Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
1.1_4 27 Jan 2019 09:58:17 |
tcberner |
security/vuxml: Document security/botan2 vulnerability
PR: 234938
Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer) |
1.1_4 27 Jan 2019 09:19:40 |
matthew |
Document PMASA-2019-1 and PMSA-2019-2 security advisories: Arbitrary
file disclosure and SQL injection attacks. |
1.1_4 26 Jan 2019 10:54:50 |
joneum |
Add entry for www/gitea
PR: 235140
Sponsored by: Netzkommune GmbH |
1.1_4 26 Jan 2019 09:49:39 |
koobs |
security/vuxml: Add libzmq4 -- Remote Code Execution Vulnerability
PR: 230575 |
1.1_4 23 Jan 2019 16:03:33 |
zi |
- Add package name validation |
1.1_3 23 Jan 2019 15:10:38 |
zi |
Fix invalid package name in previous commit for
4af3241d-1f0c-11e9-b4bd-d43d7eed0ce2 |
1.1_3 23 Jan 2019 14:37:44 |
joneum |
Add entry for www/apache24
Sponsored by: Netzkommune GmbH |
1.1_3 23 Jan 2019 12:48:45 |
lev |
Add CVE-2018-11803 for www/mod_dav_svn. |
1.1_3 22 Jan 2019 12:32:18 |
gjb |
Attempt to fix vuxml build.
Sponsored by: The FreeBSD Foundation |
1.1_3 22 Jan 2019 10:44:39 |
koobs |
security/vuxml: Add www/py-requests: Information disclosure vulnerability |
1.1_3 20 Jan 2019 01:05:17 |
ler |
security/vuxml: Document joomla 3 vulnerabilities. |
1.1_3 19 Jan 2019 20:37:47 |
acm |
- Add drupal7 and drupal8 vulnerability entry |
1.1_3 18 Jan 2019 22:39:08 |
danilo |
Document helm security advisory |
1.1_3 17 Jan 2019 00:14:17 |
mfechner |
Documented gitlab security vulnerability. |
1.1_3 16 Jan 2019 17:43:06 |
lwhsu |
Document Jenkins Security Advisory 2019-01-16
Sponsored by: The FreeBSD Foundation |
1.1_3 15 Jan 2019 12:20:44 |
swills |
Document py-matrix-synapse issue
PR: 234828
Submitted by: Sascha Biberhofer <ports@skyforge.at> (with slight editing) |
1.1_3 10 Jan 2019 18:59:32 |
dbaio |
security/vuxml: Document irc/irssi issue
Security: CVE-2019-5882
PR: 234798 |
1.1_3 06 Jan 2019 19:30:25 |
riggs |
Document out-of-bounds vulnerability in net/uriparser < 0.9.1
Reported by: sebastian@pipping.org (via e-mail) |
1.1_3 06 Jan 2019 16:55:56 |
swills |
Document gitea issue
PR: 234659
Submitted by: stb@lassitu.de |
1.1_3 05 Jan 2019 23:00:55 |
sunpoet |
Update openjpeg status |
1.1_3 05 Jan 2019 13:20:35 |
cpm |
Document new vulnerability in www/chromium < 71.0.3578.98
Obtained
from: https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop_12.html |
1.1_3 05 Jan 2019 13:10:56 |
cpm |
Document new vulnerabilities in www/chromium < 71.0.3578.80
Obtained
from: https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html |
1.1_3 05 Jan 2019 08:09:07 |
wen |
- Documented security vulnerability of Django |
1.1_3 02 Jan 2019 09:03:39 |
mfechner |
Documented several gitlab-ce security vulnerabilities.
Approved by: mentors (implicit) |
1.1_3 26 Dec 2018 21:05:54 |
swills |
Document gitea issue |
1.1_3 26 Dec 2018 16:09:58 |
rodrigo |
Add entry for archivers/rpm4 security isssue on 4.14.2 |
1.1_3 26 Dec 2018 16:04:59 |
tijl |
Update handbrake entries now that 1.2.0 has been released.
PR: 234322
Submitted by: Nei Teng You Yi Lang <naito.yuichiro@gmail.com> (maintainer) |
1.1_3 22 Dec 2018 07:42:42 |
mfechner |
Documented security vulnerability for gitlab-ce.
