FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 03:12:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
7e69f00d-632a-11e0-9f3a-001d092480a4isc-dhcp-client -- dhclient does not strip or escape shell meta-characters

ISC reports:

ISC dhclient did not strip or escape certain shell meta-characters in responses from the dhcp server (like hostname) before passing the responses on to dhclient-script. Depending on the script and OS, this can result in execution of exploit code on the client.


Discovery 2011-04-05
Entry 2011-04-10
isc-dhcp31-client
< 3.1.ESV_1,1

isc-dhcp41-client
< 4.1.e,2

CVE-2011-0997
107886
c444c8b7-7169-11de-9ab7-000c29a67389isc-dhcp-client -- Stack overflow vulnerability

US-CERT reports:

The ISC DHCP dhclient application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code with root privileges.


Discovery 2009-07-14
Entry 2009-07-15
Modified 2009-07-21
isc-dhcp31-client
le 3.1.1

isc-dhcp30-client
< 3.0.7_1

CVE-2009-0692
https://www.isc.org/node/468
http://secunia.com/advisories/35785
http://www.kb.cert.org/vuls/id/410676