023-09-10 gitea < 1.21.2 https://github.com/go-gitea/gitea/releases/tag/v1.21.2 |
b99492b2-362b-11eb-9f86-08002734b9ed | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.13.0:
Discovery 2020-12-01 Entry 2020-12-04 gitea < 1.13.0 https://github.com/go-gitea/gitea/releases/tag/v1.13.0 ports/251577 |
b2765c89-a052-11ee-bed2-596753f1a87c | gitea -- Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin The Gitea team reports:
Discovery 2023-12-19 Entry 2023-12-21 gitea < 1.21.3 https://github.com/go-gitea/gitea/releases/tag/v1.21.3 |
8ba23a62-997d-11eb-9f0e-0800278d94f0 | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.13.7:
Discovery 2021-04-07 Entry 2021-04-09 gitea < 1.13.7 https://github.com/go-gitea/gitea/releases/tag/v1.13.7 ports/254930 |
95ee401d-cc6a-11ec-9cfc-10c37b4ac2ea | gitea -- Escape git fetch remote The Gitea team reports:
Discovery 2022-04-25 Entry 2022-05-05 gitea < 1.16.7 https://github.com/go-gitea/gitea/pull/19487 |
86c330fe-bbae-4ca7-85f7-5321e627a4eb | gitea -- multiple issues The Gitea team reports:
Discovery 2022-08-23 Entry 2023-01-02 gitea < 1.18.0 https://blog.gitea.io/2022/12/gitea-1.18.0-is-released/ https://github.com/go-gitea/gitea/releases/tag/v1.18.0 |
2739b88b-4b88-11eb-a4c0-08002734b9ed | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.13.1:
Discovery 2020-12-15 Entry 2020-12-31 gitea < 1.13.1 https://github.com/go-gitea/gitea/releases/tag/v1.13.1 ports/252310 |
5048ed45-b0f1-11ed-ab04-9106b1b896dd | gitea -- password hash quality The Gitea team reports:
Discovery 2022-02-14 Entry 2023-02-20 gitea < 1.18.4 https://blog.gitea.io/2023/02/gitea-1.18.4-is-released/ https://github.com/go-gitea/gitea/releases/tag/v1.18.4 |
8bec3994-104d-11ed-a7ac-0800273f11ea | gitea -- multiple issues The Gitea team reports:
Discovery 2022-07-12 Entry 2022-08-05 gitea < 1.17.0 https://github.com/go-gitea/gitea/releases/tag/v1.17.0 |
094fb2ec-9aa3-11eb-83cb-0800278d94f0 | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.14.0:
Discovery 2021-03-11 Entry 2021-04-11 gitea < 1.14.0 https://github.com/go-gitea/gitea/releases/tag/v1.14.0 ports/254976 |
4061a4b2-4fb1-11ee-acc7-0151f07bc899 | gitea -- block user account creation from blocked email domains The Gitea team reports:
Discovery 2023-08-30 Entry 2023-09-10 gitea < 1.20.3 https://blog.gitea.com/release-of-1.20.4 https://github.com/go-gitea/gitea/releases/tag/v1.20.4 |
bd7592a1-cbfd-11ee-a42a-5404a6f3ca32 | gitea -- Prevent anonymous container accessProblem Description:Even with RequireSignInView enabled, anonymous users can use docker pull to fetch public images. Discovery 2024-01-24 Entry 2024-02-15 gitea < 1.21.5 https://blog.gitea.com/release-of-1.21.5/ |
c4d2f950-8c27-11eb-a3ae-0800278d94f0 | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.13.6:
Discovery 2021-03-21 Entry 2021-03-23 gitea < 1.13.6 https://github.com/go-gitea/gitea/releases/tag/v1.13.5 ports/254515 |
0e561c06-d13a-11eb-92be-0800273f11ea | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.14.3:
Discovery 2021-05-16 Entry 2021-06-19 gitea < 1.14.3 https://github.com/go-gitea/gitea/releases/tag/v1.14.3 ports/256720 |
0ff80f41-aefe-11ec-b4b6-d05099c0c059 | gitea -- Improper/incorrect authorization Youssef Rebahi-Gilbert reports:
Discovery 2022-03-06 Entry 2022-03-29 gitea < 1.16.4 CVE-2022-0905 https://huntr.dev/bounties/8d221f92-b2b1-4878-bc31-66ff272e5ceb |
1431a25c-8a70-11eb-bd16-0800278d94f0 | gitea -- quoting in markdown text The Gitea Team reports for release 1.13.5:
