Skip to content
Snippets Groups Projects
Commit 94def2b5 authored by Alexander Leidinger's avatar Alexander Leidinger
Browse files

misc/openhab: update to 4.2.1

This is mainly for security fixes in the CometVisu plugin.
parent a42586cf
No related branches found
No related tags found
No related merge requests found
PORTNAME= openhab-addons
PORTVERSION= 4.2.0
PORTVERSION= 4.2.1
CATEGORIES= misc java
MASTER_SITES= https://openhab.jfrog.io/artifactory/libs-release-local/org/openhab/distro/openhab-addons/${PORTVERSION}/
DISTNAME= openhab-addons-${PORTVERSION}
......
TIMESTAMP = 1721127596
SHA256 (openhab-addons-4.2.0.kar) = 0a1fda6d89737cafee8ea90e0b585af34e5964175d69fd7fa923f2552889bc5e
SIZE (openhab-addons-4.2.0.kar) = 439918336
TIMESTAMP = 1723535379
SHA256 (openhab-addons-4.2.1.kar) = 951f0183e36eeb6789922530d686c20671668d4ee104bd24d9e3451ac7183e27
SIZE (openhab-addons-4.2.1.kar) = 442092807
PORTNAME= openhab
PORTVERSION= 4.2.0
PORTVERSION= 4.2.1
PORTREVISION= 0
CATEGORIES= misc java
MASTER_SITES= https://openhab.jfrog.io/artifactory/libs-release-local/org/openhab/distro/openhab/${PORTVERSION}/
......
TIMESTAMP = 1721126791
SHA256 (openhab-4.2.0.zip) = b1d3a054cdf3971c0609f9ab751e047765a5508c1aad138128e6394afb8258e8
SIZE (openhab-4.2.0.zip) = 110956488
TIMESTAMP = 1723535216
SHA256 (openhab-4.2.1.zip) = 62b80e55ee0baf01c8806323a1fc86833cd54ce8c978fcdc974abec6cf52fa61
SIZE (openhab-4.2.1.zip) = 110949787
<vuln vid="587ed8ac-5957-11ef-854a-001e676bf734">
<topic>OpenHAB CometVisu addon -- Multiple vulnerabilities</topic>
<affects>
<package>
<name>openhab-addons</name>
<range><lt>4.2.1</lt></range>
</package>
</affects>
<description>
<body xmlns="http://www.w3.org/1999/xhtml">
<p>OpenHAB reports:</p>
<blockquote cite="https://github.com/openhab/openhab-distro/releases/tag/4.2.1">
<p>This patch release addresses the following security advisories:</p>
<ul>
<li>SSRF/XSS (CometVisu) - <a href="https://github.com/openhab/openhab-webui/security/advisories/GHSA-v7gr-mqpj-wwh3">GHSA-v7gr-mqpj-wwh3</a></li>
<li>Sensitive information disclosure (CometVisu) - <a href="https://github.com/openhab/openhab-webui/security/advisories/GHSA-3g4c-hjhr-73rj">GHSA-3g4c-hjhr-73rj</a></li>
<li>RCE through path traversal (CometVisu) - <a href="https://github.com/openhab/openhab-webui/sec
urity/advisories/GHSA-f729-58x4-gqgf">GHSA-f729-58x4-gqgf</a></li>
<li>Path traversal (CometVisu) - <a href="https://github.com/openhab/openhab-webui/security/advisories/GHSA-pcwp-26pw-j98w">GHSA-pcwp-26pw-j98w</a></li>
</ul>
<p>
All of these are related to the CometVisu add-on for openHAB - if you are a user of CometVisu, we strongly recommend to upgrade your system to openHAB 4.2.1 in order to fix those vulnerabilities.</p>
</blockquote>
</body>
</description>
<references>
<url>https://github.com/openhab/openhab-distro/releases/tag/4.2.1</url>
<url>https://github.com/openhab/openhab-webui/security/advisories/GHSA-v7gr-mqpj-wwh3</url>
<url>https://github.com/openhab/openhab-webui/security/advisories/GHSA-3g4c-hjhr-73rj</url>
<url>https://github.com/openhab/openhab-webui/security/advisories/GHSA-f729-58x4-gqgf</url>
<url>https://github.com/openhab/openhab-webui/security/advisories/GHSA-pcwp-26pw-j98w</url>
</references>
<dates>
<discovery>2024-08-09</discovery>
<entry>2024-08-09</entry>
</dates>
</vuln>
<vuln vid="d2723b0f-58d9-11ef-b611-84a93843eb75">
<topic>Vaultwarden -- Multiple vulnerabilities</topic>
<affects>
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment