notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Ukraine
Some details on the 2023-01-16 website outage.
We just rebooted with several updates: * new HMTLify code * no port maintainer is now highly visible (e.g. https://freshports.org/security/sssd/) * fixed search logic error when using plain/ text details at https://github.com/FreshPorts/freshports/releases/tag/2.2.34
Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_6 security on this many watch lists=32 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout Version of this port present on the latest quarterly branch.
Maintainer: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2004-02-12 14:24:23
Last Update: 2023-02-06 01:25:30
Commit Hash: 5b66b0d
People watching this port, also watch:: gnupg, libxml2, nmap, curl, vim
Also Listed In: textproc
License: BSD2CLAUSE
Description:
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb
pkg-plist: as obtained via: make generate-plist
Expand this list (13 items)
Collapse this list.
  1. /usr/local/share/licenses/vuxml-1.1_6/catalog.mk
  2. /usr/local/share/licenses/vuxml-1.1_6/LICENSE
  3. /usr/local/share/licenses/vuxml-1.1_6/BSD2CLAUSE
  4. @xmlcatmgr share/xml/dtd/vuxml/catalog
  5. @xmlcatmgr share/xml/dtd/vuxml/catalog.xml
  6. share/xml/dtd/vuxml/vuxml-10.dtd
  7. share/xml/dtd/vuxml/vuxml-11.dtd
  8. share/xml/dtd/vuxml/vuxml-model-10.mod
  9. share/xml/dtd/vuxml/vuxml-model-11.mod
  10. share/xml/dtd/vuxml/xml1.dcl
  11. @owner
  12. @group
  13. @mode
Collapse this list.
Dependency lines:
  • vuxml>0:security/vuxml
To install the port:
cd /usr/ports/security/vuxml/ && make install clean
To add the package, run one of these commands:
  • pkg install security/vuxml
  • pkg install vuxml
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: vuxml
Flavors: there is no flavor information for this port.
distinfo:

Packages (timestamps in pop-ups are UTC):
vuxml
ABIlatestquarterly
FreeBSD:11:aarch641.1_31.1_4
FreeBSD:11:amd641.1_51.1_5
FreeBSD:11:armv61.1_21.1_4
FreeBSD:11:i3861.1_51.1_5
FreeBSD:11:mipspkg-falloutpkg-fallout
FreeBSD:11:mips641.1_31.1_4
FreeBSD:12:aarch641.1_31.1_6
FreeBSD:12:amd641.1_61.1_6
FreeBSD:12:armv61.1_31.1_4
FreeBSD:12:armv71.1_31.1_4
FreeBSD:12:i3861.1_61.1_6
FreeBSD:12:mipspkg-falloutpkg-fallout
FreeBSD:12:mips641.1_31.1_4
FreeBSD:12:powerpc64pkg-fallout1.1_5
FreeBSD:13:aarch641.1_61.1_6
FreeBSD:13:amd641.1_61.1_6
FreeBSD:13:armv61.1_51.1_5
FreeBSD:13:armv71.1_61.1_6
FreeBSD:13:i3861.1_61.1_6
FreeBSD:13:mipspkg-falloutpkg-fallout
FreeBSD:13:mips64pkg-falloutpkg-fallout
FreeBSD:13:powerpc641.1_51.1_6
FreeBSD:13:riscv64pkg-fallout1.1_5
FreeBSD:14:aarch641.1_6pkg-fallout
FreeBSD:14:amd641.1_6pkg-fallout
FreeBSD:14:armv61.1_6pkg-fallout
FreeBSD:14:armv71.1_6pkg-fallout
FreeBSD:14:i3861.1_6pkg-fallout
FreeBSD:14:mipspkg-falloutpkg-fallout
FreeBSD:14:mips64pkg-falloutpkg-fallout
FreeBSD:14:powerpc641.1_6pkg-fallout
FreeBSD:14:riscv641.1_5pkg-fallout
 
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Runtime dependencies:
  1. xmlcatmgr : textproc/xmlcatmgr
  2. xsltproc : textproc/libxslt
  3. VERSION : textproc/xhtml-modularization
  4. xhtml-basic10.dtd : textproc/xhtml-basic
  5. python3.9 : lang/python39
There are no ports dependent upon this port

Configuration Options:
Options name:
USES:
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. http://www.vuxml.org/dtd/vuxml-1/
Collapse this list.

Number of commits found: 6825 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
1.1_6
06 Feb 2023 01:25:30
commit hash:5b66b0ddff8c0e9fc52fa0b16b25c4f4381956e4commit hash:5b66b0ddff8c0e9fc52fa0b16b25c4f4381956e4commit hash:5b66b0ddff8c0e9fc52fa0b16b25c4f4381956e4commit hash:5b66b0ddff8c0e9fc52fa0b16b25c4f4381956e4 files touched by this commit
Wen Heping (wen) search for other commits by this committer
security/vuxml: Document django multiple vulnerabilities
1.1_6
05 Feb 2023 14:34:45
commit hash:b17b9dd46d41c940f19df0f1d972ad37519a3bf7commit hash:b17b9dd46d41c940f19df0f1d972ad37519a3bf7commit hash:b17b9dd46d41c940f19df0f1d972ad37519a3bf7commit hash:b17b9dd46d41c940f19df0f1d972ad37519a3bf7 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: Fix kafka version

Use 3.3.2 since we don't have the 3.4.x branch.

Fixes:	37508462426c3674c0b32cc7e8cb38dbafc2ecd5
1.1_6
04 Feb 2023 19:27:58
commit hash:37508462426c3674c0b32cc7e8cb38dbafc2ecd5commit hash:37508462426c3674c0b32cc7e8cb38dbafc2ecd5commit hash:37508462426c3674c0b32cc7e8cb38dbafc2ecd5commit hash:37508462426c3674c0b32cc7e8cb38dbafc2ecd5 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: Register net/kafka stack overflow vulnerability

CVE-2020-36518

PR:	269170
1.1_6
04 Feb 2023 19:04:32
commit hash:5544ae86f3ff0b781f29b81283c0543a3b7581becommit hash:5544ae86f3ff0b781f29b81283c0543a3b7581becommit hash:5544ae86f3ff0b781f29b81283c0543a3b7581becommit hash:5544ae86f3ff0b781f29b81283c0543a3b7581be files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: Register sysutils/node_exporter vulnerability

CVE-2022-46146

Note that in

https://cgit.freebsd.org/ports/commit/?id=8b5d2b9a9ec7985158a814e2cdf9022d785b9090

three CVEs are mentioned: CVE-2022-27191 CVE-2022-27664 CVE-2022-46146

However, according to: https://github.com/prometheus/node_exporter/pull/2488
node_exported is not really affected by those Go vulnerabilities. However
the dependencies were bumped anyway.
1.1_6
03 Feb 2023 13:38:45
commit hash:9dd139e1382b4f7adeb97484741a8ba18c7f3302commit hash:9dd139e1382b4f7adeb97484741a8ba18c7f3302commit hash:9dd139e1382b4f7adeb97484741a8ba18c7f3302commit hash:9dd139e1382b4f7adeb97484741a8ba18c7f3302 files touched by this commit
Koichiro Iwao (meta) search for other commits by this committer
Author: Tom Hukins
security/vuxml: fix a typo

