FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gitea -- remote code exeution

Affected packages
gitea < 1.5.3

Details

VuXML ID deb4f633-de1d-11e8-a9fb-080027f43a02
Discovery 2018-10-25
Entry 2018-11-01

The Gitea project reports:

[This release] contains crit[i]cal security fix for vulnerability that could potentially allow for authorized users to do remote code ex[e]cution.

References

URL https://github.com/go-gitea/gitea/pull/5177
URL https://github.com/go-gitea/gitea/pull/5196
URL https://github.com/go-macaron/session/commit/084f1e5c1071f585902a7552b483cee04bc00a14