news/tin tweaks:
- add hidden dep on uriparser, found by Hugo Villeneuve
- switch from pcre to pcre2
- remove some bogus SITES entries, add an https to the top of the list
www/nginx: drop patch merged upstream in 1.28.1
should have been removed in the 1.28.2 backport, my bad
reported by Steven Surdock via robert@, thanks !
Security update to vaultwarden-1.35.3
GHSA-h265-g7rm-h337 (Publication in process, waiting for CVE
assignment). This vulnerability would allow an authenticated attacker
that is part of an organization to access items from collections to
which the attacker does not belong.
Changes:
https://github.com/dani-garcia/vaultwarden/releases/tag/1.35.3
Patched Cargo.toml to allow building with Rust 1.90.0.
Security update to vaultwarden-1.35.3
GHSA-h265-g7rm-h337 (Publication in process, waiting for CVE
assignment). This vulnerability would allow an authenticated attacker
that is part of an organization to access items from collections to
which the attacker does not belong.
Changes:
https://github.com/dani-garcia/vaultwarden/releases/tag/1.35.3