non port: security/vuxml/vuln.xml |
Number of commits found: 6271 (showing only 100 on this page) |
Monday, 9 Jan 2017
|
17:37 feld
Document libvncserver vulnerabilities
PR: 215805
Security: CVE-2016-9941 CVE-2016-9942
|
17:32 feld
Document libdwarf vulnerabilities
Security: CVE-2016-5027 CVE-2016-5028 CVE-2016-5029 CVE-2016-5030
Security: CVE-2016-5031 CVE-2016-5032 CVE-2016-5033 CVE-2016-5035
Security: CVE-2016-5037 CVE-2016-5040 CVE-2016-5041 CVE-2016-5043
Security: CVE-2016-5044 CVE-2016-7510 CVE-2016-7511 CVE-2016-8679
Security: CVE-2016-8680 CVE-2016-8681 CVE-2016-9275 CVE-2016-9276
Security: CVE-2016-9480 CVE-2016-9558
PR: 215085
|
17:14 feld
Document lynx vulnerabilities
PR: 215464
Security: CVE-2014-3566
Security: CVE-2016-9179
|
16:49 feld
Document hdf5 CVEs
PR: 214938
Security: CVE-2016-4330
SecuritY: CVE-2016-4331
Security: CVE-2016-4332
Security: CVE-2016-4333
|
16:25 feld
Add additional EoL ports to vuxml
PR: 211975
|
16:07 feld
Fix vuxml
CWE cannot be used in <cvename>
|
14:24 lifanov
security/vuxml: document pcsc-lite vulnerabilities
PR: 215834
Submitted by: Mahdi Mokhtari <mokhi64@gmail.com> (maintainer)
Reviewed by: matthew
Approved by: matthew (mentor)
MFH: 2017Q1
|
13:48 brnrd
security/vuxml: Document GnuTLS vulnerabilities
|
07:56 nobutaka
Modify affected version of w3m entry accordingly since w3m port has been
updated to fixed version.
MFH: 2017Q1
|
Saturday, 7 Jan 2017
|
23:07 junovitch
Tag irssi entry with assigned CVEs, while here wrap at 80 and reference PR
PR: 215800
Security: CVE-2017-5193
Security: CVE-2017-5194
Security: CVE-2017-5195
Security: CVE-2017-5196
Security: https://vuxml.FreeBSD.org/freebsd/3d6be69b-d365-11e6-a071-001e67f15f5a.html
|
22:55 junovitch
Document last quarter of Tomcat security advisories
Latest advisory is awaiting upstream release
PR: 214599
PR: 215865
Security: CVE-2016-0762
Security: CVE-2016-5018
Security: CVE-2016-6794
Security: CVE-2016-6796
Security: CVE-2016-6797
Security: CVE-2016-6816
Security: CVE-2016-8735
Security: CVE-2016-8745
Security: https://vuxml.FreeBSD.org/freebsd/0b9af110-d529-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/3ae106e2-d521-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/e5ec2767-d529-11e6-ae1b-002590263bf5.html
|
Friday, 6 Jan 2017
|
03:43 vanilla
Document irc/irssi.
PR: 215801
Submitted by: Vladimir Krstulja <vlad-fbsd at acheronmedia.com>
|
03:18 junovitch
Document security issues fixed in CodeIgniter 3.1.0 and 3.1.2
Note the security issue in CodeIgniter 3.1.1 is documented being valid on
PHP 5.3 only.
