Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
1.1_4 18 Aug 2019 17:04:34 |
pi |
security/vuxml: add vuxml entry for gitea
PR: 239930
Submitted by: stb@lassitu.de |
1.1_4 18 Aug 2019 15:21:51 |
zeising |
Document x11/xdm vulnerability CVE-2013-2179 |
1.1_4 18 Aug 2019 09:28:33 |
mfechner |
Document libgit2 vulnerabilities. |
1.1_4 17 Aug 2019 11:07:33 |
joneum |
Add www/apache24
Sponsored by: Netzkommune GmbH |
1.1_4 16 Aug 2019 18:11:39 |
sunpoet |
Document nghttp2 vulnerability |
1.1_4 16 Aug 2019 12:09:29 |
tijl |
Document CUPS CVE-2019-8675 and CVE-2019-8696.
Security: https://github.com/apple/cups/releases/tag/v2.2.12 |
1.1_4 15 Aug 2019 21:22:36 |
kai |
security/vuxml: Update entry for security/doas
* Add a reference to OpenBSD's tech mailinglist that explains the issues
with doas(1)'s environmetal security in further detail.
* Clarify the origins of the reporting sources and fix a grammar nit.
PR: 239629
Reported by: Sander Bos |
1.1_4 15 Aug 2019 16:19:36 |
riggs |
Document http/2 denial of service in net/traefik before 1.7.14 |
1.1_4 14 Aug 2019 12:24:45 |
joneum |
Edit entry for www/nginx
Sponsored by: Netzkommune GmbH |
1.1_4 14 Aug 2019 07:22:39 |
joneum |
Add entry for www/nginx and www/nginx-devel
Sponsored by: Netzkommune GmbH |
1.1_4 13 Aug 2019 20:51:40 |
sunpoet |
Document rubygem-nokogiri vulnerability |
1.1_4 13 Aug 2019 05:02:03 |
mfechner |
Document www/gitlab-ce vulnerabilities. |
1.1_4 09 Aug 2019 21:21:58 |
adridg |
Add vuxml for KDE Frameworks CVE |
1.1_4 09 Aug 2019 21:13:56 |
kai |
security/vuxml: Document security/doas issues
PR: 239629 |
1.1_4 09 Aug 2019 16:47:33 |
leres |
security/vuxml: Mark bro < 2.6.3 as vulnerable as per:
https://raw.githubusercontent.com/zeek/zeek/1d874e5548a58b3b8fd2a342fe4aa0944e779809/NEWS
The issues are a null pointer dereference in the RPC analysis code
and a signed integer overflow in BinPAC-generated parser code.
Approved by: matthew (mentor, implicit) |
1.1_4 08 Aug 2019 15:29:39 |
girgen |
Add security information for PostgreSQL |
1.1_4 03 Aug 2019 20:57:32 |
sunpoet |
Document Django vulnerability |
1.1_4 03 Aug 2019 19:24:49 |
tijl |
Add linux-c7-curl package to curl CVE-2018-14618 entry.
