FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
2bab995f-36d4-11ea-9dad-002590acae31Template::Toolkit -- Directory traversal on write

Art Manion and Will Dormann report:

By using an older and less-secure form of open(), it is possible for untrusted template files to cause reads/writes outside of the template directories. This vulnerability is a component of the recent Citrix exploit.


Discovery 2019-12-13
Entry 2020-01-14
p5-Template-Toolkit
lt 3.004

https://www.kb.cert.org/vuls/id/619785/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19781
CVE-2019-19781