| non port: security/vuxml/vuln.xml |
Number of commits found: 6271 (showing only 100 on this page) |
|
Wednesday, 2 Nov 2016
|
13:26 feld 
Update openssh vuxml entry to add FreeBSD SA information
Security: CVE-2016-8858
Security: SA-16:33.openssh
  |
13:19 feld
Document openssl vulnerability
Security: CVE-2016-8610
|
12:53 lwhsu
Spelling fix
|
12:49 lwhsu
Document Django vulnerabilities CVE-2016-9013, CVE-2016-9014
|
10:49 mat
Fix up bind9-devel's range for CVE-2016-8864.
Sponsored by: Absolight
|
08:11 brnrd
security/vuxml: Document 2016-11-02 cURL vulnerabilities
|
08:01 delphij
Document BIND remote DoS vulnerability.
|
05:26 swills
Document memcached vulnerabilities
|
|
Tuesday, 1 Nov 2016
|
20:35 brnrd
security/vuxml: Fix version numbers for MySQL
|
20:31 brnrd
security/vuxml: Document MySQL/MariaDB vulnerabilities
- New entries added to "Oracle Critical Patch Update Advisory - October 2016"?
|
|
Monday, 31 Oct 2016
|
20:36 rene
Document new vulnerabilities in www/chromium < 54.0.2840.59
Obtained
from: https://googlechromereleases.blogspot.nl/2016/10/stable-channel-update-for-desktop.html
|
|
Saturday, 29 Oct 2016
|
18:16 peter
Attempt to fix vuxml build after r424916
|
15:19 feld
Document openssh DoS
PR: 213640
Security: CVE-2016-8858
|
|
Friday, 28 Oct 2016
|
15:34 feld
Document sudo vulnerability
|
14:01 feld
Document axis2 vulnerabilities
PR: 213791
Security: CVE-2012-6153
Security: CVE-2014-3577
|
13:33 feld
Document node vulnerabilities
PR: 213800
Security: CVE-2016-5172
|
04:47 olivierd
Document vulnerability in net/py-urllib3
|
|
Thursday, 27 Oct 2016
|
13:14 tijl
Document latest flash plugin vulnerability.
PR: 213831
|
|
Tuesday, 25 Oct 2016
|
17:57 feld
Fix FreeBSD-SA-16:32.bhyve to correctly document this affects FreeBSD-kernel
|
17:56 feld
Document revised FreeBSD-SA-16:15.sysarch
|
17:51 feld
Document FreeBSD-SA-16:32.bhyve
|
|
Monday, 24 Oct 2016
|
15:32 feld
Document flash vulnerabilities
Differential Revision: https://reviews.freebsd.org/D8266
|
|
Friday, 21 Oct 2016
|
11:40 jbeich
Reference MFSA for Thunderbird fixed by r423073
|
11:32 jbeich
Document recent Firefox vulnerabilities
|
|
Tuesday, 18 Oct 2016
|
18:01 feld
Fix some malformed <freebsdpr> entries in vuxml
|
17:57 feld
Document vulnerability in Apache Axis2
PR: 213546
Security: CVE-2010-3981
|
17:26 rene
Document remote denial of service vulnerability in security/tor*
PR: 212952
Submitted by: Neel Chauhan <neel@neelc.org>
Obtained
from: https://blog.torproject.org/blog/tor-0289-released-important-fixes
|
14:46 tz
Fix wrong range of vulnerable Rails 4 versions
Approved by: pi (mentor)
|
|
Friday, 14 Oct 2016
|
12:03 tz
Rails 4: Document XSS Vulnerability in Action View and
Unsafe Query Generation Risk in Active Record
Security: CVE-2016-6316
Security:
https://vuxml.freebsd.org/freebsd/43f1c867-654a-11e6-8286-00248c0c745d.html
