Site Navigation

Date:      Sat, 7 Mar 2020 21:19:07 +0100
From:      Jochen Neumeister <joneum@FreeBSD.org>
To:        Adam Weinberger <adamw@FreeBSD.org>, ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org
Subject:   Re: svn commit: r527959 - head/security/vuxml
Message-ID:  <2fbad58a-317d-6c45-bb77-ae1320f59692@FreeBSD.org>
In-Reply-To: <202003071831.027IV8MN039120@repo.freebsd.org>
References:  <202003071831.027IV8MN039120@repo.freebsd.org>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

security/vuxml % make validate
/bin/sh /usr/home/joneum/dev/ports/security/vuxml/files/tidy.sh 
"/usr/home/joneum/dev/ports/security/vuxml/files/tidy.xsl" 
"/usr/home/joneum/dev/ports/security/vuxml/vuln.xml" > 
"/usr/home/joneum/dev/ports/security/vuxml/vuln.xml.tidy"
/usr/home/joneum/dev/ports/security/vuxml/vuln.xml:93: parser error : 
Opening and ending tag mismatch: li line 87 and ul
           </ul>
                ^
/usr/home/joneum/dev/ports/security/vuxml/vuln.xml:94: parser error : 
Opening and ending tag mismatch: ul line 87 and blockquote
         </blockquote>
                      ^
/usr/home/joneum/dev/ports/security/vuxml/vuln.xml:95: parser error : 
Opening and ending tag mismatch: blockquote line 87 and body
       </body>
              ^
/usr/home/joneum/dev/ports/security/vuxml/vuln.xml:96: parser error : 
Opening and ending tag mismatch: body line 87 and description
     </description>
                   ^
/usr/home/joneum/dev/ports/security/vuxml/vuln.xml:106: parser error : 
Opening and ending tag mismatch: description line 87 and vuln
   </vuln>
          ^
/usr/home/joneum/dev/ports/security/vuxml/vuln.xml:165820: parser error 
: Opening and ending tag mismatch: vuln line 87 and vuxml
</vuxml><!-- EOF -->
         ^
/usr/home/joneum/dev/ports/security/vuxml/vuln.xml:165824: parser error 
: EndTag: '</' not found

^
unable to parse /usr/home/joneum/dev/ports/security/vuxml/vuln.xml
*** Error code 6

Stop.
make: stopped in /usr/home/joneum/dev/ports/security/vuxml

Am 07.03.20 um 19:31 schrieb Adam Weinberger:
> Author: adamw
> Date: Sat Mar  7 18:31:08 2020
> New Revision: 527959
> URL: https://svnweb.freebsd.org/changeset/ports/527959
>
> Log:
>    Add entry for www/gitea
>    
>    PR:		244025
>    Submitted by:	maintainer
>
> Modified:
>    head/security/vuxml/vuln.xml
>
> Modified: head/security/vuxml/vuln.xml
> ==============================================================================
> --- head/security/vuxml/vuln.xml	Sat Mar  7 18:30:04 2020	(r527958)
> +++ head/security/vuxml/vuln.xml	Sat Mar  7 18:31:08 2020	(r527959)
> @@ -58,6 +58,53 @@ Notes:
>     * Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
>   -->
>   <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">;
> +  <vuln vid="be088777-6085-11ea-8609-08002731610e">
> +    <topic>gitea -- multiple vulnerabilities</topic>
> +    <affects>
> +      <package>
> +	<name>gitea</name>
> +	<range><lt>1.11.2</lt></range>
> +      </package>
> +    </affects>
> +    <description>
> +      <body xmlns="http://www.w3.org/1999/xhtml">;
> +	<p>The Gitea Team reports for release 1.11.0:</p>
> +	<blockquote cite="https://github.com/go-gitea/gitea/releases/tag/v1.11.0">;
> +	  <ul>
> +            <li>Never allow an empty password to validate (#9682) (#9683)</li>
> +            <li>Prevent redirect to Host (#9678) (#9679)</li>
> +            <li>Swagger hide search field (#9554)</li>
> +            <li>Add "search" to reserved usernames (#9063)</li>
> +            <li>Switch to fomantic-ui (#9374)</li>
> +            <li>Only serve attachments when linked to issue/release and if accessible by user (#9340)</li>
> +	  </ul>
> +	</blockquote>
> +	<p>The Gitea Team reports for release 1.11.2:</p>
> +	<blockquote cite="https://github.com/go-gitea/gitea/releases/tag/v1.11.2">;
> +	  <ul>
> +            <li>Ensure only own addresses are updated (#10397) (#10399)</li>
> +            <li>Logout POST action (#10582) (#10585)</li>
> +            <li>Org action fixes and form cleanup (#10512) (#10514)v
> +            <li>Change action GETs to POST (#10462) (#10464)</li>
> +            <li>Fix admin notices (#10480) (#10483)</li>
> +            <li>Change admin dashboard to POST (#10465) (#10466)</li>
> +            <li>Update markbates/goth (#10444) (#10445)</li>
> +            <li>Update crypto vendors (#10385) (#10398)</li>
> +	  </ul>
> +	</blockquote>
> +      </body>
> +    </description>
> +    <references>
> +      <url>https://blog.gitea.io/2020/02/gitea-1.11.0-is-released/</url>;
> +      <url>https://blog.gitea.io/2020/03/gitea-1.11.2-is-released/</url>;
> +      <freebsdpr>ports/244025</freebsdpr>
> +    </references>
> +    <dates>
> +      <discovery>2019-11-18</discovery>
> +      <entry>2020-03-07</entry>
> +    </dates>
> +  </vuln>
> +
>     <vuln vid="8c98e643-6008-11ea-af63-38d547003487">
>       <topic>salt -- salt-api vulnerability</topic>
>       <affects>

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2fbad58a-317d-6c45-bb77-ae1320f59692>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact