This page displays vulnerability information about FreeBSD Ports.
The last vuln.xml file processed by FreshPorts is:
nothing found there
List all Vulnerabilities, by package
List all Vulnerabilities, by date
These are the vulnerabilities relating to the commit you have selected:
|012809ce-83f3-11ea-92ab-00163e433440||OpenSSL remote denial of service vulnerability|
Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. The crash occurs if an invalid or unrecognized signature algorithm is received from the peer.
A malicious peer could exploit the NULL pointer dereference crash, causing a denial of service attack.
ge 12.1 lt 12.1_4
ge 1.1.1,1 lt 1.1.1g,1