Security: CVE-2016-6317
Security:
https://vuxml.freebsd.org/freebsd/7e61cf44-6549-11e6-8286-00248c0c745d.html
Approved by: pi(mentor)
|
12:01 tz
Document multiple security issues of PHP 7.0
Security: CVE-2016-7416
Security: CVE-2016-7412
Security: CVE-2016-7414
Security: CVE-2016-7417
Security: CVE-2016-7413
Security: CVE-2016-7418
Security:
https://vuxml.freebsd.org/freebsd/f471032a-8700-11e6-8d93-00248c0c745d.html
Approved by: pi (mentor)
|
11:59 tz
Document multiple security issues of PHP 5.6
Security: CVE-2016-7416
Security: CVE-2016-7412
Security: CVE-2016-7414
Security: CVE-2016-7417
Security: CVE-2016-7411
Security: CVE-2016-7413
Security: CVE-2016-7418
Security:
https://vuxml.freebsd.org/freebsd/8d5180a6-86fe-11e6-8d93-00248c0c745d.html
Approved by: pi (mentor)
|
|
Wednesday, 12 Oct 2016
|
04:47 feld
Document file-roller vulnerability
PR: 213199
Security: CVE-2016-7162
|
02:01 feld
Document Virtualbox vulnerabilities
PR: 204406
Security: CVE-2015-4813
Security: CVE-2015-4896
|
01:37 feld
Document ImageMagick vulnerabilities
PR: 213032
|
01:28 feld
Document libgd vulnerabilities
PR: 213023
|
01:22 feld
Document libvncserver vulnerabilities
PR: 212380
Security: CVE-2014-6051
Security: CVE-2014-6052
Security: CVE-2014-6053
Security: CVE-2014-6054
Security: CVE-2014-6055
|
01:17 feld
Document OpenOffice vulnerability
PR: 212379
Security: CVE-2014-3575
|
00:49 feld
Document mupdf vulnerabilites
PR: 212207
Security: CVE-2016-6525
Security: CVE-2016-6265
|
|
Tuesday, 11 Oct 2016
|
19:59 feld
Fix OpenSSL vuln version range
Reported by: mat
|
15:07 feld
Document openjpeg vulnerability
PR: 212672
Security: CVE-2016-5157
Security: CVE-2016-7163
|
15:02 feld
Document redis vulnerability
PR: 211709
Security: CVE-2013-7458
|
|
Monday, 10 Oct 2016
|
16:20 feld
Fix typo in vuxml topic
|
12:43 feld
Document FreeBSD-SA-16:31.libarchive
|
12:42 feld
Document FreeBSD-SA-16:30.portsnap
|
12:41 feld
Document FreeBSD SA-16:29.bspatch
|
12:40 feld
Add FreeBSD SA info to recent BIND vulnerability
|
12:39 feld
Add FreeBSD SA info to recent OpenSSL vulnerability
|
|
Sunday, 9 Oct 2016
|
07:49 riggs
Document code execution vulnerability in mkvtoolnix < 9.4.1
|
|
Saturday, 8 Oct 2016
|
13:43 kwm
Update the libXfixes version. The old version was still affected by the
vulnabilities.
|
|
Friday, 7 Oct 2016
|
18:00 kwm
Document X.org client libraries insufficient validation of data from
the X server vulnabilities.
Security: CVE-2016-5407
|
|
Friday, 30 Sep 2016
|
09:40 tijl
Add linux-c6-openssl to recent OpenSSL vulnerabilities.
PR: 213082
Security: https://rhn.redhat.com/errata/RHSA-2016-1940.html
|
|
Wednesday, 28 Sep 2016
|
12:55 mat
Add bind9-devel to the latest BIND9 vuln.
Sponsored by: Absolight
|
08:00 delphij
Document BIND remote DoS vulnerability.
|
02:20 wen
- Document the security vulnerability in py-django, py-django18 and py-django19.
