FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
08a2df48-6c6a-11e7-9b01-2047478f2f70	collectd5 -- Denial of service by sending a signed network packet to a server which is not set up to check signatures marcinguy reports: After sending this payload, collectd seems to be entering endless while() loop in packet_parse consuming high CPU resources, possibly crash/gets killed after a while. Discovery 2017-02-13 Entry 2017-07-19 collectd5 < 5.7.2 https://github.com/collectd/collectd/issues/2174 CVE-2017-7401
6da45e38-5b55-11e6-8859-000c292ee6b8	collectd -- Network plugin heap overflow The collectd Project reports: Emilien Gaspar has identified a heap overflow in collectd's network plugin which can be triggered remotely and is potentially exploitable. Discovery 2016-07-26 Entry 2016-08-05 collectd5 < 5.5.2 CVE-2016-6254 http://collectd.org/news.shtml#news98

VuXML ID

Description

08a2df48-6c6a-11e7-9b01-2047478f2f70

collectd5 -- Denial of service by sending a signed network packet to a server which is not set up to check signatures

marcinguy reports:

After sending this payload, collectd seems to be entering endless while() loop in packet_parse consuming high CPU resources, possibly crash/gets killed after a while.

Discovery 2017-02-13
Entry 2017-07-19
collectd5

< 5.7.2

https://github.com/collectd/collectd/issues/2174
CVE-2017-7401

6da45e38-5b55-11e6-8859-000c292ee6b8

collectd -- Network plugin heap overflow

The collectd Project reports:

Emilien Gaspar has identified a heap overflow in collectd's network plugin which can be triggered remotely and is potentially exploitable.

Discovery 2016-07-26
Entry 2016-08-05
collectd5

< 5.5.2

CVE-2016-6254
http://collectd.org/news.shtml#news98