This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
0c5369fc-d671-11e6-a9a5-b499baebfeaf | GnuTLS -- Memory corruption vulnerabilities The GnuTLS project reports:
Discovery 2017-01-09 Entry 2017-01-09 gnutls < 3.5.8 http://www.gnutls.org/news.html#2017-01-09 http://www.gnutls.org/security.html#GNUTLS-SA-2017-2 http://www.gnutls.org/security.html#GNUTLS-SA-2017-1 |
1cd0c17a-17c0-11ed-91a5-080027f5fec9 | gnutls -- double free vulnerability The GnuTLS project reports:
Discovery 2022-07-07 Entry 2022-08-09 gnutls ge 3.6.0 lt 3.7.7 CVE-2022-2509 https://www.gnutls.org/security-new.html#GNUTLS-SA-2022-07-07 |
2272e6f1-f029-11ea-838a-0011d823eebd | GnuTLS -- null pointer dereference The GnuTLS project reports:
Discovery 2020-09-04 Entry 2020-09-06 gnutls < 3.6.15 https://gnutls.org/security-new.html#GNUTLS-SA-2020-09-04 CVE-2020-24659 |
2e7e9072-73a0-11e1-a883-001cc0a36e12 | libtasn1 -- ASN.1 length decoding vulnerability Mu Dynamics, Inc. reports:
Discovery 2012-03-20 Entry 2012-03-21 Modified 2012-03-24 libtasn1 < 2.12 gnutls < 2.12.18 gnutls-devel gt 2.99 lt 3.0.16 CVE-2012-1569 |
3de36a19-429d-11e5-9daa-14dae9d210b8 | gnutls -- MD5 downgrade in TLS signatures Karthikeyan Bhargavan reports:
Discovery 2015-04-25 Entry 2015-08-14 gnutls < 3.3.15 http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/8132 http://www.gnutls.org/security.html#GNUTLS-SA-2015-2 http://seclists.org/oss-sec/2015/q2/367 |
45298931-b3bf-11dd-80f8-001cc0377035 | gnutls -- X.509 certificate chain validation vulnerability SecurityFocus reports:
Discovery 2008-11-10 Entry 2008-11-16 gnutls < 2.4.2 32232 CVE-2008-4989 http://www.gnu.org/software/gnutls/security.html http://lists.gnu.org/archive/html/gnutls-devel/2008-11/msg00017.html |
64bf6234-520d-11db-8f1a-000a48049292 | gnutls -- RSA Signature Forgery Vulnerability Secunia reports:
Discovery 2006-09-08 Entry 2006-10-02 gnutls gnutls-devel < 1.4.4 20027 CVE-2006-4790 http://secunia.com/advisories/21937 http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html |
84ab58cf-e4ac-11d8-9b0a-000347a4fa7d | gnutls -- certificate chain verification DoS Patric Hornik reports on a problem in the certificate chain verification procedures of GnuTLS that may result in a denial-of-service vulnerability:
Discovery 2004-08-02 Entry 2004-10-05 gnutls < 1.0.17 gnutls-devel ge 1.1.* lt 1.1.12 http://www.hornik.sk/SA/SA-20040802.txt http://secunia.com/advisories/12156 |
856a6f84-8b30-11de-8062-00e0815b8da8 | GnuTLS -- improper SSL certificate verification GnuTLS reports:
Discovery 2009-08-11 Entry 2009-08-17 gnutls < 2.8.3 gnutls-devel < 2.9.0 CVE-2009-2730 http://article.gmane.org/gmane.network.gnutls.general/1733 http://secunia.com/advisories/36266 |
9733c480-ebff-11e3-970b-206a8a720317 | gnutls -- client-side memory corruption GnuTLS project reports:
Discovery 2014-05-14 Entry 2014-06-04 gnutls < 2.12.23_6 CVE-2014-3466 http://www.gnutls.org/security.html#GNUTLS-SA-2014-3 |
9c196cfd-2ccc-11e6-94b0-0011d823eebd | gnutls -- file overwrite by setuid programs gnutls.org reports:
Discovery 2016-06-06 Entry 2016-06-07 gnutls ge 3.4.12 lt 3.4.13 https://gnutls.org/security.html#GNUTLS-SA-2016-1 |