PR: 213033
Submitted by: vlad-fbsd@acheronmedia.com
Security: CVE-2016-7401
|
|
Tuesday, 27 Sep 2016
|
21:00 brnrd
security/vuxml: Update recent OpenSSL vuln (add LibreSSL)
- Add libressl and libressl-devel
|
|
Monday, 26 Sep 2016
|
13:45 brnrd
security/vuxml: Add 2016-09-26 OpenSSL entries
|
|
Friday, 23 Sep 2016
|
13:37 feld
Document affected FreeBSD versions for recent OpenSSL vulnerabilities
|
|
Thursday, 22 Sep 2016
|
14:31 feld
Remove extra / invalid CVE entry for OpenSSL
|
12:51 feld
Update range of vulnerable irssi versions
|
12:17 brnrd
security/vuxml: Add new OpenSSL 1.0.2 and 1.1.0 vulnerabilities
- 2016-09-22 security advisory
|
|
Wednesday, 21 Sep 2016
|
21:03 feld
Document that chinese/irssi is vulnerable as well
|
20:59 feld
Document irssi vulnerabilities
PR: 212888
Security: CVE-2016-7044
Security: CVE-2016-7045
|
|
Tuesday, 20 Sep 2016
|
17:01 jbeich
Document recent Firefox vulnerabilities
|
|
Sunday, 18 Sep 2016
|
14:17 brnrd
security/vuxml: Fix curl version ranges
|
|
Friday, 16 Sep 2016
|
20:16 rene
Document new vulnerabilities in www/chromium < 53.0.2785.113
Obtained
from: https://googlechromereleases.blogspot.nl/2016/09/stable-channel-update-for-desktop_13.html
|
16:17 riggs
Document CVE 2016-6662: zero-day remote vulnerability in mysql ports
PR: 212612
Submitted by: mokhi64@gmail.com (mysql57-* maintainer)
Reported by: rootservice@gmail.com
Security: CVE 2016-6662
|
|
Thursday, 15 Sep 2016
|
07:46 matthew
Document security problems in dropbear
PR: 212699
Submitted by: pkubaj@anongoth.pl
|
|
Wednesday, 14 Sep 2016
|
09:31 brnrd
security/vuxml: Document www/h2o vulnerability
PR: 211892
Submitted by: Dave Cottlehuber <dch@skunkwerks.at> (maintainer)
Reviewed by: brnrd
MFH: 2016Q3
Security: 08664d42-7989-11e6-b7a8-74d02b9a84d5
|
07:28 brnrd
ftp/curl: Document integer overflow vuln
|
|
Tuesday, 13 Sep 2016
|
19:10 rene
Add vulnerabilities for www/chromium < 53.0.2785.92
Obtained
from: https://googlechromereleases.blogspot.nl/2016/08/stable-channel-update-for-desktop_31.html
|
17:59 rene
Belatedly add vulnerabilities for www/chromium < 52.0.2743.116
Obtained
from: https://googlechromereleases.blogspot.nl/2016/08/stable-channel-update-for-desktop.html
|
08:05 delphij
Document MySQL root code execution vulnerability.
|
|
Monday, 12 Sep 2016
|
20:22 gjb
Fix build.
Sponsored by: The FreeBSD Foundation
|
20:05 johans
Document WolfSSL vulnerabilities (< 3.6.8)
PR: 205936
Submitted by: Christoph Moench-Tegeder
|
|
Friday, 9 Sep 2016
|
13:31 tijl
Add entry for GNUTLS-SA-2016-3.
|
11:02 cmt
document mozilla vulnerabilities (<48, <45.3esr)
PR: 212463
Approved by: jbeich (maintainer), rene (mentor)
|
|
Thursday, 8 Sep 2016
|
20:52 madpilot
Document asterisk vulnerabilities.
|
|
Tuesday, 6 Sep 2016
|
17:08 tijl
- Add linux-*-tiff information to existing tiff vulnerabilities.
