Index: vuln.xml =================================================================== --- vuln.xml (revision 483743) +++ vuln.xml (working copy) @@ -58,6 +58,35 @@ * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> + + gitea -- remote code exeution + + + gitea + 1.5.3 + + + + +

The Gitea project reports:

+
[This release] contains crit[i]cal security fix for vulnerability + that could potentially allow for authorized users to do remote code + ex[e]cution.
+

+ + + + https://github.com/go-gitea/gitea/pull/5177 + https://github.com/go-gitea/gitea/pull/5196 + https://github.com/go-macaron/session/commit/084f1e5c1071f585902a7552b483cee04bc00a14 + + + 2018-10-25 + 2018-11-01 + + + curl -- multiple vulnerabilities