FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-29 10:45:39 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b5ffaa2a-ee50-4498-af99-61bc1b163c00	leafnode -- denial of service vulnerability Matthias Andree reports: A vulnerability was found in the fetchnews program (the NNTP client) that may under some circumstances cause a wait for input that never arrives, fetchnews "hangs". [...] As only one fetchnews program can run at a time, subsequently started fetchnews and texpire programs will terminate. [...] Upgrade your leafnode package to version 1.11.3. Discovery 2005-06-08 Entry 2005-06-09 leafnode < 1.11.3 CVE-2005-1911 http://leafnode.sourceforge.net/leafnode-SA-2005-02.txt ports/82056 http://marc.theaimsgroup.com/?l=vulnwatch&m=111827180929063
66dbb2ee-99b8-45b2-bb3e-640caea67a60	leafnode -- fetchnews denial-of-service triggered by transmission abort/timeout When an upstream server aborts the transmission or stops sending data after the fetchnews program has requested an article header or body, fetchnews may crash, without querying further servers that are configured. This can prevent articles from being fetched. Discovery 2005-05-04 Entry 2005-05-13 leafnode ge 1.9.48 lt 1.11.2 http://leafnode.sourceforge.net/leafnode-SA-2005-01.txt CVE-2005-1453 ports/80663 13489 13492 http://sourceforge.net/mailarchive/forum.php?thread_id=7186974&forum_id=10210 http://article.gmane.org/gmane.network.leafnode.announce/52 http://www.dt.e-technik.uni-dortmund.de/pipermail/leafnode-list/2005q2/000900.html http://www.fredi.de/maillist/msg00111.html http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0037.html http://www.frsirt.com/english/advisories/2005/0468 http://secunia.com/advisories/15252

VuXML ID

Description

b5ffaa2a-ee50-4498-af99-61bc1b163c00

leafnode -- denial of service vulnerability

Matthias Andree reports:

A vulnerability was found in the fetchnews program (the NNTP client) that may under some circumstances cause a wait for input that never arrives, fetchnews "hangs". [...]

As only one fetchnews program can run at a time, subsequently started fetchnews and texpire programs will terminate. [...]

Upgrade your leafnode package to version 1.11.3.

Discovery 2005-06-08
Entry 2005-06-09
leafnode

< 1.11.3

CVE-2005-1911
http://leafnode.sourceforge.net/leafnode-SA-2005-02.txt
ports/82056
http://marc.theaimsgroup.com/?l=vulnwatch&m=111827180929063

66dbb2ee-99b8-45b2-bb3e-640caea67a60

leafnode -- fetchnews denial-of-service triggered by transmission abort/timeout

When an upstream server aborts the transmission or stops sending data after the fetchnews program has requested an article header or body, fetchnews may crash, without querying further servers that are configured. This can prevent articles from being fetched.

Discovery 2005-05-04
Entry 2005-05-13
leafnode

ge 1.9.48 lt 1.11.2

http://leafnode.sourceforge.net/leafnode-SA-2005-01.txt
CVE-2005-1453
ports/80663
13489
13492
http://sourceforge.net/mailarchive/forum.php?thread_id=7186974&forum_id=10210
http://article.gmane.org/gmane.network.leafnode.announce/52
http://www.dt.e-technik.uni-dortmund.de/pipermail/leafnode-list/2005q2/000900.html
http://www.fredi.de/maillist/msg00111.html
http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0037.html
http://www.frsirt.com/english/advisories/2005/0468
http://secunia.com/advisories/15252