Pull Request:	https://github.com/freebsd/freebsd-ports/pull/155
1.1_6
02 Feb 2023 20:49:55
commit hash:b9504120339981ca4ee256f76797438a4f037bb5commit hash:b9504120339981ca4ee256f76797438a4f037bb5commit hash:b9504120339981ca4ee256f76797438a4f037bb5commit hash:b9504120339981ca4ee256f76797438a4f037bb5 files touched by this commit
Florian Smeets (flo) search for other commits by this committer
security/vuxml: Belatedly record vulnerabilities fixed in asterisk 18.15.1
1.1_6
02 Feb 2023 13:57:36
commit hash:3158cc455d07a5af0467facc74c5abecbd75a48acommit hash:3158cc455d07a5af0467facc74c5abecbd75a48acommit hash:3158cc455d07a5af0467facc74c5abecbd75a48acommit hash:3158cc455d07a5af0467facc74c5abecbd75a48a files touched by this commit
Nicola Vitale (nivit) search for other commits by this committer
security/vuxml: Add audio/py-spotipy <= 2.22.0

Security:	CVE-2023-23608
1.1_6
01 Feb 2023 19:04:19
commit hash:eb9cc2b88cb8da14363d7f2119e2b2a008818840commit hash:eb9cc2b88cb8da14363d7f2119e2b2a008818840commit hash:eb9cc2b88cb8da14363d7f2119e2b2a008818840commit hash:eb9cc2b88cb8da14363d7f2119e2b2a008818840 files touched by this commit
Craig Leres (leres) search for other commits by this committer
security/vuxml: Mark zeek < 5.0.6 as vulnerable as per:

    https://github.com/zeek/zeek/releases/tag/v5.0.6

This release fixes the following potential DoS vulnerabilities:

 - A missing field in the SMB FSControl script-land record could
   cause a heap buffer overflow when receiving packets containing
   those header types.

 - Receiving a series of packets that start with HTTP/1.0 and then
   switch to HTTP/0.9 could cause Zeek to spend a large amount of
   time processing the packets.

 - Receiving large numbers of FTP commands sequentially from the
   network with bad data in them could cause Zeek to spend a large
   amount of time processing the packets, and generate a large
   amount of events.

Reported by:	Tim Wojtulewicz
1.1_6
01 Feb 2023 05:02:56
commit hash:b7d6ba39cee70db8a8cafc5471a10bd343780fcacommit hash:b7d6ba39cee70db8a8cafc5471a10bd343780fcacommit hash:b7d6ba39cee70db8a8cafc5471a10bd343780fcacommit hash:b7d6ba39cee70db8a8cafc5471a10bd343780fca files touched by this commit
Matthias Fechner (mfechner) search for other commits by this committer
security/vuxml: document gitlab vulnerabilities
1.1_6
30 Jan 2023 11:28:30
commit hash:620614c60f94324f19c33d109199f1f026b41b1fcommit hash:620614c60f94324f19c33d109199f1f026b41b1fcommit hash:620614c60f94324f19c33d109199f1f026b41b1fcommit hash:620614c60f94324f19c33d109199f1f026b41b1f files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
security/vuxml: Document CVE-2021-42835 for
multimedia/plexmediaserver{-plexpass} < 1.25.0

PR:		269226
Reported by:	grahamperrin
1.1_6
30 Jan 2023 10:26:13
commit hash:e4bc259a13130d5c9440ee6913b69baab43f48ffcommit hash:e4bc259a13130d5c9440ee6913b69baab43f48ffcommit hash:e4bc259a13130d5c9440ee6913b69baab43f48ffcommit hash:e4bc259a13130d5c9440ee6913b69baab43f48ff files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: add net-mgmt/prometheus basic authentication bypass

CVE-2022-46146

PR:	269153
Reported by:	dor.bsd@xm0.uk (maintainer)
1.1_6
25 Jan 2023 11:35:34
commit hash:74a60a62fb31fa190f4ff02074d50d66c54a4f9ccommit hash:74a60a62fb31fa190f4ff02074d50d66c54a4f9ccommit hash:74a60a62fb31fa190f4ff02074d50d66c54a4f9ccommit hash:74a60a62fb31fa190f4ff02074d50d66c54a4f9c files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add www/*chromium < 109.0.5414.119

Obtained
from:	https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop_24.html
1.1_6
25 Jan 2023 08:11:56
commit hash:1e6f41078eae790b4bf937e6a78c2f4c74bdda24commit hash:1e6f41078eae790b4bf937e6a78c2f4c74bdda24commit hash:1e6f41078eae790b4bf937e6a78c2f4c74bdda24commit hash:1e6f41078eae790b4bf937e6a78c2f4c74bdda24 files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
security/vuxml: Document CVE-2018-21232 for devel/re2c < 2.0

PR:		269147
Reported by:	grahamperrin
1.1_6
24 Jan 2023 20:37:23
commit hash:211f63f4d50a58aae8797b5caa709308af2ae175commit hash:211f63f4d50a58aae8797b5caa709308af2ae175commit hash:211f63f4d50a58aae8797b5caa709308af2ae175commit hash:211f63f4d50a58aae8797b5caa709308af2ae175 files touched by this commit
Florian Smeets (flo) search for other commits by this committer
Author: Stefan Bethke
security/vuxml: Record gitea vulnerability

PR:		269131
1.1_6
24 Jan 2023 06:46:41
commit hash:6ce46aad1724ae98a6aad1a9789389893eab4252commit hash:6ce46aad1724ae98a6aad1a9789389893eab4252commit hash:6ce46aad1724ae98a6aad1a9789389893eab4252commit hash:6ce46aad1724ae98a6aad1a9789389893eab4252 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
Author: Ralf van der Enden
security/vuxml: register dns/powerdns-recursor vulnerability

CVE-2023-22617

PR:	269116
1.1_6
23 Jan 2023 13:20:06
commit hash:6451492b53545e19bc2761229143294c6503de8fcommit hash:6451492b53545e19bc2761229143294c6503de8fcommit hash:6451492b53545e19bc2761229143294c6503de8fcommit hash:6451492b53545e19bc2761229143294c6503de8f files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: register net/krill DoS vulnerability

CVE-2023-0158

PR:	269050
1.1_6
23 Jan 2023 13:08:45
commit hash:41493dcf982d8df241837f7f38453130e8fc9121commit hash:41493dcf982d8df241837f7f38453130e8fc9121commit hash:41493dcf982d8df241837f7f38453130e8fc9121commit hash:41493dcf982d8df241837f7f38453130e8fc9121 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: register www/awstats vulnerability

PR:	269051
1.1_6
23 Jan 2023 12:55:09
commit hash:be92f125bb0888a16fae98a1d239f87bf8293a08commit hash:be92f125bb0888a16fae98a1d239f87bf8293a08commit hash:be92f125bb0888a16fae98a1d239f87bf8293a08commit hash:be92f125bb0888a16fae98a1d239f87bf8293a08 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: register net/eternalterminal vulnerabilities

CVE-2022-48257 and CVE-2022-48258

PR:	269079
1.1_6
23 Jan 2023 12:42:21
commit hash:3fb1ffb2b26959f4ea21ead0441fe18602cdbfebcommit hash:3fb1ffb2b26959f4ea21ead0441fe18602cdbfebcommit hash:3fb1ffb2b26959f4ea21ead0441fe18602cdbfebcommit hash:3fb1ffb2b26959f4ea21ead0441fe18602cdbfeb files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuln: Fix file

It didn't pass `make validate`.
1.1_6
21 Jan 2023 22:42:45
commit hash:15a0ee651699dc551e4e41d3976e68ba1c9e90a9commit hash:15a0ee651699dc551e4e41d3976e68ba1c9e90a9commit hash:15a0ee651699dc551e4e41d3976e68ba1c9e90a9commit hash:15a0ee651699dc551e4e41d3976e68ba1c9e90a9 files touched by this commit
Alan Somers (asomers) search for other commits by this committer
security/vuxml: register shells/fish vulnerability

Arbitrary code execution if the attacker can convince the user to cd to
a directory the attacker controls.