Approved by: mentors (implicit) |
1.1_3 20 Dec 2018 14:50:07 |
girgen |
Add vuxml entry for shibboleth-sp |
1.1_3 20 Dec 2018 09:38:19 |
dch |
Document databases/couchdb2 and databases/couchdb vulnerability
Approved by: jrm (mentor)
Security: CVE-2018-17188
Security: see http://docs.couchdb.org/en/stable/cve/2018-17188.html
Differential Revision: https://reviews.freebsd.org/D18498 |
1.1_3 20 Dec 2018 01:15:53 |
leres |
Mark bro < 2.6.1 as vulnerable as per:
https://www.bro.org/download/NEWS.bro.html
The issue is a remote code execution vulnerability in the bundled
sqlite ("Magellan").
Reviewed by: ler (mentor)
Approved by: ler (mentor)
Differential Revision: https://reviews.freebsd.org/D18615 |
1.1_3 19 Dec 2018 21:15:26 |
feld |
Document FreeBSD-SA-18:15.bootpd |
1.1_3 15 Dec 2018 15:03:45 |
joneum |
Document wordpress issues
Sponsored by: Netzkommune GmbH |
1.1_3 14 Dec 2018 13:29:12 |
tijl |
HTML encode < and > and fix the formatting of the latest typo3 entry. |
1.1_3 14 Dec 2018 13:22:01 |
tijl |
Add Mbed TLS Security Advisory 2018-03.
Security: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2018-03
Security: CVE-2018-19608 |
1.1_3 14 Dec 2018 11:57:19 |
joneum |
Add entry for typo3-8 and typo3-9
PR: 233935 233936
Sponsored by: Netzkommune GmbH |
1.1_3 14 Dec 2018 11:20:35 |
mfechner |
Document gitlab-ce vulnerability.
Approved by: mentors (implicit) |
1.1_3 12 Dec 2018 10:24:15 |
matthew |
Revert r487286 -- PHP70 is still present in the 2018Q4 quarterly branch.
Reported by: mat |
1.1_3 12 Dec 2018 09:16:04 |
matthew |
PHP 70 was EoL'd and is no longer in the ports.
Reported by: joneum |
1.1_3 12 Dec 2018 07:18:56 |
matthew |
Document three more security advisories from phpMyAdmin |
1.1_3 11 Dec 2018 17:50:04 |
jbeich |
security/vuxml: update to 1.1_3 |
1.1_3 10 Dec 2018 14:02:36 |
feld |
Document FreeBSD-SA-18:14.bhyve |
1.1_3 10 Dec 2018 14:02:11 |
feld |
Document FreeBSD-SA-18:13.nfs |
1.1_3 10 Dec 2018 05:55:37 |
bhughes |
security/vuxml: document Node.js vulnerabilities from November 2018
https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/
Sponsored by: Miles AS |
1.1_3 09 Dec 2018 21:36:46 |
swills |
Document powerdns-recursor issue
PR: 233603
Submitted by: Ralf van der Enden <tremere@cainites.net> |
1.1_3 09 Dec 2018 01:50:25 |
swills |
Correct entry date on previous entry
Pointyhat to: swills |
1.1_3 09 Dec 2018 01:47:06 |
swills |
Document security/py-asyncssh issue |
1.1_3 06 Dec 2018 19:30:19 |
mfechner |
Document security vulnerability for gitlab-ce < 11.5.3.
Approved by: mentors (implicit) |
1.1_3 06 Dec 2018 07:51:44 |
jkim |
Document the latest Flash Player vulnerabilities.
https://helpx.adobe.com/security/products/flash-player/apsb18-42.html |
1.1_3 05 Dec 2018 09:33:15 |
lwhsu |
Document Jenkins Security Advisory 2018-12-05
Sponsored by: The FreeBSD Foundation |
1.1_3 03 Dec 2018 02:25:12 |
wen |
- Document moodle login CSRF vulnerability |
1.1_3 02 Dec 2018 15:40:31 |
sunpoet |
Document Rails vulnerability |
1.1_3 02 Dec 2018 08:39:51 |
riggs |
Document multiple vulnerabilities in net/uniparser
Reported by: sebastian@pipping.org via e-mail |
1.1_3 28 Nov 2018 21:07:31 |
tcberner |
Add info about security vulnerability in messagelib. |
1.1_3 28 Nov 2018 19:57:29 |
pi |
security/vuxml: document www/payara vulnerabilities
PR: 233573
Submitted by: Dmytro Bilokha <dmytro@posteo.net> |
1.1_3 28 Nov 2018 19:03:35 |
mfechner |
Document gitlab security vulnerabilities.
