This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-25 11:22:49 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
66dbb2ee-99b8-45b2-bb3e-640caea67a60 | leafnode -- fetchnews denial-of-service triggered by transmission abort/timeout When an upstream server aborts the transmission or stops sending data after the fetchnews program has requested an article header or body, fetchnews may crash, without querying further servers that are configured. This can prevent articles from being fetched. Discovery 2005-05-04 Entry 2005-05-13 leafnode ge 1.9.48 lt 1.11.2 http://leafnode.sourceforge.net/leafnode-SA-2005-01.txt CVE-2005-1453 ports/80663 13489 13492 http://sourceforge.net/mailarchive/forum.php?thread_id=7186974&forum_id=10210 http://article.gmane.org/gmane.network.leafnode.announce/52 http://www.dt.e-technik.uni-dortmund.de/pipermail/leafnode-list/2005q2/000900.html http://www.fredi.de/maillist/msg00111.html http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0037.html http://www.frsirt.com/english/advisories/2005/0468 http://secunia.com/advisories/15252 |
7b0208ff-3f65-4e16-8d4d-48fd9851f085 | leafnode fetchnews denial-of-service triggered by missing header Fetchnews could hang when a news article to be downloaded lacked one of the mandatory headers. Found by Joshua Crawford. Discovery 2003-06-20 Entry 2004-05-21 Modified 2005-05-13 leafnode ge 1.9.3 le 1.9.41 CVE-2003-0744 http://leafnode.sourceforge.net/leafnode-SA-2003-01.txt http://sourceforge.net/mailarchive/message.php?msg_id=5975563 http://article.gmane.org/gmane.network.leafnode.announce/21 8541 ports/53838 |
a051a4ec-3aa1-4dd1-9bdc-a61eb5700153 | leafnode fetchnews denial-of-service triggered by truncated transmission When a downloaded news article ends prematurely, i. e. when the server sends [CR]LF.[CR]LF before sending a blank line, fetchnews may wait indefinitely for data that never arrives. Workaround: configure "minlines=1" (or use a bigger value) in the configuration file. Found by Toni Viemerö. Discovery 2004-01-08 Entry 2004-05-21 Modified 2005-05-13 leafnode le 1.9.47 CVE-2004-2068 http://leafnode.sourceforge.net/leafnode-SA-2004-01.txt http://sourceforge.net/tracker/index.php?func=detail&aid=873149&group_id=57767&atid=485349 http://article.gmane.org/gmane.network.leafnode.announce/32 http://sourceforge.net/mailarchive/message.php?msg_id=6922570 ports/61105 |
b5ffaa2a-ee50-4498-af99-61bc1b163c00 | leafnode -- denial of service vulnerability Matthias Andree reports:
Discovery 2005-06-08 Entry 2005-06-09 leafnode < 1.11.3 CVE-2005-1911 http://leafnode.sourceforge.net/leafnode-SA-2005-02.txt ports/82056 http://marc.theaimsgroup.com/?l=vulnwatch&m=111827180929063 |
f7a3b18c-624c-4703-9756-b6b27429e5b0 | leafnode denial-of-service triggered by article request The leafnode NNTP server may go into an unterminated loop with 100% CPU use when an article is requested by Message-ID that has been crossposted to several news groups when one of the group names is the prefix of another group name that the article was cross-posted to. Found by Jan Knutar. Discovery 2002-11-06 Entry 2004-05-21 Modified 2005-05-13 leafnode ge 1.9.20 lt 1.9.30 http://leafnode.sourceforge.net/leafnode-SA-2002-01.txt CVE-2002-1661 http://sourceforge.net/mailarchive/message.php?msg_id=2796226 http://article.gmane.org/gmane.network.leafnode.announce/8 6490 ports/46613 |