CVE-2022-20001

PR: 263506
1.1_6
21 Jan 2023 21:48:04
commit hash:0e9e18d9f290ec874112097ff62bcb1aaee0c9d4commit hash:0e9e18d9f290ec874112097ff62bcb1aaee0c9d4commit hash:0e9e18d9f290ec874112097ff62bcb1aaee0c9d4commit hash:0e9e18d9f290ec874112097ff62bcb1aaee0c9d4 files touched by this commit
Bernard Spil (brnrd) search for other commits by this committer
security/vuxml: Document 2023Q1 MySQL vulns
1.1_6
20 Jan 2023 22:06:35
commit hash:3c8ad6e71ad9854f37bde8caeb80d76fab1ba1d6commit hash:3c8ad6e71ad9854f37bde8caeb80d76fab1ba1d6commit hash:3c8ad6e71ad9854f37bde8caeb80d76fab1ba1d6commit hash:3c8ad6e71ad9854f37bde8caeb80d76fab1ba1d6 files touched by this commit
Florian Smeets (flo) search for other commits by this committer
security/vuxml: Document vulnerabilities in phpmyfaq
1.1_6
19 Jan 2023 02:29:32
commit hash:6d33da93ed041be803c1a7d8557de847097b9f61commit hash:6d33da93ed041be803c1a7d8557de847097b9f61commit hash:6d33da93ed041be803c1a7d8557de847097b9f61commit hash:6d33da93ed041be803c1a7d8557de847097b9f61 files touched by this commit
Yasuhiro Kimura (yasu) search for other commits by this committer
security/vuxml: Document multiple vulnerabilities in rack
1.1_6
18 Jan 2023 04:42:20
commit hash:c83f7662e56f5842624f9d7069505cccbbb84fb4commit hash:c83f7662e56f5842624f9d7069505cccbbb84fb4commit hash:c83f7662e56f5842624f9d7069505cccbbb84fb4commit hash:c83f7662e56f5842624f9d7069505cccbbb84fb4 files touched by this commit
Yasuhiro Kimura (yasu) search for other commits by this committer
security/vuxml: Add redis6 as affecting package to
5fa68bd9-95d9-11ed-811a-080027f5fec9
1.1_6
17 Jan 2023 20:16:54
commit hash:dc9fe07c52396f5b0be8f2610ac29d02563a40e8commit hash:dc9fe07c52396f5b0be8f2610ac29d02563a40e8commit hash:dc9fe07c52396f5b0be8f2610ac29d02563a40e8commit hash:dc9fe07c52396f5b0be8f2610ac29d02563a40e8 files touched by this commit
Bernard Spil (brnrd) search for other commits by this committer
security/vuxml: Document www/apache24 vulnerabilities
1.1_6
17 Jan 2023 00:39:26
commit hash:d2fb81fd33c635181513d0ac01a4adccb5dc32edcommit hash:d2fb81fd33c635181513d0ac01a4adccb5dc32edcommit hash:d2fb81fd33c635181513d0ac01a4adccb5dc32edcommit hash:d2fb81fd33c635181513d0ac01a4adccb5dc32ed files touched by this commit
Yasuhiro Kimura (yasu) search for other commits by this committer
security/vuxml: Document multiple vulnerabilities in redis
1.1_6
16 Jan 2023 13:28:27
commit hash:5e8cd88070910be14686cbce2f1afc4d2921d927commit hash:5e8cd88070910be14686cbce2f1afc4d2921d927commit hash:5e8cd88070910be14686cbce2f1afc4d2921d927commit hash:5e8cd88070910be14686cbce2f1afc4d2921d927 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: register security/keycloak vulnerability

Two Xstream related CVEs that might cause a DoS attack:

 * CVE-2022-40151
 * CVE-2022-41966

PR:	268939
1.1_6
14 Jan 2023 13:05:20
commit hash:226a0bf7638737dd173675e82bd2639c2374e2adcommit hash:226a0bf7638737dd173675e82bd2639c2374e2adcommit hash:226a0bf7638737dd173675e82bd2639c2374e2adcommit hash:226a0bf7638737dd173675e82bd2639c2374e2ad files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add security/tor < 0.4.7.13 for TROVE-2022-002

Obtained from:	https://gitlab.torproject.org/tpo/core/tor/-/issues/40730
1.1_6
13 Jan 2023 15:56:28
commit hash:bebf6dfd11d5dd4a0cc5ab74ac0904299dadc471commit hash:bebf6dfd11d5dd4a0cc5ab74ac0904299dadc471commit hash:bebf6dfd11d5dd4a0cc5ab74ac0904299dadc471commit hash:bebf6dfd11d5dd4a0cc5ab74ac0904299dadc471 files touched by this commit
Dan Langille (dvl) search for other commits by this committer
security/vuxml: Correct range for devel/viewvc-devel

Changing a - to a . in the version

PR:		268754
1.1_6
13 Jan 2023 01:29:00
commit hash:7352c81ae3bf9fa1270dbc7a29865469e0b4cc3bcommit hash:7352c81ae3bf9fa1270dbc7a29865469e0b4cc3bcommit hash:7352c81ae3bf9fa1270dbc7a29865469e0b4cc3bcommit hash:7352c81ae3bf9fa1270dbc7a29865469e0b4cc3b files touched by this commit
Yasuhiro Kimura (yasu) search for other commits by this committer
security/vuxml: Document arbitary shell command execution vulnerability in Emacs
1.1_6
11 Jan 2023 17:48:22
commit hash:2d493d4ae39ea985c47ca03c63551e53b639069bcommit hash:2d493d4ae39ea985c47ca03c63551e53b639069bcommit hash:2d493d4ae39ea985c47ca03c63551e53b639069bcommit hash:2d493d4ae39ea985c47ca03c63551e53b639069b files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: cassandra3 multiple vulnerabilities

CVE-2022-42003
CVE-2022-4200
CVE-2022-25857
CVE-2019-2684
CVE-2020-7238
CVE-2022-24823
CVE-2021-44521
CVE-2015-0886

PR:	267624
1.1_6
11 Jan 2023 15:38:34
commit hash:cbb3499cdfc08c4e8d8df09c996bfa34e6146784commit hash:cbb3499cdfc08c4e8d8df09c996bfa34e6146784commit hash:cbb3499cdfc08c4e8d8df09c996bfa34e6146784commit hash:cbb3499cdfc08c4e8d8df09c996bfa34e6146784 files touched by this commit
Jan Beich (jbeich) search for other commits by this committer
security/vuxml: mark xorg-server < 21.1.5,1 as vulnerable
1.1_6
11 Jan 2023 12:38:13
commit hash:16583ccb338f46983a8a83afd0c162f05fbc9203commit hash:16583ccb338f46983a8a83afd0c162f05fbc9203commit hash:16583ccb338f46983a8a83afd0c162f05fbc9203commit hash:16583ccb338f46983a8a83afd0c162f05fbc9203 files touched by this commit
Matthias Fechner (mfechner) search for other commits by this committer
security/vuxml: document gitlab-ce vulnerabilities
1.1_6
10 Jan 2023 19:46:56
commit hash:40c70d31cf0e8393604bc6a20bff9ee8df5157bccommit hash:40c70d31cf0e8393604bc6a20bff9ee8df5157bccommit hash:40c70d31cf0e8393604bc6a20bff9ee8df5157bccommit hash:40c70d31cf0e8393604bc6a20bff9ee8df5157bc files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add www/*chromium < 109.0.5414.74

