FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-23 14:57:51 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
1a2aa04f-3718-11e6-b3c8-14dae9d210b8libxslt -- Denial of Service

Google reports:

  • [583156] Medium CVE-2016-1683: Out-of-bounds access in libxslt. Credit to Nicolas Gregoire.
  • [583171] Medium CVE-2016-1684: Integer overflow in libxslt. Credit to Nicolas Gregoire.

Discovery 2016-05-25
Entry 2016-06-20
libxslt
< 1.1.29

http://googlechromereleases.blogspot.com/2016/05/stable-channel-update_25.html
CVE-2016-1683
CVE-2016-1684
93167bef-9752-11e9-b61c-b885849ded8elibxslt -- security framework bypass

Mitre report:

libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded.


Discovery 2019-04-10
Entry 2019-07-16
libxslt
< 1.1.33

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11068