Discovery 2021-03-20 Entry 2021-03-21 gitea < 1.13.5 https://github.com/go-gitea/gitea/releases/tag/v1.13.5 ports/254130 |
d0da046a-81e6-11ed-96ca-0800277bb8a8 | gitea -- multiple issues The Gitea team reports:
Discovery 2022-10-24 Entry 2022-12-22 gitea < 1.17.4 https://github.com/go-gitea/gitea/releases/tag/v1.17.4 |
df794e5d-3975-11ec-84e8-0800273f11ea | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.15.5:
Discovery 2021-10-21 Entry 2021-11-04 gitea < 1.15.5 https://github.com/go-gitea/gitea/releases/tag/v1.15.5 ports/259548 |
8ea24413-1b15-11ee-9331-570525adb7f1 | gitea -- avoid open HTTP redirects The Gitea team reports:
Discovery 2023-06-08 Entry 2023-07-05 gitea < 1.19.4 https://blog.gitea.io/2023/07/gitea-1.19.4-is-released/ https://github.com/go-gitea/gitea/releases/tag/v1.19.4 |
943d23b6-e65e-11eb-ad30-0800273f11ea | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.14.5:
Discovery 2021-05-16 Entry 2021-07-18 gitea < 1.14.5 https://github.com/go-gitea/gitea/releases/tag/v1.14.5 ports/257221 |
36a37c92-44b1-11ee-b091-6162c1274384 | gitea -- information disclosure The Gitea team reports:
Discovery 2023-06-06 Entry 2023-08-27 gitea < 1.20.3 https://blog.gitea.com/release-of-1.20.3 https://github.com/go-gitea/gitea/releases/tag/v1.20.3 |
f75722ce-31b0-11ed-8b56-0800277bb8a8 | gitea -- multiple issues The Gitea team reports:
Discovery 2022-08-19 Entry 2022-09-11 gitea < 1.17.2 https://blog.gitea.io/2022/09/gitea-1.17.2-is-released/ |
733afd81-01cf-11ec-aec9-0800273f11ea | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.14.6:
Discovery 2021-07-24 Entry 2021-08-20 gitea < 1.14.6 https://github.com/go-gitea/gitea/releases/tag/v1.14.6 ports/257973 |
5ecfb588-d2f4-11ee-ad82-dbdfaa8acfc2 | gitea -- Fix XSS vulnerabilitiesProblem Description:
Discovery 2024-02-23 Entry 2024-02-24 gitea < 1.21.6 https://blog.gitea.com/release-of-1.21.6/ |
83466f76-aefe-11ec-b4b6-d05099c0c059 | gitea -- Open Redirect on login Andrew Thornton reports:
Discovery 2022-03-23 Entry 2022-03-29 gitea < 1.16.5 CVE-2022-1058 https://huntr.dev/bounties/4fb42144-ac70-4f76-a5e1-ef6b5e55dc0d/ |
502ba001-7ffa-11eb-911c-0800278d94f0 | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.13.3:
The Gitea Team reports for release 1.13.4:
Discovery 2021-01-07 Entry 2021-02-06 gitea < 1.13.4 https://github.com/go-gitea/gitea/releases/tag/v1.13.3 https://github.com/go-gitea/gitea/releases/tag/v1.13.4 ports/254130 |
ab0bab3c-2927-11ee-8608-07b8d3947721 | gitea -- Disallow dangerous URL schemes The Gitea team reports:
Discovery 2023-06-18 Entry 2023-07-23 gitea < 1.20.1 https://blog.gitea.com/release-of-1.20.1 https://github.com/go-gitea/gitea/releases/tag/v1.20.1 |
d713d709-4cc9-11ed-a621-0800277bb8a8 | gitea -- multiple issues The Gitea team reports:
Discovery 2022-09-27 Entry 2022-10-15 gitea < 1.17.3 https://github.com/go-gitea/gitea/releases/tag/v1.17.3 |
b3f77aae-241c-11ee-9684-c11c23f7b0f9 | gitea -- multiple issues The Gitea team reports:
Discovery 2023-06-08 Entry 2023-07-05 gitea < 1.20.0 https://blog.gitea.com/release-of-1.20.0 https://github.com/go-gitea/gitea/releases/tag/v1.20.0 |
55facdb0-2c24-11eb-9aac-08002734b9ed | gitea -- multiple vulnerabilities The Gitea Team reports for release 1.12.6:
Discovery 2020-11-16 Entry 2020-11-21 gitea < 1.12.6 Disallow urlencoded new lines in git protocol paths if there is a port ports/251296 |
df29c391-1046-11ed-a7ac-0800273f11ea | gitea -- multiple issues The Gitea team reports:
Discovery 2022-07-12 Entry 2022-08-05 gitea < 1.16.9 https://github.com/go-gitea/gitea/releases/tag/v1.16.9 |