Obtained
from:	https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html
1.1_6
09 Jan 2023 10:15:47
commit hash:276c0719eb5c609144e4e08691127d3f2c820410commit hash:276c0719eb5c609144e4e08691127d3f2c820410commit hash:276c0719eb5c609144e4e08691127d3f2c820410commit hash:276c0719eb5c609144e4e08691127d3f2c820410 files touched by this commit
Li-Wen Hsu (lwhsu) search for other commits by this committer
Author: Michael Glaus
security/vuxml: Fix `make validate`

PR:		268837
1.1_6
09 Jan 2023 10:11:42
commit hash:de581e53a456bba614a767b1606a1fb2d9256b61commit hash:de581e53a456bba614a767b1606a1fb2d9256b61commit hash:de581e53a456bba614a767b1606a1fb2d9256b61commit hash:de581e53a456bba614a767b1606a1fb2d9256b61 files touched by this commit
Li-Wen Hsu (lwhsu) search for other commits by this committer
Author: Michael Glaus
security/vuxml: Add 2023 to the main XML file

PR:		268837
1.1_6
05 Jan 2023 19:34:06
commit hash:dded4914bc3a4cfca23e131af011b2168cb08a34commit hash:dded4914bc3a4cfca23e131af011b2168cb08a34commit hash:dded4914bc3a4cfca23e131af011b2168cb08a34commit hash:dded4914bc3a4cfca23e131af011b2168cb08a34 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: Add net-mgmt/cacti vulnerability

A command injection vulnerability allows an unauthenticated user to execute
arbitrary code on a server running Cacti, if a specific data source was selected
for any monitored device.

PR:	268742
1.1_6
05 Jan 2023 19:08:43
commit hash:210b86be2bf9fa73f96d674eadc662030996cd27commit hash:210b86be2bf9fa73f96d674eadc662030996cd27commit hash:210b86be2bf9fa73f96d674eadc662030996cd27commit hash:210b86be2bf9fa73f96d674eadc662030996cd27 files touched by this commit
Dan Langille (dvl) search for other commits by this committer
security/vuxml: amend entry adding CVE-2023-22456 in devel/viewvc-devel

PR:		268754
Security:	CVE-2023-22456
1.1_6
05 Jan 2023 17:28:58
commit hash:9475627621197926fd1382c51c353038945c5e7dcommit hash:9475627621197926fd1382c51c353038945c5e7dcommit hash:9475627621197926fd1382c51c353038945c5e7dcommit hash:9475627621197926fd1382c51c353038945c5e7d files touched by this commit
Dan Langille (dvl) search for other commits by this committer
security/vuxml: add an entry for CVE-2023-22464 in devel/viewvc-devel

Security:	CVE-2023-22464
1.1_6
03 Jan 2023 11:12:27
commit hash:93b08b54dd5ecbc0fe26aa4660191a591e213f5fcommit hash:93b08b54dd5ecbc0fe26aa4660191a591e213f5fcommit hash:93b08b54dd5ecbc0fe26aa4660191a591e213f5fcommit hash:93b08b54dd5ecbc0fe26aa4660191a591e213f5f files touched by this commit
Thierry Thomas (thierry) search for other commits by this committer
security/vuxml: add an entry for CVE-2022-4170 in x11/rxvt-unicode

Security:	CVE-2022-4170
1.1_6
02 Jan 2023 03:37:26
commit hash:3ae134b99731d30ec9b2babfbe453ab860d94dd5commit hash:3ae134b99731d30ec9b2babfbe453ab860d94dd5commit hash:3ae134b99731d30ec9b2babfbe453ab860d94dd5commit hash:3ae134b99731d30ec9b2babfbe453ab860d94dd5 files touched by this commit
Li-Wen Hsu (lwhsu) search for other commits by this committer
Author: Stefan Bethke
security/vuxml: Document Gitea multiple vulnerabilities

PR:		268667
1.1_6
29 Dec 2022 13:11:38
commit hash:8799d824454ae62a4ef1092998cd1fbff66075dfcommit hash:8799d824454ae62a4ef1092998cd1fbff66075dfcommit hash:8799d824454ae62a4ef1092998cd1fbff66075dfcommit hash:8799d824454ae62a4ef1092998cd1fbff66075df files touched by this commit
Wen Heping (wen) search for other commits by this committer
security/vuxml: Remove the uncorrect <cvsname> line in my previous commit
1.1_6
29 Dec 2022 11:22:22
commit hash:92811d197a77b175a0c2099a08eb2cb8a4568894commit hash:92811d197a77b175a0c2099a08eb2cb8a4568894commit hash:92811d197a77b175a0c2099a08eb2cb8a4568894commit hash:92811d197a77b175a0c2099a08eb2cb8a4568894 files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
security/vuxml: Document Webtrees vulnerability

PR:		267466
1.1_6
29 Dec 2022 03:42:17
commit hash:9169d8e03708ca0fe85c6889ab9ce18c5f08d4abcommit hash:9169d8e03708ca0fe85c6889ab9ce18c5f08d4abcommit hash:9169d8e03708ca0fe85c6889ab9ce18c5f08d4abcommit hash:9169d8e03708ca0fe85c6889ab9ce18c5f08d4ab files touched by this commit
Wen Heping (wen) search for other commits by this committer
security/vuxml: Document mediawiki multiple vulnerabilities
1.1_6
28 Dec 2022 00:06:50
commit hash:7ee4b5097a255e8c7238cca2014586a11f4641b2commit hash:7ee4b5097a255e8c7238cca2014586a11f4641b2commit hash:7ee4b5097a255e8c7238cca2014586a11f4641b2commit hash:7ee4b5097a255e8c7238cca2014586a11f4641b2 files touched by this commit
Ben Woods (woodsb02) search for other commits by this committer
security/vuxml: Document Netdata multiple vulnerabilities
1.1_6
24 Dec 2022 15:48:09
commit hash:d3a551156d23de88dc83df9551ccb3a225efd67ccommit hash:d3a551156d23de88dc83df9551ccb3a225efd67ccommit hash:d3a551156d23de88dc83df9551ccb3a225efd67ccommit hash:d3a551156d23de88dc83df9551ccb3a225efd67c files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
security/vuxml: Document FreeRDP multiple vulnerabilities

PR:		268539
1.1_6
23 Dec 2022 08:38:15
commit hash:e8352eb7d977a137398360dd7f207dce6f6672e1commit hash:e8352eb7d977a137398360dd7f207dce6f6672e1commit hash:e8352eb7d977a137398360dd7f207dce6f6672e1commit hash:e8352eb7d977a137398360dd7f207dce6f6672e1 files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
Author: Stefan Bethke
security/vuxml: Document Gitea multiple vulnerabilities