Security: https://vuxml.FreeBSD.org/freebsd/5e439ee7-d3bd-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/496160d3-d3be-11e6-ae1b-002590263bf5.html
|
Wednesday, 4 Jan 2017
|
10:24 brnrd
security/vuxml: Update latest PHP 7 entry
- Vulnerable versions for all the referenced CVEs now known
|
Monday, 2 Jan 2017
|
17:12 zi
- Document multiple vulnerabilities in w3m ports
PR: 215070
Submitted by: kcwu@csie.org
Security: eafa3aec-211b-4dd4-9b8a-a664a3f0917a
|
Thursday, 29 Dec 2016
|
19:29 brnrd
security/vuxml: Don't category prefix the <topic>
|
19:16 brnrd
security/vuxml: Fix entry date on most recent commit
|
13:08 brnrd
security/vuxml: Document h2o vulnerability
PR: 215587
Submitted by: Dave Cottlehuber <dch@skunkwerks.at> (maintainer)
|
11:30 brnrd
security/vuxml: Document PHP 0-day vulnerabilities
- Two solved, not referenced in ChangeLog
|
11:22 brnrd
security/vuxml: Document PHP vulnerabilities
- Vulnerabilities fixed in 7.0.14
|
07:13 thierry
Adding tt-rss to the phpmailer's vulnerabilities.
|
Wednesday, 28 Dec 2016
|
12:21 brnrd
security/vuxml: Document phpmailer vulnerability
- NB: This is not a duplicate
Security: c7656d4c-cb60-11e6-a9a5-b499baebfeaf
Security: CVE-2016-10045
|
Tuesday, 27 Dec 2016
|
20:52 timur
Add entry for multiple samba 3.6.* - 4.4.* vulnerabilities.
Security: CVE-2016-2123
CVE-2016-2125
CVE-2016-2126
|
16:07 pawel
Document devel/upnp 2 security vulnerabilities:
- unhandled write of files to filesystem via POST by default
- heap buffer overflow in create_url_list function
|
10:33 bapt
Fix range for exim vulnerability
|
Monday, 26 Dec 2016
|
11:57 brnrd
security/vuxml: Document phpmailer vulnerability
|
Sunday, 25 Dec 2016
|
14:13 vsevolod
- Document CVE-2016-9963 for exim
|
10:28 brnrd
security/vuxml: Document OpenSSH vulnerabilities
|
Saturday, 24 Dec 2016
|
08:56 sunpoet
- Fix space/tab: it was not caught by 'make validate'
|
08:38 sunpoet
- Document cURL vulnerability
|
Friday, 23 Dec 2016
|
02:52 junovitch
Document information disclosure CVEs in SQUID-2016:10 and SQUID-2016:11
PR: 215416
PR: 215418
Security: CVE-2016-10002
Security: CVE-2016-10003
Security: https://vuxml.FreeBSD.org/freebsd/41f8af15-c8b9-11e6-ae1b-002590263bf5.html
|
01:29 junovitch
Document command execution in vim/neovim via specially crafted files
Reported by: ohaur
Security: CVE-2016-1248
Security: https://vuxml.FreeBSD.org/freebsd/c11629d3-c8ad-11e6-ae1b-002590263bf5.html
|
Thursday, 22 Dec 2016
|
23:39 bapt
Add a entry about a XSS concerning www/pligg
|
18:47 brnrd
security/vuxml: Add severity to recent Apache vulnerabilities
|
17:50 feld
Document FreeBSD-SA-16:39.ntp
|
08:05 brnrd
security/vuxml: Document cURL 7.51 vulnerability
|
03:21 junovitch
Document Joomla! security advisories since 3.4.6 was released.
While here, update entry for 3.4.6 with final advisory information from
JSST page.
A big thanks to Larry Rosenman for reporting the open issues and getting the
port up to date.