- Like r419692, cancel a gif2tiff vulnerability that upstream marked
WONTFIX: http://bugzilla.maptools.org/show_bug.cgi?id=2536
PR: 211552
|
14:22 feld
Document vulnerability in irc/inspircd
No CVEs have been assigned at this time.
|
08:37 mandree
Add CVE-2016-7123 for resolved mailman CSRF.
PR: 212378
Reported by: Sevan Janiyan
Security: CVE-2016-7123
Security: 9e50dcc3-740b-11e6-94a2-080027ef73ec
|
|
Monday, 5 Sep 2016
|
21:40 tijl
Fix the version range for a linux-c6-nss vulnerability.
PR: 208385
|
|
Thursday, 1 Sep 2016
|
20:27 gjb
Fix build.
Sponsored by: The FreeBSD Foundation
|
20:21 bdrewery
Document OpenSSH CVE-2015-8325 and CVE-2016-6210 fixed in OpenSSH 7.3p1.
PR: 212275
Reported by: <Sevan Janiyan> venture37@geeklan.co.uk
Security: CVE-2015-8325
Security: CVE-2016-6210
|
|
Monday, 29 Aug 2016
|
19:00 mandree
Document mailman < 2.1.23 CVE-2016-6893, insufficient CSRF protection.
|
|
Sunday, 28 Aug 2016
|
17:53 kwm
Document libxml2 vulnabilities.
|
|
Saturday, 27 Aug 2016
|
19:20 tcberner
Document kdelibs KArchive directory traversal vulnerability.
Approved by: rakuco (mentor)
Security: CVE-2016-6232
|
|
Monday, 22 Aug 2016
|
17:20 kwm
Docuement eog out of bounds write.
Security: CVE-2016-6855
|
12:20 mat
Some more cleanup to Perl vulnerabilities.
Sponsored by: Absolight
|
|
Sunday, 21 Aug 2016
|
19:12 kwm
Document fontconfig insufficiently cache file validation
Security: CVE-2016-5384
|
|
Friday, 19 Aug 2016
|
15:05 feld
Fix ruby version range which was missing the important portepoch
Add postgres and mysql to the EoL port list
PR: 211975
|
14:02 feld
Fix PKGNAME matching for old ruby in vuxml
PR: 211975
|
13:01 mat
Fixup Perl package names in the EoL vuln.
Sponsored by: Absolight
|
|
Thursday, 18 Aug 2016
|
22:27 jgh
unbreak build (validation and tests pass)
Reported by: feld
With hat: ports-secteam
|
21:44 feld
Add a number of old expired and End of Life ports to vuxml
PR: 211975
|
19:22 jkim
Fix CVE name for security/gnupg and security/libgcrypt. There was a typo in
the official release announcement.
|
00:41 kuriyama
Register recent gnupg1/libgcrypt vuln.
|
|
Wednesday, 17 Aug 2016
|
11:02 matthew
Document 26 new security advisories from phpmadmin. Some of these are
described as 'critical'.
|
|
Monday, 15 Aug 2016
|
09:26 mat
Note where the XSLoader thing is being fixed in Perl 5.18 and 5.20.
Sponsored by: Absolight
|
04:18 koobs
security/vuxml: Fix/Improve a few entry titles (<topic)
- TeamSpeak 3 Server: Use standard "Product -- Description" title format
- TeamSpeak 3 Server: Include RCE in title so people dont miss it. Importante.
- puppet-agent MCollective: Remove duplicate name in title, use software name
- FreeBSD ntp entry: Fix grammo
|
|
Sunday, 14 Aug 2016
|
22:19 pi
audio/teamspeak3-server: Document remote code execution
PR: 211846
Security: http://seclists.org/fulldisclosure/2016/Aug/61
Submitted by: Ultima1252@gmail.com
|
Number of commits found: 6271 (showing only 100 on this page) |
As an Amazon Associate I earn from qualifying purchases.