Security: https://access.redhat.com/errata/RHSA-2019:1880
Security: CVE-2018-14618 |
1.1_4 31 Jul 2019 17:30:17 |
kai |
security/vuxml: Document www/gitea issues
PR: 239562
Submitted by: stb@lassitu.de (maintainer) |
1.1_4 30 Jul 2019 20:53:42 |
feld |
Document FreeBSD-SA-19:17.fd |
1.1_4 30 Jul 2019 20:53:09 |
feld |
Document FreeBSD-SA-19:16.bhyve |
1.1_4 30 Jul 2019 20:52:20 |
feld |
Document FreeBSD-SA-19:15.mqueuefs |
1.1_4 30 Jul 2019 20:41:56 |
feld |
Document FreeBSD-SA-19:14.freebsd32 |
1.1_4 30 Jul 2019 20:41:27 |
feld |
Document FreeBSD-SA-19:13.pts |
1.1_4 30 Jul 2019 20:40:39 |
feld |
Document FreeBSD-SA-19:12.telnet |
1.1_4 30 Jul 2019 20:39:58 |
feld |
Document FreeBSD-SA-19:11.cd_ioctl |
1.1_4 30 Jul 2019 20:38:55 |
feld |
Document FreeBSD-SA-19:10.ufs |
1.1_4 30 Jul 2019 20:38:27 |
feld |
Document FreeBSD-SA-19:09.iconv |
1.1_4 30 Jul 2019 20:37:36 |
feld |
Document FreeBSD-SA-19:08.rack |
1.1_4 30 Jul 2019 20:36:46 |
feld |
Document FreeBSD-SA-19:07.mds |
1.1_4 30 Jul 2019 20:35:37 |
feld |
Document FreeBSD-SA-19:06.pf |
1.1_4 30 Jul 2019 20:33:50 |
feld |
Document FreeBSD-SA-19:05.pf |
1.1_4 30 Jul 2019 20:32:59 |
feld |
Add freebsdsa metadata for FreeBSD-SA-19:04.ntp |
1.1_4 30 Jul 2019 20:30:25 |
feld |
Add freebsdsa metadata to the entry detailing FreeBSD-SA-19:03.wpa |
1.1_4 30 Jul 2019 15:11:58 |
mfechner |
Document www/gitlab-ce vulnerabilities. |
1.1_4 29 Jul 2019 21:41:04 |
amdmi3 |
Add more CVE references to sdl2_image entry |
1.1_4 28 Jul 2019 17:51:13 |
kai |
security/vuxml: Document net-im/py-matrix-synapse issues
PR: 239013
Submitted by: Sascha Biberhofer <ports@skyforge.at> (maintainer) |
1.1_4 26 Jul 2019 11:04:27 |
tobik |
Fix version range of exim entry
It currently does not account for PORTREVISION, i.e., it excludes
4.92_1, 4.92_2, 4.92_3, 4.92_4 which are affected by CVE-2019-13917
too. |
1.1_4 26 Jul 2019 08:52:49 |
vsevolod |
Document exim vulnerability CVE-2019-13917 |
1.1_4 23 Jul 2019 01:54:53 |
jbeich |
security/vuxml: mark seamonkey 2.49.5 as vulnerable |
1.1_4 22 Jul 2019 14:33:45 |
brnrd |
security/vuxml: Add vulns from Oracle 2019-07 Critical Patch Update |
1.1_4 21 Jul 2019 03:55:06 |
acm |
- Add drupal8 vulnerability entry
- Modify 9b8a52fc-89c1-11e9-9ba0-4c72b94353b5 entry. Drupal8 was affected too |
1.1_4 20 Jul 2019 16:13:26 |
mandree |
Document PuTTY < 0.72 vulnerabilities. |
1.1_4 17 Jul 2019 14:54:53 |
lwhsu |
Document Jenkins Security Advisory 2019-07-17
Sponsored by: The FreeBSD Foundation |
1.1_4 16 Jul 2019 16:12:27 |
swills |
document libxslt issue
PR: 238049
Submitted by: egypcio |
1.1_4 12 Jul 2019 06:43:01 |
madpilot |
Document asterisk vulnerabilities. |
1.1_4 12 Jul 2019 00:36:27 |
wen |
- Document python37 multiple vulnerabilities |
1.1_4 10 Jul 2019 01:16:04 |
jbeich |
security/vuxml: mark firefox < 68 as vulnerable |
1.1_4 09 Jul 2019 15:55:00 |
adamw |
Add vuxml entry for gnupg < 2.2.17 |
1.1_4 08 Jul 2019 23:54:58 |
wen |
- Document python 3.6 multiple vulnerabilities
PR: 238952
Submitted by: wenheping2000@hotmail.com(myself)
Reviewed by: koobs@ |
1.1_4 07 Jul 2019 17:05:28 |
tijl |
Add Linux packages to the latest libssh2 entry. Also link to all CVEs. |
1.1_4 06 Jul 2019 06:05:46 |
tobik |
Document webkit2-gtk3 vulnerabilities
PR: 239003 |
1.1_4 05 Jul 2019 00:44:49 |
wen |
- Document mediawiki multiple vulnerabilities |
1.1_4 03 Jul 2019 18:52:14 |
sunpoet |
Document ettercap vulnerability |
1.1_4 03 Jul 2019 16:01:04 |
mfechner |
Documented several gitlab security vulnerabilities. |
1.1_4 03 Jul 2019 15:20:21 |
amdmi3 |
Document SDL2_image vulnerabilities |
1.1_4 01 Jul 2019 20:11:52 |
kai |
security/vuxml: Document irc/irssi issue
PR: 238892
Security: CVE-2019-13045 |
1.1_4 01 Jul 2019 14:39:36 |
wen |
- Document Django vulnerabilities.