Approved by: mentors (implicit) |
1.1_3 27 Nov 2018 13:45:54 |
timur |
Add an entry about new vulnerabilities in the Samba packages.
Security: CVE-2018-14629
CVE-2018-16841
CVE-2018-16851
CVE-2018-16852
CVE-2018-16853
CVE-2018-16857
Sponsored by: my wife |
1.1_3 23 Nov 2018 14:37:10 |
joneum |
Modified entry and add phpmailer
PR: 233420 233416
Sponsored by: Netzkommune GmbH |
1.1_3 22 Nov 2018 11:47:58 |
joneum |
Modified entry and add php70-imap
Sponsored by: Netzkommune GmbH |
1.1_3 22 Nov 2018 09:47:15 |
ale |
Add VuXML entry for php-imap vulnerability. |
1.1_3 21 Nov 2018 22:09:19 |
joneum |
Add entry for mail/phpmailer6
Sponsored by: Netzkommune GmbH |
1.1_3 20 Nov 2018 19:27:36 |
jkim |
Document the latest Flash Player vulnerability.
https://helpx.adobe.com/security/products/flash-player/apsb18-44.html |
1.1_3 20 Nov 2018 15:42:56 |
mfechner |
Document vulnerabilities for gitlab-ce.
Approved by: mentors (implicit) |
1.1_3 20 Nov 2018 10:23:05 |
krion |
Add entry for dns/powerdns
PR: 233139
Submitted by: maintainer |
1.1_3 19 Nov 2018 10:45:10 |
joneum |
Add entry for dns/powerdns-recursor40
PR: 233141
Sponsored by: Netzkommune GmbH |
1.1_3 17 Nov 2018 18:00:18 |
joneum |
Add entry for dns/powerdns-recursor
PR: 233140
Sponsored by: Netzkommune GmbH |
1.1_3 14 Nov 2018 17:54:24 |
madpilot |
Document recent asterisk vulneraability. |
1.1_3 13 Nov 2018 23:12:10 |
jkim |
Document the latest Flash Player vulnerability.
https://helpx.adobe.com/security/products/flash-player/apsb18-39.html |
1.1_3 12 Nov 2018 20:18:10 |
brnrd |
security/vuxml: Document openssl vulnerability |
1.1_3 12 Nov 2018 19:03:48 |
tcberner |
security/vuxml: Add entry for devel/kio-extras <= 18.08.3_1
https://www.kde.org/info/security/advisory-20181012-1.txt
Security: CVE-2018-19120 |
1.1_3 11 Nov 2018 18:24:46 |
sunpoet |
Update openjpeg status |
1.1_3 11 Nov 2018 18:03:48 |
jbeich |
security/vuxml: list CVE numbers forgotten in r484705 |
1.1_3 11 Nov 2018 17:53:32 |
jbeich |
security/vuxml: mark patch < 2.7.7 as vulnerable
Another copypasta because pkg-audit(8) doesn't grok CPE e.g.,
https://nvd.nist.gov/vuln/search/results?form_type=Advanced&cves=on&cpe_version=cpe:2.3:a:gnu:patch:2.7.6 |
1.1_3 10 Nov 2018 14:02:00 |
brnrd |
security/vuxml: Update latest openssl entry
- LibreSSL prior to 2.8 not vulnerable
- LibreSSL likely not vulnerable to CVE-2018-0735
PR: 233109
Submitted by: Franco Fichtner <franco opnsense org> |
1.1_3 09 Nov 2018 10:54:54 |
dinoex |
- lighttpd - use-after-free vulnerabilities
PR: 232278 |
1.1_3 08 Nov 2018 23:08:55 |
girgen |
Add info about security vulnerability in PostgreSQL
Security: CVE-2018-16850 |
1.1_3 08 Nov 2018 17:29:07 |
brnrd |
security/vuxml: Mark MariaDB 10.3.10 vulnerable
- From MariaDB release notes (not released yet)
See: https://mariadb.com/kb/en/library/mariadb-10311-release-notes/
PR: 233068 |
1.1_3 06 Nov 2018 17:24:51 |
joneum |
Add modified entrey for drupal after changes in r484148
Sponsored by: Netzkommune GmbH |
1.1_3 06 Nov 2018 16:34:09 |
joneum |
Add entry for nginx and nginx-devel
Sponsored by: Netzkommune GmbH |
1.1_3 04 Nov 2018 21:16:14 |
acm |
- Add www/drupal8 entry |
1.1_3 01 Nov 2018 22:00:16 |
flo |
Document gitea vulnerability
PR: 232897
Submitted by: stb@lassitu.de (maintainer) |
1.1_3 01 Nov 2018 19:20:06 |
sunpoet |
Document curl vulnerability |
1.1_3 01 Nov 2018 19:06:56 |
mfechner |
Document gilab-ce vulnerability.
