FreeBSD VuXML

Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

in the FreeBSD Ports Collection repository, path ports/security/vuxml/vuln.xml
as a local copy
as a local copy, compressed with bzip2
as a local copy, compressed with xz
as a local copy, compressed with zstandard

Please report security issues to the FreeBSD Security Team at <ports-secteam@FreeBSD.org>. Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.

gitea

gitea at FreshPorts.org

Entered	Topic
2025-03-31	gitea -- Multiple vulnerabilities
2024-12-17	gitea -- Fix misuse of PublicKeyCallback
	gitea -- multiple vulnerabilities
	gitea -- multiple vulnerabilities
2024-10-09	gitea -- token missing access control for packages
2024-09-05	gitea -- multiple issues
2024-02-24	gitea -- Fix XSS vulnerabilities
2024-02-15	gitea -- Prevent anonymous container access
2023-12-21	gitea -- Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
2023-09-10	gitea -- block user account creation from blocked email domains
2023-09-10	gitea -- missing permission checks
2023-08-27	gitea -- information disclosure
2023-07-23	gitea -- Disallow dangerous URL schemes
2023-07-05	gitea -- avoid open HTTP redirects
2023-07-05	gitea -- multiple issues
2023-02-20	gitea -- password hash quality
2023-01-24	gitea -- information disclosure
2023-01-02	gitea -- multiple issues
2022-12-22	gitea -- multiple issues
2022-10-15	gitea -- multiple issues
2022-09-11	gitea -- multiple issues
2022-08-05	gitea -- multiple issues
2022-08-05	gitea -- multiple issues
2022-05-05	gitea -- Escape git fetch remote
2022-03-29	gitea -- Improper/incorrect authorization
2022-03-29	gitea -- Open Redirect on login
2021-11-04	gitea -- multiple vulnerabilities
2021-08-22	gitea -- multiple vulnerabilities
2021-08-20	gitea -- multiple vulnerabilities
2021-07-18	gitea -- multiple vulnerabilities
2021-06-19	gitea -- multiple vulnerabilities
2021-04-11	gitea -- multiple vulnerabilities
2021-04-09	gitea -- multiple vulnerabilities
2021-03-23	gitea -- multiple vulnerabilities
2021-03-21	gitea -- quoting in markdown text
2021-02-06	gitea -- multiple vulnerabilities
2021-02-06	gitea -- multiple vulnerabilities
2020-12-31	gitea -- multiple vulnerabilities
2020-12-04	gitea -- multiple vulnerabilities
2020-11-21	gitea -- multiple vulnerabilities
2020-05-31	gitea -- multiple vulnerabilities
2020-03-07	gitea -- multiple vulnerabilities
2020-01-18	gitea -- multiple vulnerabilities
2019-11-22	gitea -- multiple vulnerabilities
2019-10-30	gitea -- information disclosure
2019-08-22	gitea -- multiple vulnerabilities
2019-07-31	gitea -- multiple vulnerabilities
2019-07-31	gitea -- multiple vulnerabilities
2019-05-06	gitea -- multiple vulnerabilities
2019-04-17	gitea -- remote code execution
2019-03-20	gitea -- XSS vulnerability
2019-02-01	gitea -- multiple vulnerabilities
2019-01-26	gitea -- multiple vulnerabilities
2019-01-06	gitea -- insufficient privilege check
2018-12-21	gitea -- privilege escalation, XSS
2018-11-01	gitea -- remote code exeution
2018-10-11	gitea -- multiple vulnerabilities
2018-09-05	Information disclosure - Gitea leaks email addresses
2018-08-12	gitea -- TOTP passcode reuse