PR: 215058
Reported by: Larry Rosenman <ler@lerctr.org>
Security: CVE-2016-8869
Security: CVE-2016-8870
Security: CVE-2016-9081
Security: CVE-2016-9836
Security: CVE-2016-9837
Security: CVE-2016-9838
Security: https://vuxml.FreeBSD.org/freebsd/624b45c0-c7f3-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/a27d234a-c7f2-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/c0ef061a-c7f0-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/f0806cad-c7f1-11e6-ae1b-002590263bf5.html
|
02:11 junovitch
Document Xen Security Advisory (XSA 202)
Security: CVE-2016-10024
Security: https://vuxml.FreeBSD.org/freebsd/3ae078ca-c7eb-11e6-ae1b-002590263bf5.html
|
Wednesday, 21 Dec 2016
|
10:35 ohauer
- document Apache httpd-2.4.x defects
|
Tuesday, 20 Dec 2016
|
18:07 brnrd
security/vuxml: Mark openssl-devel not vulnerable to CVE-2016-2178
PR: 214995
Reported by: Melvyn Sopacua <m.r.sopacua@gmail.com>
|
03:13 junovitch
Document Xen Security Advisory (XSA 204)
Reported by: royger
Security: CVE-2016-10013
Security: https://vuxml.FreeBSD.org/freebsd/942433db-c661-11e6-ae1b-002590263bf5.html
|
Friday, 16 Dec 2016
|
08:33 jbeich
security/vuxml: oops, seamonkey 2.46 has CVE-2016-9079 fix
https://hg.mozilla.org/releases/mozilla-release/rev/8b8d2820718f
|
02:14 junovitch
Document two CVEs fixed in Atheme 7.2.7
PR: 209217
Security: CVE-2014-9773
Security: CVE-2016-4478
Security: https://vuxml.FreeBSD.org/freebsd/e47ab5db-c333-11e6-ae1b-002590263bf5.html
|
Wednesday, 14 Dec 2016
|
10:19 jbeich
security/vuxml: mark www/firefox < 50.1_1,1 as vulnerable
|
03:12 junovitch
Update Roundcube entry with CVE and Bugtraq ID and switch to more detailed
Mitre verbiage.
PR: 214925
Security: CVE-2016-9920
Security: https://vuxml.FreeBSD.org/freebsd/125f5958-b611-11e6-a9a5-b499baebfeaf.html
|
02:58 junovitch
Document Wordpress security issues in 4.6.1.
I didn't see any security updates in the 4.7 blog entry but we missed
capturing these fixes from 4.6.1 earlier.
Security: https://vuxml.FreeBSD.org/freebsd/54e50cd9-c1a8-11e6-ae1b-002590263bf5.html
|
02:45 junovitch
Document Xen Security Advisory (XSA 200)
Reported by: royger
Security: CVE-2016-9932
Security: https://vuxml.FreeBSD.org/freebsd/80a897a2-c1a6-11e6-ae1b-002590263bf5.html
|
Monday, 12 Dec 2016
|
20:23 brnrd
security/vuxml: Document PHP 7.0.13 & 5.6.29 vulnerabilities
- No further detail provided by the PHP project
|
Friday, 9 Dec 2016
|
19:44 madpilot
Document vulnerabilities in net/asterisk11 and net/asterisk13.
|
Thursday, 8 Dec 2016
|
14:15 feld
Revise FreeBSD-SA-16:37.libc entry
|
Wednesday, 7 Dec 2016
|
00:30 jhale
Document vulnerabilities in security/cryptopp
Security: CVE-2015-2141
Security: CVE-2016-3995
Security: CVE-2016-7420
|
Tuesday, 6 Dec 2016
|
20:05 feld
Fix a couple <freebsdsa> that were meant to be <freebsdpr>
|
20:03 feld
Document FreeBSD-SA-16:38.bhyve
Security: CVE-2016-1889
|
19:56 feld
Document FreeBSD-SA-16:37.libc
Security: CVE-2016-6559
|
19:55 feld
Document FreeBSD-SA-16:36.telnetd
Security: CVE-2016-1888
|
10:04 brnrd
security/vuxml: Document Apache HTTP/2 vulnerability
Security: CVE-2016-8740
|
Monday, 5 Dec 2016
|
20:21 rene
Document new vulnerabilities in www/chromium < 55.0.2883.75
Obtained
from: https://googlechromereleases.blogspot.nl/2016/12/stable-channel-update-for-desktop.html
|
Sunday, 4 Dec 2016
|
23:55 feld
Document ImageMagick7 vulnerabilities
PR: 214514
Security: CVE-2016-9298
Security: CVE-2016-8866
Security: CVE-2016-8862
|
23:03 feld
Document py-pillow vulnerabilities
PR: 214410
Security: CVE-2016-9189