a0128291-7690-11e6-95a8-0011d823eebd | gnutls -- OCSP validation issue gnutls.org reports:
Discovery 2016-09-08 Entry 2016-09-09 gnutls < 3.4.15 https://gnutls.org/security.html#GNUTLS-SA-2016-3 |
aecee357-739e-11e1-a883-001cc0a36e12 | gnutls -- possible overflow/Denial of service vulnerabilities Mu Dynamics, Inc. reports:
Discovery 2012-03-20 Entry 2012-03-21 Modified 2012-03-24 gnutls < 2.12.18 gnutls-devel gt 2.99 lt 3.0.15 CVE-2012-1573 |
b31a1088-460f-11de-a11a-0022156e8794 | GnuTLS -- multiple vulnerabilities SecurityFocus reports:
Discovery 2009-05-21 Entry 2009-08-17 gnutls < 2.6.6 gnutls-devel < 2.7.8 CVE-2009-1415 CVE-2009-1416 CVE-2009-1417 34783 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3516 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3517 |
b33fb1e0-4c37-11e7-afeb-0011d823eebd | GnuTLS -- Denial of service vulnerability The GnuTLS project reports:
Discovery 2017-06-07 Entry 2017-06-08 gnutls < 3.5.13 https://gnutls.org/security.html#GNUTLS-SA-2017-4 |
bdec8dc2-0b3b-11e1-b722-001cc0476564 | gnutls -- client session resumption vulnerability The GnuTLS team reports:
Discovery 2011-11-08 Entry 2011-11-10 gnutls < 2.12.14 CVE-2011-4128 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5596 |
d864a0a7-6f27-11dd-acfe-00104b9e1a4a | gnutls -- "gnutls_handshake()" Denial of Service Secunia reports:
Discovery 2008-08-15 Entry 2008-08-21 gnutls ge 2.3.5 lt 2.4.1 CVE-2008-2377 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2947 http://secunia.com/advisories/31505/ |
d887b3d9-7366-11ea-b81a-001cc0382b2f | GnuTLS -- flaw in DTLS protocol implementation The GnuTLS project reports:
Discovery 2020-03-31 Entry 2020-03-31 gnutls < 3.6.13 https://gnutls.org/security-new.html#GNUTLS-SA-2020-03-31 CVE-2020-11501 |
ec6a2a1e-429d-11e5-9daa-14dae9d210b8 | gnutls -- double free in certificate DN decoding gnutls.org reports:
Discovery 2015-07-20 Entry 2015-08-14 Modified 2015-08-18 gnutls < 3.3.17 http://www.gnutls.org/security.html#GNUTLS-SA-2015-3 http://seclists.org/oss-sec/2015/q3/308 https://gitlab.com/gnutls/gnutls/commit/272854367efc130fbd4f1a51840d80c630214e12 CVE-2015-6251 |
ef5b4f5f-a658-11ea-80d7-001cc0382b2f | GnuTLS -- flaw in TLS session ticket key construction The GnuTLS project reports:
Discovery 2020-06-03 Entry 2020-06-04 gnutls < 3.6.14 https://gnutls.org/security-new.html#GNUTLS-SA-2020-06-03 CVE-2020-13777 |
f645aa90-a3e8-11e3-a422-3c970e169bc2 | gnutls -- multiple certificate verification issues GnuTLS project reports:
Discovery 2014-03-03 Entry 2014-03-04 Modified 2014-04-30 gnutls < 2.12.23_4 linux-f10-gnutls < 2.12.23_4 gnutls-devel < 3.1.22 gt 3.2.0 lt 3.2.12 gnutls3 < 3.1.22 gt 3.2.0 lt 3.2.12 CVE-2014-0092 CVE-2014-1959 http://www.gnutls.org/security.html#GNUTLS-SA-2014-1 http://www.gnutls.org/security.html#GNUTLS-SA-2014-2 |
fb30db8f-62af-11e9-b0de-001cc0382b2f | GnuTLS -- double free, invalid pointer access The GnuTLS project reports:
Discovery 2019-03-27 Entry 2019-04-19 gnutls < 3.6.7 https://www.gnutls.org/security-new.html#GNUTLS-SA-2019-03-27 CVE-2019-3829 CVE-2019-3836 |