PR:		268512
1.1_6
23 Dec 2022 04:03:22
commit hash:e0953f411b91bf2de501feb28ca5db1815d4549fcommit hash:e0953f411b91bf2de501feb28ca5db1815d4549fcommit hash:e0953f411b91bf2de501feb28ca5db1815d4549fcommit hash:e0953f411b91bf2de501feb28ca5db1815d4549f files touched by this commit
Graham Perrin (grahamperrin) search for other commits by this committer
VuXML: fix typo in 2021 entry for accountsservice

Fixes:                 d227a2fea96e Document accountsservice vulnerability
Approved by:           ports-secteam (riggs)
Differential revision: https://reviews.freebsd.org/D37721
1.1_6
17 Dec 2022 09:22:47
commit hash:b709923c0327dae5130b8f0c42a5757727f97914commit hash:b709923c0327dae5130b8f0c42a5757727f97914commit hash:b709923c0327dae5130b8f0c42a5757727f97914commit hash:b709923c0327dae5130b8f0c42a5757727f97914 files touched by this commit
Wen Heping (wen) search for other commits by this committer
security/vuxml: Document typo3 multiple vulnerabilities
1.1_6
14 Dec 2022 10:13:11
commit hash:263989dedf73db3bc4ccf4af8f8aa7c6c71943f7commit hash:263989dedf73db3bc4ccf4af8f8aa7c6c71943f7commit hash:263989dedf73db3bc4ccf4af8f8aa7c6c71943f7commit hash:263989dedf73db3bc4ccf4af8f8aa7c6c71943f7 files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add www/*chromium < 108.0.5359.124

Obtained
from:	https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop_13.html
1.1_6
14 Dec 2022 01:32:19
commit hash:a0370335b4aeab6fccf2fbedbb108c9ce487021fcommit hash:a0370335b4aeab6fccf2fbedbb108c9ce487021fcommit hash:a0370335b4aeab6fccf2fbedbb108c9ce487021fcommit hash:a0370335b4aeab6fccf2fbedbb108c9ce487021f files touched by this commit
Yasuhiro Kimura (yasu) search for other commits by this committer
security/vuxml: Document multiple vulnerabilities in cURL.
1.1_6
13 Dec 2022 18:51:16
commit hash:89a07f2c7f41831125e917875e7d07680e98c8d2commit hash:89a07f2c7f41831125e917875e7d07680e98c8d2commit hash:89a07f2c7f41831125e917875e7d07680e98c8d2commit hash:89a07f2c7f41831125e917875e7d07680e98c8d2 files touched by this commit
Florian Smeets (flo) search for other commits by this committer
security/vuxml: Document vulnerabilities in phpmyfaq
1.1_6
10 Dec 2022 18:42:39
commit hash:3cc16f0a48dae4f7ef613d0ad078507bb956aea5commit hash:3cc16f0a48dae4f7ef613d0ad078507bb956aea5commit hash:3cc16f0a48dae4f7ef613d0ad078507bb956aea5commit hash:3cc16f0a48dae4f7ef613d0ad078507bb956aea5 files touched by this commit
Thomas Zander (riggs) search for other commits by this committer
security/vuxml: Document vulnerabilities in net/traefik
1.1_6
10 Dec 2022 18:42:38
commit hash:b04156cec9c2e1e032b4c23dfc5a7a40c2c381cfcommit hash:b04156cec9c2e1e032b4c23dfc5a7a40c2c381cfcommit hash:b04156cec9c2e1e032b4c23dfc5a7a40c2c381cfcommit hash:b04156cec9c2e1e032b4c23dfc5a7a40c2c381cf files touched by this commit
Thomas Zander (riggs) search for other commits by this committer
security/vuxml: Make `make validate` pass again
1.1_6
10 Dec 2022 14:07:46
commit hash:072998df6d4408d7bc6104d431205c9b3c385fc4commit hash:072998df6d4408d7bc6104d431205c9b3c385fc4commit hash:072998df6d4408d7bc6104d431205c9b3c385fc4commit hash:072998df6d4408d7bc6104d431205c9b3c385fc4 files touched by this commit
Koichiro Iwao (meta) search for other commits by this committer
security/vuxml: Document multiple xrdp vulnerabilities

Obrained from:	https://github.com/neutrinolabs/xrdp/releases/tag/v0.9.21
1.1_6
08 Dec 2022 15:02:31
commit hash:6e2609a1b509084ee19fd9a58048eabd2ab705d4commit hash:6e2609a1b509084ee19fd9a58048eabd2ab705d4commit hash:6e2609a1b509084ee19fd9a58048eabd2ab705d4commit hash:6e2609a1b509084ee19fd9a58048eabd2ab705d4 files touched by this commit
Wen Heping (wen) search for other commits by this committer
security/vuxml: Document python3[7-9] multiple vulnerabilities
1.1_6
07 Dec 2022 14:54:30
commit hash:d3fa0778aa2b7be154a88533a181c2efce5208efcommit hash:d3fa0778aa2b7be154a88533a181c2efce5208efcommit hash:d3fa0778aa2b7be154a88533a181c2efce5208efcommit hash:d3fa0778aa2b7be154a88533a181c2efce5208ef files touched by this commit
Wen Heping (wen) search for other commits by this committer
security/vuxml: Document python310 multiple vulnerabilities
1.1_6
07 Dec 2022 14:25:15
commit hash:8626b3d3114fd21d4c1153ec9cb161dfd2d5fee4commit hash:8626b3d3114fd21d4c1153ec9cb161dfd2d5fee4commit hash:8626b3d3114fd21d4c1153ec9cb161dfd2d5fee4commit hash:8626b3d3114fd21d4c1153ec9cb161dfd2d5fee4 files touched by this commit
Wen Heping (wen) search for other commits by this committer
security/vuxml: Document python-3.11 vulnerabilities
1.1_6
06 Dec 2022 21:14:44
commit hash:e239a8a61970e0885ae60d32e5654bd452bf8829commit hash:e239a8a61970e0885ae60d32e5654bd452bf8829commit hash:e239a8a61970e0885ae60d32e5654bd452bf8829commit hash:e239a8a61970e0885ae60d32e5654bd452bf8829 files touched by this commit
Dmitri Goutnik (dmgk) search for other commits by this committer
security/vuxml: Document Go vulnerabilities
1.1_6
06 Dec 2022 15:13:19
commit hash:c5d26e80ad7175114c1546528162fd13f0bc4682commit hash:c5d26e80ad7175114c1546528162fd13f0bc4682commit hash:c5d26e80ad7175114c1546528162fd13f0bc4682commit hash:c5d26e80ad7175114c1546528162fd13f0bc4682 files touched by this commit
Yasuhiro Kimura (yasu) search for other commits by this committer
security/vuxml: Adjust range of 84ab03b6-6c20-11ed-b519-080027f5fec9

Vulnerability of Ruby 3.2 is fixed with 3.2.0-rc1.
1.1_6
03 Dec 2022 11:50:10
commit hash:7dfbc8afcd3a76a1222900bd17703ddfef3d4133commit hash:7dfbc8afcd3a76a1222900bd17703ddfef3d4133commit hash:7dfbc8afcd3a76a1222900bd17703ddfef3d4133commit hash:7dfbc8afcd3a76a1222900bd17703ddfef3d4133 files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add www/*chromium < 108.0.5359.94

Obtained
from:	https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop.html
1.1_6
01 Dec 2022 14:03:36
commit hash:bfee83e3a0be489b8e54d647ca4d1add4cf5c9becommit hash:bfee83e3a0be489b8e54d647ca4d1add4cf5c9becommit hash:bfee83e3a0be489b8e54d647ca4d1add4cf5c9becommit hash:bfee83e3a0be489b8e54d647ca4d1add4cf5c9be files touched by this commit
Rodrigo Osorio (rodrigo) search for other commits by this committer
security/vuxml: Record rpm4 vulnerability.