PR: 238911, 238910
Submitted by: koobs@ |
1.1_4 30 Jun 2019 21:47:17 |
swills |
Document minor bzip2 issues
PR: 238854 |
1.1_4 30 Jun 2019 20:39:16 |
swills |
Document powerdns issue
PR: 239705
Submitted by: Ralf van der Enden <tremere@cainites.net> |
1.1_4 28 Jun 2019 21:17:39 |
sunpoet |
Document typo3 vulnerability
PR: 238862, 238863 |
1.1_4 27 Jun 2019 21:05:55 |
girgen |
Add vuxml entry for postgresql lt 10.9 and lt 11.4 |
1.1_4 22 Jun 2019 12:47:27 |
dbaio |
security/vuxml: Document irc/znc issue
Security: CVE-2019-12816 |
1.1_4 21 Jun 2019 11:30:19 |
cmt |
document recent Mozilla advisories
MFSA2019-17, MFSA2019-19, MFSA2019-20 |
1.1_4 20 Jun 2019 15:54:14 |
riggs |
Document two vulnerabilities in vlc < 3.0.7.1, potential remote exploit |
1.1_4 20 Jun 2019 09:11:48 |
jbeich |
security/vuxml: mark waterfox < 56.2.11 as vulnerable
https://github.com/MrAlex94/Waterfox/commit/27ce846f9d46 |
1.1_4 19 Jun 2019 05:32:28 |
jbeich |
security/vuxml: mark firefox < 67.0.3 as vulnerable |
1.1_4 17 Jun 2019 05:24:51 |
tobik |
Fix version range of recent ImageMagick6 entry
graphics/ImageMagick6 has PORTEPOCH=1 (ImageMagick7 does not) but
it is not included in vuln.xml. The recent vulnerabilities are
never raised by pkg audit as a result and users are left uninformed
about them. |
1.1_4 16 Jun 2019 17:07:14 |
marcus |
Add an entry for netatalk3.
Document the netatalk3 remote code execution vulnerability fixed in 3.1.12.
PR: 238573 |
1.1_4 16 Jun 2019 10:38:42 |
sunpoet |
Document GraphicsMagick vulnerability |
1.1_4 15 Jun 2019 14:06:58 |
rene |
security/vuxml: add entry for www/chromium < 75.0.3770.90 |
1.1_4 14 Jun 2019 06:48:52 |
matthew |
Document PMASA-2019-4; CSRF vulnerability in login form |
1.1_4 13 Jun 2019 18:41:56 |
adamw |
Add entry for Vim/NeoVim arbitrary code execution |
1.1_4 12 Jun 2019 17:17:02 |
joneum |
Add entry for www/mybb
Sponsored by: Netzkommune GmbH |
1.1_4 11 Jun 2019 21:11:17 |
jkim |
Document the latest Flash Player vulnerability.
https://helpx.adobe.com/security/products/flash-player/apsb19-30.html |
1.1_4 08 Jun 2019 18:52:51 |
joneum |
Set correct Port Name for last drupal7 entry
Sponsored by: Netzkommune GmbG |
1.1_4 08 Jun 2019 14:24:15 |
gjb |
Fix vuxml build.
