openSUSE-SU-2021:0145-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2021:0145-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/openSUSE-SU-2021:0145-1
Related
Published
2021-01-23T11:22:34Z
Modified
2021-01-23T11:22:34Z
Summary
Security update for viewvc
Details

This update for viewvc fixes the following issues:

  • update to 1.1.28 (boo#1167974, CVE-2020-5283):
    • security fix: escape subdir lastmod file name (#211)
    • fix standalone.py first request failure (#195)
    • suppress stack traces (with option to show) (#140)
    • distinguish text/binary/image files by icons (#166, #175)
    • colorize alternating file content lines (#167)
    • link to the instance root from the ViewVC logo (#168)
    • display directory and root counts, too (#169)
    • fix double fault error in standalone.py (#157)
    • support timezone offsets with minutes piece (#176)

This update was imported from the openSUSE:Leap:15.1:Update update project. This update was imported from the openSUSE:Leap:15.2:Update update project.

References

Affected packages

SUSE:Package Hub 15 SP2 / viewvc

Package

Name
viewvc
Purl
pkg:rpm/suse/viewvc&distro=SUSE%20Package%20Hub%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.1.28-bp152.4.3.1

Ecosystem specific 

{
    "binaries": [
        {
            "viewvc": "1.1.28-bp152.4.3.1"
        }
    ]
}