This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
0652005e-ca96-11e5-96d6-14dae9d210b8 | salt -- code execution SaltStack reports:
Discovery 2016-01-25 Entry 2016-02-03 py27-salt py32-salt py33-salt py34-salt py35-salt ge 2015.8.0 lt 2015.8.4 https://docs.saltstack.com/en/latest/topics/releases/2015.8.4.html https://github.com/saltstack/salt/pull/30613/files CVE-2016-1866 |
3531141d-a708-477c-954a-2a0549e49ca9 | salt -- Maliciously crafted minion IDs can cause unwanted directory traversals on the Salt-master SaltStack reports:
Discovery 2017-08-16 Entry 2017-08-22 py27-salt py32-salt py33-salt py34-salt py35-salt py36-salt < 2016.11.7 ge 2017.7.0 lt 2017.7.1 CVE-2017-12791 https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html https://docs.saltstack.com/en/latest/topics/releases/2016.11.7.html |
4f7c6af3-6a2c-4ead-8453-04e509688d45 | salt -- multiple vulnerabilities SaltStack reports:
Discovery 2018-10-24 Entry 2018-10-27 py27-salt py32-salt py33-salt py34-salt py35-salt py36-salt py37-salt < 2017.7.8 ge 2018.3.0 lt 2018.3.3 CVE-2018-15751 CVE-2018-15750 https://docs.saltstack.com/en/latest/topics/releases/2018.3.3.html https://docs.saltstack.com/en/2017.7/topics/releases/2017.7.8.html |
50127e44-7b88-4ade-8e12-5d57320823f1 | salt -- multiple vulnerabilities SaltStack reports:
Discovery 2017-10-09 Entry 2017-11-23 py27-salt py32-salt py33-salt py34-salt py35-salt py36-salt < 2016.11.8 ge 2017.7.0 lt 2017.7.2 CVE-2017-14695 CVE-2017-14696 https://docs.saltstack.com/en/latest/topics/releases/2017.7.2.html https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.8.html https://github.com/saltstack/salt/commit/80d90307b07b3703428ecbb7c8bb468e28a9ae6d https://github.com/saltstack/salt/commit/5f8b5e1a0f23fe0f2be5b3c3e04199b57a53db5b |
6bf55af9-973b-11ea-9f2c-38d547003487 | salt -- multiple vulnerabilities in salt-master process F-Secure reports:
Discovery 2020-04-30 Entry 2020-05-16 py27-salt py32-salt py33-salt py34-salt py35-salt py36-salt py37-salt py38-salt < 2019.2.4 ge 3000 lt 3000.2 CVE-2020-11651 CVE-2020-11652 https://nvd.nist.gov/vuln/detail/CVE-2020-11651 https://nvd.nist.gov/vuln/detail/CVE-2020-11652 https://docs.saltstack.com/en/latest/topics/releases/2019.2.4.html https://labs.f-secure.com/advisories/saltstack-authorization-bypass https://blog.f-secure.com/new-vulnerabilities-make-exposed-salt-hosts-easy-targets/ https://www.tenable.com/blog/cve-2020-11651-cve-2020-11652-critical-salt-framework-vulnerabilities-exploited-in-the-wild |
6d25c306-f3bb-11e5-92ce-002590263bf5 | salt -- Insecure configuration of PAM external authentication service SaltStack reports:
Discovery 2016-03-17 Entry 2016-03-27 py27-salt py32-salt py33-salt py34-salt py35-salt < 2015.5.10 ge 2015.8.0 lt 2015.8.8 CVE-2016-3176 https://docs.saltstack.com/en/latest/topics/releases/2015.8.8.html |
8c98e643-6008-11ea-af63-38d547003487 | salt -- salt-api vulnerability SaltStack reports:
Discovery 2020-01-15 Entry 2020-03-07 py27-salt py32-salt py33-salt py34-salt py35-salt py36-salt py37-salt py38-salt < 2019.2.3 CVE-2019-17361 https://docs.saltstack.com/en/latest/topics/releases/2019.2.3.html https://nvd.nist.gov/vuln/detail/CVE-2019-17361 |