Sponsored by: The FreeBSD Foundation |
1.1_4 08 Jun 2019 08:23:47 |
joneum |
Add entry for drupal7
- Set correct modified Date for 183d700e-ec70-487e-a9c4-632324afa934
Sponsored by: Netzkommune GmbH |
1.1_4 06 Jun 2019 12:26:54 |
vsevolod |
Document Exim RCE CVE-2019-10149 |
1.1_4 06 Jun 2019 02:30:55 |
wen |
- Document Django vulnerabilities. |
1.1_4 05 Jun 2019 15:08:32 |
kwm |
Fix modification date, the future isn't quite here yet.
Reported by: Daniel Ebdrup |
1.1_4 04 Jun 2019 04:51:09 |
kwm |
Fix Imagemagick 6 package name. |
1.1_4 03 Jun 2019 14:44:13 |
mfechner |
Document gitlab vulnerabilities. |
1.1_4 01 Jun 2019 13:48:59 |
koobs |
security/vuxml: Add buildbot -- OAuth Authentication Vulnerability |
1.1_4 31 May 2019 19:17:59 |
leres |
security/vuxml: Mark bro < 2.6.2 as vulnerable as per:
https://raw.githubusercontent.com/zeek/zeek/bb979702cf9a2fa67b8d1a1c7f88d0b56c6af104/NEWS
The issue is unsafe integer conversions that can cause unintentional
code paths to be executed.
Reviewed by: ler (mentor)
Approved by: ler (mentor)
Security: CVE-2019-12175
Differential Revision: https://reviews.freebsd.org/D20481 |
1.1_4 30 May 2019 10:58:17 |
kwm |
Document ImageMagick issues.
PR: 238199
Reported by: Tommy P <tommyhp2@gmail.com>
Security: CVE-2019-7175, CVE-2019-7395, CVE-2019-7396, CVE-2019-7397,
CVE-2019-7398, CVE-2019-9956, CVE-2019-10131, CVE-2019-10649,
CVE-2019-10650, CVE-2019-10714, CVE-2019-11470, CVE-2019-11472,
CVE-2019-11597, CVE-2019-11598 |
1.1_4 27 May 2019 16:20:16 |
ume |
fix package name of cyrus-imapd. |
1.1_4 27 May 2019 14:26:45 |
ume |
Document cyrus-imapd buffer overrun in httpd.
Security: CVE-2019-11356 |
1.1_4 26 May 2019 18:02:35 |
sunpoet |
Remove superfluous dot |
1.1_4 26 May 2019 14:52:11 |
cs |
Clarify CVE-2019-10691 |
1.1_4 26 May 2019 13:55:39 |
cs |
Serendipity -- XSS
Security: CVE-2019-11870 |
1.1_4 26 May 2019 13:45:33 |
cs |
Add missing quote link |
1.1_4 26 May 2019 13:43:18 |
cs |
SQLite use after free
Security: CVE-2019-5018 |
1.1_4 26 May 2019 13:21:55 |
cs |
Add proper cvename reference to recent OCaml entry |
1.1_4 26 May 2019 13:17:17 |
cs |
suricata vulnerability
Security: CVE-2019-10053 |
1.1_4 25 May 2019 22:05:13 |
sunpoet |
Document curl vulnerability |
1.1_4 23 May 2019 19:43:29 |
cs |
Multiple vulnerabilities in OCaml
PR: 223039
Submitted by: Phil Pennock <freebsd@phil.spodhuis.org>
Security: CVE-2015-8869 |
1.1_4 22 May 2019 11:00:52 |
jbeich |
security/vuxml: mark firefox < 67 as vulnerable |
1.1_4 18 May 2019 01:23:59 |
timur |
Add entry about Samba4* vulnerabilities.
Security: CVE-2018-16860
CVE-2019-3880 |
1.1_4 15 May 2019 03:08:32 |
tobik |
Add recent lang/rust security advisory |