FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
0f798bd6-8325-11ea-9a78-08002728f74clibntlm -- buffer overflow vulnerability

NVD reports:

Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request.


Discovery 2019-10-08
Entry 2020-04-21
libntlm
lt 1.6

https://gitlab.com/jas/libntlm/-/issues/2
https://nvd.nist.gov/vuln/detail/CVE-2019-17455
CVE-2019-17455