Add multiple CVE fixed in latest rpm4 version.
PR:		267291
1.1_6
01 Dec 2022 11:28:32
commit hash:f5c4812fa522a84ac4a8ee11ae012024f7f09351commit hash:f5c4812fa522a84ac4a8ee11ae012024f7f09351commit hash:f5c4812fa522a84ac4a8ee11ae012024f7f09351commit hash:f5c4812fa522a84ac4a8ee11ae012024f7f09351 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: Record grafana9 vulnerability.

Add privilege escalation for CVE-2022-31097.
PR:	268078
1.1_6
01 Dec 2022 05:18:14
commit hash:ad36b6eecdd825e747ff9db64912f6a502838475commit hash:ad36b6eecdd825e747ff9db64912f6a502838475commit hash:ad36b6eecdd825e747ff9db64912f6a502838475commit hash:ad36b6eecdd825e747ff9db64912f6a502838475 files touched by this commit
Matthias Fechner (mfechner) search for other commits by this committer
security/vuxml: document gitlab vulnerabilities
1.1_6
30 Nov 2022 12:14:44
commit hash:20320b878797d2ae1f827ac818cc31c29fbbca0bcommit hash:20320b878797d2ae1f827ac818cc31c29fbbca0bcommit hash:20320b878797d2ae1f827ac818cc31c29fbbca0bcommit hash:20320b878797d2ae1f827ac818cc31c29fbbca0b files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add www/chromium < 108.0.5359.71

Obtained
from:	https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desktop_29.html
1.1_6
25 Nov 2022 10:16:29
commit hash:671836e7860a6fad054f5b2938184128b7a2d10fcommit hash:671836e7860a6fad054f5b2938184128b7a2d10fcommit hash:671836e7860a6fad054f5b2938184128b7a2d10fcommit hash:671836e7860a6fad054f5b2938184128b7a2d10f files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add www/chromium < 107.0.5304.121

Obtained
from:	https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desktop_24.html
1.1_6
25 Nov 2022 01:57:40
commit hash:1cd4868d3ca5aa065425d6926064040e3e3fc1f3commit hash:1cd4868d3ca5aa065425d6926064040e3e3fc1f3commit hash:1cd4868d3ca5aa065425d6926064040e3e3fc1f3commit hash:1cd4868d3ca5aa065425d6926064040e3e3fc1f3 files touched by this commit
Yasuhiro Kimura (yasu) search for other commits by this committer
security/vuxml: Document HTTP response splitting vulnerability in rubygem-cgi
1.1_6
24 Nov 2022 18:09:45
commit hash:9fd803845f22794afaf041daef820f9535907223commit hash:9fd803845f22794afaf041daef820f9535907223commit hash:9fd803845f22794afaf041daef820f9535907223commit hash:9fd803845f22794afaf041daef820f9535907223 files touched by this commit
Craig Leres (leres) search for other commits by this committer
security/vuxml: Mark zeek < 5.0.4 as vulnerable as per:

    https://github.com/zeek/zeek/releases/tag/v5.0.4

This release fixes the following potential DoS vulnerabilities:

 - A specially-crafted series of HTTP 0.9 packets can cause Zeek
   to spend large amounts of time processing the packets.

 - A specially-crafted FTP packet can cause Zeek to spend large
   amounts of time processing the command.

 - A specially-crafted IPv6 packet can cause Zeek to overflow memory
   and potentially crash.

Reported by:	Tim Wojtulewicz
1.1_6
24 Nov 2022 16:14:42
commit hash:119b6f865b2c45ab1ba927e62bf41e122fb4ea08commit hash:119b6f865b2c45ab1ba927e62bf41e122fb4ea08commit hash:119b6f865b2c45ab1ba927e62bf41e122fb4ea08commit hash:119b6f865b2c45ab1ba927e62bf41e122fb4ea08 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: Add multiple CVEs for advancecomp

PR:	267937
1.1_6
22 Nov 2022 03:53:57
commit hash:2ea3262561cec74e22c5daf68ed7298eb021211ccommit hash:2ea3262561cec74e22c5daf68ed7298eb021211ccommit hash:2ea3262561cec74e22c5daf68ed7298eb021211ccommit hash:2ea3262561cec74e22c5daf68ed7298eb021211c files touched by this commit
Ashish SHUKLA (ashish) search for other commits by this committer
security/vuxml: Document vulnerability for security/tailscale
1.1_6
18 Nov 2022 21:57:50
commit hash:c42efc2b00b09f75badbd82788ed8c33157470b8commit hash:c42efc2b00b09f75badbd82788ed8c33157470b8commit hash:c42efc2b00b09f75badbd82788ed8c33157470b8commit hash:c42efc2b00b09f75badbd82788ed8c33157470b8 files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
security/vuxml: Document Apache Tomcat vulnerability

 * CVE-2022-42252 Apache Tomcat - Request Smuggling

PR:		266984
1.1_6
17 Nov 2022 19:07:10
commit hash:24a23cdf4db7967af0331fef63df5ced150bc57ccommit hash:24a23cdf4db7967af0331fef63df5ced150bc57ccommit hash:24a23cdf4db7967af0331fef63df5ced150bc57ccommit hash:24a23cdf4db7967af0331fef63df5ced150bc57c files touched by this commit
Cy Schubert (cy) search for other commits by this committer
security/vuxml: Add the krb5 1.19 vulnerable range
1.1_6
15 Nov 2022 19:27:34
commit hash:87748de634d7bee7e7fe431254f26d58e86f72b2commit hash:87748de634d7bee7e7fe431254f26d58e86f72b2commit hash:87748de634d7bee7e7fe431254f26d58e86f72b2commit hash:87748de634d7bee7e7fe431254f26d58e86f72b2 files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: re-organize port

- move vuln-YYYY.xml files into vuln/ as just YYYY.xml
- this prevents problems with the new check_files hook when 2023 arrives.
1.1_5
15 Nov 2022 18:27:45
commit hash:029d1a506815ac330f7f934106d4bb04d7d35e53commit hash:029d1a506815ac330f7f934106d4bb04d7d35e53commit hash:029d1a506815ac330f7f934106d4bb04d7d35e53commit hash:029d1a506815ac330f7f934106d4bb04d7d35e53 files touched by this commit
Cy Schubert (cy) search for other commits by this committer
security/vuxml: Document CVE-2022-42898

Document MIT krb5 Security Advisory 2022-001: integer overflow
vulnerabilities in PAC parsing
1.1_5
13 Nov 2022 00:18:39
commit hash:69889d2f8d57226190eebde1f7391bcd1478b760commit hash:69889d2f8d57226190eebde1f7391bcd1478b760commit hash:69889d2f8d57226190eebde1f7391bcd1478b760commit hash:69889d2f8d57226190eebde1f7391bcd1478b760 files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
Author: Boris Korzun
security/vuxml: Document Grafana multiple vulnerabilities

