Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 905886 - <www-apps/gitea-1.19.2: multiple vulnerabilities
Summary: <www-apps/gitea-1.19.2: multiple vulnerabilities
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
Whiteboard: B4 [glsa]
Depends on:
Reported: 2023-05-07 17:37 UTC by John Helmert III
Modified: 2023-11-27 19:43 UTC (History)
3 users (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2023-05-07 17:37:51 UTC

    Require repo scope for PATs for private repos and basic authentication (#24362) (#24364)
    Only delete secrets belonging to its owner (#24284) (#24286)"

Unclear if there is real impact or if this is simply hardening
enhancements, but please bump.
Comment 1 jon R-B 2023-05-22 19:52:39 UTC
Comment 2 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2023-05-29 19:38:29 UTC
Thanks! Please stable and cleanup when ready.

Also note that you can reference bugs by putting eg `Bug:` in the commit message, and a bot will automatically link the bug and pull request to each other.
Comment 3 Larry the Git Cow gentoo-dev 2023-10-14 07:49:41 UTC
The bug has been referenced in the following commit(s):

commit 03cb0b5aaf305b7a854f337dd6f2aee989662dad
Author:     Hans de Graaff <>
AuthorDate: 2023-10-14 07:49:13 +0000
Commit:     Hans de Graaff <>
CommitDate: 2023-10-14 07:49:38 +0000

    www-apps/gitea: drop 1.19.1
    Signed-off-by: Hans de Graaff <>

 www-apps/gitea/Manifest            |   1 -
 www-apps/gitea/gitea-1.19.1.ebuild | 125 -------------------------------------
 2 files changed, 126 deletions(-)