Approved by: mentors (implicit) |
1.1_3 01 Nov 2018 14:05:12 |
sunpoet |
Document rubygem-loofah vulnerability |
1.1_3 01 Nov 2018 12:16:17 |
brnrd |
security/vuxml: Update latest OpenSSL entry
- As per a LibreSSL dev, also vulnerable |
1.1_3 29 Oct 2018 18:33:06 |
mfechner |
Documented several security issues with www/gitlab-ce.
Approved by: mentors (implicit) |
1.1_3 29 Oct 2018 17:51:00 |
brnrd |
security/vuxml: Document OpenSSL 1.1.x vulnerabilities |
1.1_3 28 Oct 2018 16:26:42 |
riggs |
Document potential remote code execution in net/liveMedia (CVE-2018-4013) |
1.1_3 27 Oct 2018 17:04:57 |
leres |
Mark mini_httpd < 1.30 as vulnerable as per:
http://acme.com/updates/archive/211.html
The issue is arbitrary file disclosure in some circumstances.
Reviewed by: matthew (mentor)
Approved by: matthew (mentor)
Differential Revision: https://reviews.freebsd.org/D17718 |
1.1_3 27 Oct 2018 08:06:03 |
woodsb02 |
Add entry for sysutils/py-salt
PR: 232663
Reported by: Christer Edwards <christer.edwards@gmail.com>
Security: https://www.vuxml.org/freebsd/4f7c6af3-6a2c-4ead-8453-04e509688d45.html |
1.1_3 23 Oct 2018 17:32:42 |
jbeich |
security/vuxml: mark firefox < 63 as vulnerable |
1.1_3 22 Oct 2018 16:21:18 |
joneum |
Add entry for www/drupal7
Sponsored by: Netzkommune GmbH |
1.1_3 20 Oct 2018 14:57:17 |
sunpoet |
Document ruby vulnerability
PR: 232427 (based on)
Submitted by: Yasuhiro KIMURA <yasu@utahime.org> |
1.1_3 20 Oct 2018 07:58:43 |
brnrd |
security/vuxml: Document 2018-10 MySQL vulnerabilities |
1.1_3 19 Oct 2018 16:06:30 |
joneum |
Add entry for www/matomo
Sponsored by: Netzkommune GmbH |
1.1_3 17 Oct 2018 15:54:16 |
feld |
Document libssh vulnerability
PR: 232344
Security: CVE-2018-10933 |
1.1_3 15 Oct 2018 11:29:07 |
mfechner |
Document security vulnerability with devel/libgit2 < 0.27.5.
Approved by: mentors (implicit) |
1.1_3 11 Oct 2018 19:54:18 |
thierry |
Add an entry for a memory leak bug in net-im/tox < v0.2.8. |
1.1_3 11 Oct 2018 15:28:08 |
joneum |
Add entry for www/gitea
PR: 232123
Reported by: maintainer
Sponsored by: Netzkommune GmbH |
1.1_3 11 Oct 2018 13:42:28 |
lwhsu |
Document Jenkins Security Advisory 2018-10-10
Sponsored by: The FreeBSD Foundation |