From ${URL} : the Debian Security Team would like to request a CVE for an XSS vulnerability in viewc, that was fixed in release 1.1.26 by the following change: https://github.com/viewvc/viewvc/commit/9dcfc7daa4c940992920d3b2fbd317da20e44aad @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
Now in repository via https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bbb634585b0c2ff3658e8a46d2d2ab0f6546db3a @ Arches, please test and mark stable: =www-apps/viewvc-1.1.26
x86 stable
amd64 stable. Maintainer(s), please cleanup. Security, please vote.
GLSA Vote: No. Repository is clean, all done.