Security: CVE-2016-9190
|
22:52 feld
Document ImageMagick vulnerability
PR: 214520
Security: CVE-2016-9298
|
22:29 feld
Document py-cryptography vulnerability
PR: 214915
Security: CVE-2016-9243
|
21:20 feld
Document qemu vulnerability
PR: 206725
Security: CVE-2015-1779
|
19:35 junovitch
Document Xen Security Advisories (XSAs 185-188, 190-195, 197-198)
PR: 214936
Security: CVE-2016-7092
Security: CVE-2016-7093
Security: CVE-2016-7094
Security: CVE-2016-7154
Security: CVE-2016-7777
Security: CVE-2016-9379
Security: CVE-2016-9380
Security: CVE-2016-9381
Security: CVE-2016-9382
Security: CVE-2016-9383
Security: CVE-2016-9384
Security: CVE-2016-9385
Security: CVE-2016-9386
Security: https://vuxml.FreeBSD.org/freebsd/45ca25b5-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/49211361-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/4aae54be-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/4d7cf654-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/50ac2e96-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/523bb0b7-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/53dbd096-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/5555120d-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/56f0f11e-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/58685e23-ba4d-11e6-ae1b-002590263bf5.html
Security: https://vuxml.FreeBSD.org/freebsd/59f79c99-ba4d-11e6-ae1b-002590263bf5.html
|
Thursday, 1 Dec 2016
|
16:46 marcus
Add an entry for wireshark < 2.2.2
PR: 214753
Submitted by: Piotr Kubaj <pkubaj@anongoth.pl>
|
13:40 cmt
document mozilla vulnerabilities CVE-2016-9079
PR: 214978
Approved by: jbeich, rene (mentor, implicit)
|
Wednesday, 30 Nov 2016
|
17:18 tijl
linux-c7-libgcrypt 1.5.3_1 fixes CVE-2016-6313.
|
16:56 tijl
Fix a package name.
|
16:51 tijl
Add linux-*-expat to CVE-2016-0718 entry.
PR: 214951
Security: https://rhn.redhat.com/errata/RHSA-2016-2824.html
|
12:07 vd
Document ftp/wget's Access List Bypass / Race Condition vulnerability
PR: 214941
Submitted by: Sevan Janiyan <venture37@geeklan.co.uk>
Security: CVE-2016-7098
|
10:48 rakuco
Add entry for CVE-2016-9296 in archivers/p7zip.
|
03:33 cy
Document Apache Subverision vulnerability CVE-2016-8734:
Unrestricted XML entity expansion in mod_dontdothat and Subversion
clients using http(s)://
Reported by: Evgeny Kotkov <kotkov@apache.org>
Security: CVE-2016-8734
|
Tuesday, 29 Nov 2016
|
22:58 junovitch
Document libwww vulnerabilities
PR: 214532
Submitted by: Danilo G. Baio <dbaio@bsd.com.br>
Security: CVE-2009-3720
Security: CVE-2009-3560
Security: CVE-2005-3183
Security: https://vuxml.FreeBSD.org/freebsd/18449f92-ab39-11e6-8011-005056925db4.html
|
12:50 jbeich
security/vuxml: mark www/firefox < 50.0.1,1 as vulnerable
|
08:55 brnrd
security/vuxml: Document Roundcube vulnerability
|
Sunday, 27 Nov 2016
|
03:25 junovitch
Remove trailing period in version and re-wrap Drupal entry at <=80 lines
PR: 214813
|
03:07 junovitch
Revise earlier Moodle entry with released advisories (MSA-16-0023 - MSA-16-026)
Security: CVE-2016-8642
Security: CVE-2016-8643
Security: CVE-2016-8644
|
Friday, 25 Nov 2016
|
10:11 tz
Document Drupal vulnerabilities
PR: 214813
Security: CVE-2016-9449
Security: CVE-2016-9450
Security: CVE-2016-9451
Security: CVE-2016-9452
Security:
https://vuxml.freebsd.org/freebsd/8db24888-b2f5-11e6-8153-00248c0c745d.html
Approved by: mentors (implicit)
|
08:16 matthew
Document the latest batch of phpMyAdmin security advisories. All 14
of them.
|
Thursday, 24 Nov 2016
|
16:30 tijl
Add linux-c7-libgcrypt to CVE-2016-6313 entry.