* CVE-2022-31123 - Plugin signature bypass
* CVE-2022-31130 - Data source and plugin proxy endpoints leaking
  authentication tokens to some destination plugins
* CVE-2022-39201 - Data source and plugin proxy endpoints leaking
  authentication tokens to some destination plugins
* CVE-2022-39229 - Improper authentication
* CVE-2022-39306 - Privilege escalation
* CVE-2022-39307 - Username enumeration
* CVE-2022-39328 - Privilege escalation (Critical)

https://grafana.com/blog/2022/10/12/grafana-security-releases-new-versions-with-fixes-for-cve-2022-39229-cve-2022-39201-cve-2022-31130-cve-2022-31123/
https://grafana.com/blog/2022/11/08/security-release-new-versions-of-grafana-with-critical-and-moderate-fixes-for-cve-2022-39328-cve-2022-39307-and-cve-2022-39306/

PR:		267728
1.1_5
12 Nov 2022 13:43:56
commit hash:c1b89a9971573c47a5a001488001ce928cd9340acommit hash:c1b89a9971573c47a5a001488001ce928cd9340acommit hash:c1b89a9971573c47a5a001488001ce928cd9340acommit hash:c1b89a9971573c47a5a001488001ce928cd9340a files touched by this commit
Danilo G. Baio (dbaio) search for other commits by this committer
security/vuxml: Add devel/ipython issue

PR:		265082
1.1_5
11 Nov 2022 15:26:34
commit hash:85bbe1415abbb21802372d9793e025823b11bc0fcommit hash:85bbe1415abbb21802372d9793e025823b11bc0fcommit hash:85bbe1415abbb21802372d9793e025823b11bc0fcommit hash:85bbe1415abbb21802372d9793e025823b11bc0f files touched by this commit
Florian Smeets (flo) search for other commits by this committer
security/vuxml: Document phpMyFAQ vulnerabilities
1.1_5
10 Nov 2022 00:07:24
commit hash:124a5223606f87270427c51b20a1b5f03aa16c06commit hash:124a5223606f87270427c51b20a1b5f03aa16c06commit hash:124a5223606f87270427c51b20a1b5f03aa16c06commit hash:124a5223606f87270427c51b20a1b5f03aa16c06 files touched by this commit
Danilo G. Baio (dbaio) search for other commits by this committer
security/vuxml: Add varnish cache security issues
1.1_5
09 Nov 2022 10:55:59
commit hash:41722a208390d3f4ac6b1367d2b17a2f8cee20f4commit hash:41722a208390d3f4ac6b1367d2b17a2f8cee20f4commit hash:41722a208390d3f4ac6b1367d2b17a2f8cee20f4commit hash:41722a208390d3f4ac6b1367d2b17a2f8cee20f4 files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add www/chromium < 107.0.5304.110

Obtained
from:	https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desktop.html
1.1_5
09 Nov 2022 01:08:16
commit hash:50d9f85ce609b05ce87cd233b9b355659698f435commit hash:50d9f85ce609b05ce87cd233b9b355659698f435commit hash:50d9f85ce609b05ce87cd233b9b355659698f435commit hash:50d9f85ce609b05ce87cd233b9b355659698f435 files touched by this commit
Craig Leres (leres) search for other commits by this committer
security/vuxml: Mark zeek < 5.0.3 as vulnerable as per:

    https://github.com/zeek/zeek/releases/tag/v5.0.3

This release fixes the following potential DoS vulnerabilities:

 - Fix an issue where a specially-crafted FTP packet can cause Zeek
   to spend large amounts of time attempting to search for valid
   commands in the data stream.

 - Fix a possible overflow in the Zeek dictionary code that may
   lead to a memory leak.

 - Fix an issue where a specially-crafted packet can cause Zeek to
   spend large amounts of time reporting analyzer violations.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
1.1_5
08 Nov 2022 16:30:57
commit hash:bbe3b93c5dcb484cef6ecf4fdabfeff7e64d3737commit hash:bbe3b93c5dcb484cef6ecf4fdabfeff7e64d3737commit hash:bbe3b93c5dcb484cef6ecf4fdabfeff7e64d3737commit hash:bbe3b93c5dcb484cef6ecf4fdabfeff7e64d3737 files touched by this commit
Fernando Apesteguía (fernape) search for other commits by this committer
security/vuxml: register darkhttpd DoS vulnerability

PR:		267507
Reported by:	Henrich Hartzer <henrichhartzer@tuta.io>
Security:	CVE-2020-25691
1.1_5
08 Nov 2022 00:18:23
commit hash:3cd785707f9dc7b53396ecfd729d1fba07c3ca04commit hash:3cd785707f9dc7b53396ecfd729d1fba07c3ca04commit hash:3cd785707f9dc7b53396ecfd729d1fba07c3ca04commit hash:3cd785707f9dc7b53396ecfd729d1fba07c3ca04 files touched by this commit
Cy Schubert (cy) search for other commits by this committer
security/vuxml: Document sudo CVE-2022-43995

Document a potential out-of-bounds write for passwords smaller than
eight bytes when crypt() is used.

PR:		267617
Security:	CVE-2022-43995
1.1_5
05 Nov 2022 06:05:05
commit hash:f6dcf158f22be6b25344b4aceb4ec7371fe423a8commit hash:f6dcf158f22be6b25344b4aceb4ec7371fe423a8commit hash:f6dcf158f22be6b25344b4aceb4ec7371fe423a8commit hash:f6dcf158f22be6b25344b4aceb4ec7371fe423a8 files touched by this commit
Matthias Fechner (mfechner) search for other commits by this committer
security/vuxml: document gitlab vulnerabilities
1.1_5
04 Nov 2022 08:51:02
commit hash:faf68e01e01301c4882ae757f5f0a3f2ed88887bcommit hash:faf68e01e01301c4882ae757f5f0a3f2ed88887bcommit hash:faf68e01e01301c4882ae757f5f0a3f2ed88887bcommit hash:faf68e01e01301c4882ae757f5f0a3f2ed88887b files touched by this commit
Emmanuel Vadot (manu) search for other commits by this committer
security/vuxml: Document pixman heap overflow

Document CVE-2022-44638

Sponsored by:   Beckhoff Automation GmbH & Co. KG
1.1_5
02 Nov 2022 17:29:02
commit hash:2c5d44267619f68a41e8adb3477b719ac332ed69commit hash:2c5d44267619f68a41e8adb3477b719ac332ed69commit hash:2c5d44267619f68a41e8adb3477b719ac332ed69commit hash:2c5d44267619f68a41e8adb3477b719ac332ed69 files touched by this commit
Dmitri Goutnik (dmgk) search for other commits by this committer
security/vuxml: Document Go vulnerability
1.1_5
01 Nov 2022 17:22:42
commit hash:e67d42a3461b0bd42efe02259c52e98cfa27f051commit hash:e67d42a3461b0bd42efe02259c52e98cfa27f051commit hash:e67d42a3461b0bd42efe02259c52e98cfa27f051commit hash:e67d42a3461b0bd42efe02259c52e98cfa27f051 files touched by this commit
Bernard Spil (brnrd) search for other commits by this committer
security/vuxml: Document OpenSSL 3.0 vulnerabilities
1.1_5
30 Oct 2022 18:14:10
commit hash:4e0affa3e087b6f84a1981808eab9f25b285e29dcommit hash:4e0affa3e087b6f84a1981808eab9f25b285e29dcommit hash:4e0affa3e087b6f84a1981808eab9f25b285e29dcommit hash:4e0affa3e087b6f84a1981808eab9f25b285e29d files touched by this commit
Bernard Spil (brnrd) search for other commits by this committer
security/vuxml: Document Q4 MySQL vulnerabilities
1.1_5
28 Oct 2022 18:02:52
commit hash:e77b0ca81e3a12f39b02434efc8d7194232e8b30commit hash:e77b0ca81e3a12f39b02434efc8d7194232e8b30commit hash:e77b0ca81e3a12f39b02434efc8d7194232e8b30commit hash:e77b0ca81e3a12f39b02434efc8d7194232e8b30 files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: add www/chromium < 107.0.5304.87

