This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
0d6efbe3-52d9-11ec-9472-e3667ed6088e | mailman < 2.1.38 -- CSRF vulnerability of list mod or member against list admin page Mark Sapiro reports:
Discovery 2021-11-25 Entry 2021-12-01 mailman < 2.1.38 mailman-exim4 < 2.1.38 mailman-exim4-with-htdig < 2.1.38 mailman-postfix < 2.1.38 mailman-postfix-with-htdig < 2.1.38 mailman-with-htdig < 2.1.38 CVE-2021-44227 https://bugs.launchpad.net/mailman/+bug/1952384 https://www.mail-archive.com/mailman-users@python.org/msg73979.html |
9d7a2b54-4468-11ec-8532-0d24c37c72c8 | mailman -- 2.1.37 fixes XSS via user options, and moderator offline brute-force vuln against list admin password Mark Sapiro reports:
Discovery 2021-11-01 Entry 2021-11-13 mailman < 2.1.37 mailman-exim4 < 2.1.37 mailman-exim4-with-htdig < 2.1.37 mailman-postfix < 2.1.37 mailman-postfix-with-htdig < 2.1.37 mailman-with-htdig < 2.1.37 CVE-2021-43331 CVE-2021-43332 https://bazaar.launchpad.net/~mailman-coders/mailman/2.1/view/1879/NEWS#L8 https://bugs.launchpad.net/mailman/+bug/1949401 https://bugs.launchpad.net/mailman/+bug/1949403 |
8d65aa3b-31ce-11ec-8c32-a14e8e520dc7 | mailman -- brute-force vuln on list admin password, and CSRF vuln in releases before 2.1.35 Mark Sapiro reports:
Discovery 2021-10-18 Entry 2021-10-20 mailman < 2.1.35 mailman-with-htdig < 2.1.35 CVE-2021-42096 CVE-2021-42097 https://bazaar.launchpad.net/~mailman-coders/mailman/2.1/view/1873/NEWS#L8 https://bugs.launchpad.net/mailman/+bug/1947639 https://bugs.launchpad.net/mailman/+bug/1947640 |
88760f4d-8ef7-11ea-a66d-4b2ef158be83 | mailman -- arbitrary content injection vulnerability via options or private archive login pages Mark Sapiro reports:
Discovery 2020-04-20 Entry 2020-05-07 mailman < 2.1.30_4 ge 2.1.31 lt 2.1.33 mailman-with-htdig < 2.1.30_4 ge 2.1.31 lt 2.1.33 https://bazaar.launchpad.net/~mailman-coders/mailman/2.1/view/1845/NEWS#L8 https://bugs.launchpad.net/mailman/+bug/1873722 https://bugs.launchpad.net/mailman/+bug/1877379 https://mail.python.org/archives/list/mailman-developers@python.org/thread/SYBIZ3MNSQZLKN6PVKO7ZKR7QMOBMS45/ CVE-2018-13796 |