Presumably a fix will be released with CentOS 7.3.
PR: 214460
Security: https://rhn.redhat.com/errata/RHSA-2016-2674.html
|
16:08 feld
Document additional MySQL vulnerable versions
No information on which versions of MariaDB or Percona are affected.
PR: 212612
Security: CVE-2016-6662
|
16:05 feld
Document MySQL RCE vulnerability
PR: 212612
Security: CVE-2016-6662
|
Wednesday, 23 Nov 2016
|
11:05 tijl
Fix linux-*-nss range for CVE-2016-2834.
PR: 214755
Security: https://access.redhat.com/errata/RHSA-2016:2779
|
Tuesday, 22 Nov 2016
|
08:19 delphij
Document multiple ntp vulnerabilities.
|
Monday, 21 Nov 2016
|
16:04 amdmi3
- Document Teeworlds remote code execution
|
Wednesday, 16 Nov 2016
|
18:26 swills
Document Jenkins Security Advisory 2016-11-16
|
01:58 junovitch
Document Moodle security advisories from September (MSA-16-0022) and
November releases.
Security: CVE-2016-7038
|
Tuesday, 15 Nov 2016
|
22:02 jbeich
security/vuxml: add entry for r425098, r425099, r425470
|
Sunday, 13 Nov 2016
|
11:11 tijl
Add linux-c6-libgcrypt to CVE-2016-6313 entry.
PR: 214460
Security: https://rhn.redhat.com/errata/RHSA-2016-2674.html
|
Saturday, 12 Nov 2016
|
20:51 pawel
Document multimedia/lives security issues
|
Friday, 11 Nov 2016
|
23:49 brnrd
security/vuxml: Fix version number for OpenSSL 1.1.0c
Reported by: matthew
|
10:22 cpm
- Fix affected chromium version.
Approved by: rene
|
Thursday, 10 Nov 2016
|
19:23 brnrd
security/vuxml: Document new OpenSSL 1.1.0 vulnerabilities
|
11:55 cpm
Document new vulnerabilities in www/chromium < 54.0.2840.98
Approved by: rene
Obtained
from: https://googlechromereleases.blogspot.nl/2016/11/stable-channel-update-for-desktop_9.html
|
10:48 tijl
Document latest flash plugin vulnerabilities.
Security: https://helpx.adobe.com/security/products/flash-player/apsb16-37.html
|
Wednesday, 9 Nov 2016
|
16:24 feld
Document gitlab vulnerability
PR: 214360
Security: CVE-2016-9086
|
Sunday, 6 Nov 2016
|
13:34 tijl
Undocument linux-*-expat vulnerabilities.
linux-*-expat is only used by linux-*-fontconfig to read configuration
files written in XML and by dbus-binding-tool(1) from linux-*-dbus-glib, a
development tool that generates C code from an Introspection XML file to
expose a GObject via D-Bus.
These vulnerabilities are therefore not believed to be exploitable on
FreeBSD and only cause annoying warnings and prevent installation of
linux-*-expat. It also does not look like Red Hat will provide fixes for
these any time soon.
PR: 210155
|
Thursday, 3 Nov 2016
|
20:34 rene
Fix version number in last entry
|
20:33 rene
Document new vulnerability in www/chromium < 54.0.2840.90
Obtained
from: https://googlechromereleases.blogspot.nl/2016/11/stable-channel-update-for-desktop.html
|
Wednesday, 2 Nov 2016
|
17:28 brnrd
security/vuxml: Mark correct OpenSSL 1.0.2 and 1.1.0 versions
- "BTW, the issue has been fixed in the official release on September 22nd."
|
16:33 lwhsu
Fix affected ports versions
|
Number of commits found: 6271 (showing only 100 on this page) |