openSUSE: 2024:0135-1 Moderate: Gitui Patch for CVE-2023-48795
opensuse
May 22, 2024
An update that fixes one vulnerability is now available
Description
This update for gitui fixes the following issues:
- update to version 0.26.2:
* respect configuration for remote when fetching (also applies to
pulling)
* add : character to sign-off trailer to comply with Conventional
Commits standard
* support overriding build_date for reproducible builds
- update vendored dependencies for CVE-2023-48795 (boo#1218264)
- Update to version 0.26.1: Added:
* sign commits using openpgp
* support ssh commit signing (when user.signingKey and gpg.format = ssh
of gitconfig are set; ssh-agent isn't yet supported)
* provide nightly builds (see NIGHTLIES.md)
* more version info in gitui -V and help popup (including git hash)
* support core.commitChar filtering
* allow reset in branch popup
* respect configuration for remote when pushing Changed:
* Make info and error message popups scrollable
* clarify x86_64 linux binary in artifact names:
...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Backports SLE-15-SP5:
zypper in -t patch openSUSE-2024-135=1
Package List
- openSUSE Backports SLE-15-SP5 (aarch64 i586 ppc64le s390x x86_64):
gitui-0.26.2-bp155.2.3.1
References
https://www.suse.com/security/cve/CVE-2023-48795.html
https://bugzilla.suse.com/1218264
PREVIOUS
NEXT
Announcement ID: openSUSE-SU-2024:0135-1
Rating: moderate
Affected Products:
openSUSE Backports SLE-15-SP5
.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!