Obtained
from:	https://chromereleases.googleblog.com/2022/10/stable-channel-update-for-desktop_27.html
1.1_5
25 Oct 2022 23:54:44
commit hash:ce6714de120d2f91bf94f95c67866851d7768f34commit hash:ce6714de120d2f91bf94f95c67866851d7768f34commit hash:ce6714de120d2f91bf94f95c67866851d7768f34commit hash:ce6714de120d2f91bf94f95c67866851d7768f34 files touched by this commit
Timur I. Bakeyev (timur) search for other commits by this committer
security/vuxml: add entry for CVE-2022-3437

There is a limited write heap buffer overflow in the GSSAPI unwrap_des()
and unwrap_des3() routines of Heimdal (included in Samba).
1.1_5
25 Oct 2022 20:05:50
commit hash:80f064bd900db48898935bf7decfa6fec2267865commit hash:80f064bd900db48898935bf7decfa6fec2267865commit hash:80f064bd900db48898935bf7decfa6fec2267865commit hash:80f064bd900db48898935bf7decfa6fec2267865 files touched by this commit
Rene Ladan (rene) search for other commits by this committer
security/vuxml: Add www/*chromium < 107.0.5304.68

Obtained
from:	https://chromereleases.googleblog.com/2022/10/stable-channel-update-for-desktop_25.html
1.1_5
23 Oct 2022 13:35:49
commit hash:81deb687c5b4acca06a75b32364dee26b6870afdcommit hash:81deb687c5b4acca06a75b32364dee26b6870afdcommit hash:81deb687c5b4acca06a75b32364dee26b6870afdcommit hash:81deb687c5b4acca06a75b32364dee26b6870afd files touched by this commit
Thomas Zander (riggs) search for other commits by this committer
Author: Pau Amma
security/vuxml: Document vulnerability in libudisks

PR:		267281
Reviewed by:	riggs
1.1_5
21 Oct 2022 10:14:20
commit hash:aa9e5247ae5213b9c5c533c186f0f483cc70b388commit hash:aa9e5247ae5213b9c5c533c186f0f483cc70b388commit hash:aa9e5247ae5213b9c5c533c186f0f483cc70b388commit hash:aa9e5247ae5213b9c5c533c186f0f483cc70b388 files touched by this commit
Florian Smeets (flo) search for other commits by this committer
security/vuxml: Document vulnerabilities in phpmyfaq
1.1_5
20 Oct 2022 11:00:58
commit hash:cbbb62dd79a34c00f7c9c3dc367ee8be8fd3600ccommit hash:cbbb62dd79a34c00f7c9c3dc367ee8be8fd3600ccommit hash:cbbb62dd79a34c00f7c9c3dc367ee8be8fd3600ccommit hash:cbbb62dd79a34c00f7c9c3dc367ee8be8fd3600c files touched by this commit
Wen Heping (wen) search for other commits by this committer
security/vuxml: Document Python multiple vulnerabilities
1.1_5
19 Oct 2022 13:53:38
commit hash:ade182e4d933366fc691757539f6fef2b7f1830fcommit hash:ade182e4d933366fc691757539f6fef2b7f1830fcommit hash:ade182e4d933366fc691757539f6fef2b7f1830fcommit hash:ade182e4d933366fc691757539f6fef2b7f1830f files touched by this commit
Sergey A. Osokin (osa) search for other commits by this committer
security/vuxml: document nginx vulnerabilities

Document CVE-2022-41741, CVE-2022-41742
1.1_5
18 Oct 2022 18:13:21
commit hash:6d220756feb8319009aaf7277bd8f2aad4e47414commit hash:6d220756feb8319009aaf7277bd8f2aad4e47414commit hash:6d220756feb8319009aaf7277bd8f2aad4e47414commit hash:6d220756feb8319009aaf7277bd8f2aad4e47414 files touched by this commit
Renato Botelho (garga) search for other commits by this committer
security/vuxml: Document git vulnerabilities

Document CVE-2022-39253 and CVE-2022-39260

Sponsored by:	Rubicon Communications, LLC ("Netgate")
1.1_5
18 Oct 2022 07:53:34
commit hash:8fb3409beca16aa09f698610b067bb9f921fd922commit hash:8fb3409beca16aa09f698610b067bb9f921fd922commit hash:8fb3409beca16aa09f698610b067bb9f921fd922commit hash:8fb3409beca16aa09f698610b067bb9f921fd922 files touched by this commit
Bernard Spil (brnrd) search for other commits by this committer
security/vuxml: Document OpenSSL 3.0 vuln
1.1_5
15 Oct 2022 22:22:08
commit hash:40a910aab5e27956db396ee838901edd38ac3db6commit hash:40a910aab5e27956db396ee838901edd38ac3db6commit hash:40a910aab5e27956db396ee838901edd38ac3db6commit hash:40a910aab5e27956db396ee838901edd38ac3db6 files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
Author: Stefan Bethke
security/vuxml: Document Gitea vulnerabilities

PR:		267106
1.1_5
12 Oct 2022 20:01:26
commit hash:d3d47a3d66c0ce487f2f0d67dba01f2e6c8ab510commit hash:d3d47a3d66c0ce487f2f0d67dba01f2e6c8ab510commit hash:d3d47a3d66c0ce487f2f0d67dba01f2e6c8ab510commit hash:d3d47a3d66c0ce487f2f0d67dba01f2e6c8ab510 files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
security/vuxml: Format 0d1d2c1 text
1.1_5
12 Oct 2022 19:37:18
commit hash:fc3a8313c1a394013e7007103dfede76875b404acommit hash:fc3a8313c1a394013e7007103dfede76875b404acommit hash:fc3a8313c1a394013e7007103dfede76875b404acommit hash:fc3a8313c1a394013e7007103dfede76875b404a files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
security/vuxml: Fix malformed CVE

Fix malformed cvename entry by removing this tag since there is no CVE
for this security issue committed in 0d1d2c1
1.1_5
12 Oct 2022 12:33:28
commit hash:0d1d2c1338bcd009fde90a16c72f7971112d8610commit hash:0d1d2c1338bcd009fde90a16c72f7971112d8610commit hash:0d1d2c1338bcd009fde90a16c72f7971112d8610commit hash:0d1d2c1338bcd009fde90a16c72f7971112d8610 files touched by this commit
Nuno Teixeira (eduardo) search for other commits by this committer
security/vuxml: Add mail/roundcube-thunderbird_labels vulnerabilities

PR:		266986

Number of commits found: 6825 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]