HomeFreeBSD

www/forgejo: Update 8.0.2 → 8.0.3 (fixes security vulnerability)

Description

www/forgejo: Update 8.0.2 → 8.0.3 (fixes security vulnerability)

Changelog:

Security
  - PR (backported): replace v-html with v-text in branch search
    inputbox for XSS protection
  - PR: Upgrade webpack to v5.94.0 as a precaution to mitigate
    CVE-2024-43788, although we were not yet able to confirm that
    this can be exploited in Forgejo.

https://codeberg.org/forgejo/forgejo/milestone/8231

PR: 281314
MFH: 2024Q3
(cherry picked from commit 891df28121bb41ca62e10c38089e8045090f0310)

Details

Provenance
stbAuthored on Sep 6 2024, 8:33 PM
vvdCommitted on Sep 6 2024, 8:58 PM
Parents
R11:c95310697f0d: www/gitea: Update 1.21.11 → 1.22.2 (fixes security vulnerabilities)
Branches
Unknown
Tags
Unknown