| Descripción: | Summary:
The remote host is missing an update for the 'gitui' package(s) announced via the openSUSE-SU-2024:0135-1 advisory.
Vulnerability Insight:
This update for gitui fixes the following issues:
- update to version 0.26.2:
* respect configuration for remote when fetching (also applies
to pulling)
* add : character to sign-off trailer to comply with Conventional
Commits standard
* support overriding build_date for reproducible builds
- update vendored dependencies for CVE-2023-48795 (boo#1218264)
- Update to version 0.26.1:
Added:
* sign commits using openpgp
* support ssh commit signing (when user.signingKey and gpg.format
= ssh of gitconfig are set, ssh-agent isn't yet supported)
* provide nightly builds (see NIGHTLIES.md)
* more version info in gitui -V and help popup (including git
hash)
* support core.commitChar filtering
* allow reset in branch popup
* respect configuration for remote when pushing
Changed:
* Make info and error message popups scrollable
* clarify x86_64 linux binary in artifact names:
gitui-linux-x86_64.tar.gz (formerly known as musl)
Fixes:
* add syntax highlighting support for more file types, e.g.
Typescript, TOML, etc.
- Update to version 0.25.1:
Added:
* support for new-line in text-input (e.g. commit message editor)
* add syntax highlighting for blame view
* allow aborting pending commit log search
* theme.ron now supports customizing line break symbol
* add confirmation for dialog for undo commit
* support prepare-commit-msg hook
* new style block_title_focused to allow customizing title text
of focused frame/block
* allow fetch command in both tabs of branchlist popup
* check branch name validity while typing
Changed:
* do not allow tagging when tag.gpgsign enabled until gpg-signing
is supported
Fixes:
* bump yanked dependency bumpalo to fix build from source
* pin ratatui version to fix building without locked cargo
install gitui
* stash window empty after file history popup closes
* allow push to empty remote
* better diagnostics for theme file loading
* fix ordering of commits in diff view
- Update to version 0.24.3:
* log: fix major lag when going beyond last search hit
* parallelise log search - performance gain ~
100%
* search message body/summary separately
* fix commit log not updating after branch switch
* fix stashlist not updating after pop/drop
* fix commit log corruption when tabbing in/out while parsing log
* fix performance problem in big repo with a lot of incoming commits
* fix error switching to a branch with '/' in the name
* search commits by message, author or files in diff
* support 'n'/'p' key to move to the next/prev hunk in diff component
* simplify theme overrides
* support for sign-off of commits
* switched from textwrap to bwrap for text wrapping
* more logging diagnostics when a repo cannot be
* added to anaconda
* visualize empty line substituted with content in diff better
* checkout branch works with non-empty status report
* jump to commit by SHA
* fix commit dialog char count for ... [Please see the references for more information on the vulnerabilities]
Affected Software/OS:
'gitui' package(s) on openSUSE Leap 15.5.
Solution:
Please install the updated package(s).
CVSS Score:
5.4
CVSS Vector:
AV:N/AC:H/Au:N/C:N/I:C/A:N
|
