FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
86c330fe-bbae-4ca7-85f7-5321e627a4ebgitea -- multiple issues

The Gitea team reports:

Remove ReverseProxy authentication from the API

Support Go Vulnerability Management

Forbid HTML string tooltips


Discovery 2022-08-23
Entry 2023-01-02
gitea
< 1.18.0

https://blog.gitea.io/2022/12/gitea-1.18.0-is-released/
https://github.com/go-gitea/gitea/releases/tag/v1.18.0
d713d709-4cc9-11ed-a621-0800277bb8a8gitea -- multiple issues

The Gitea team reports:

Sanitize and Escape refs in git backend

Bump golang.org/x/text

Update bluemonday


Discovery 2022-09-27
Entry 2022-10-15
gitea
< 1.17.3

https://github.com/go-gitea/gitea/releases/tag/v1.17.3
d0da046a-81e6-11ed-96ca-0800277bb8a8gitea -- multiple issues

The Gitea team reports:

Do not allow Ghost access to limited visible user/org

Fix package access for admins and inactive users


Discovery 2022-10-24
Entry 2022-12-22
gitea
< 1.17.4

https://github.com/go-gitea/gitea/releases/tag/v1.17.4
b8a0fea2-9be9-11ed-8acf-0800277bb8a8gitea -- information disclosure

The Gitea team reports:

Prevent multiple To recipients: Change the mailer interface to prevent leaking of possible hidden email addresses when sending to multiple recipients.


Discovery 2022-01-22
Entry 2023-01-24
gitea
< 1.18.3

https://blog.gitea.io/2023/01/gitea-1.18.3-is-released/
f75722ce-31b0-11ed-8b56-0800277bb8a8gitea -- multiple issues

The Gitea team reports:

Double check CloneURL is acceptable

Add more checks in migration code


Discovery 2022-08-19
Entry 2022-09-11
gitea
< 1.17.2

https://blog.gitea.io/2022/09/gitea-1.17.2-is-released/