FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID Description

VuXML ID	Description
c848059a-318b-11ec-aa15-0800270512f4	fail2ban -- possible RCE vulnerability in mailing action using mailutils Jakub ÃÂ»oczek reports: Command `mail` from mailutils package used in mail actions like `mail-whois` can execute command if unescaped sequences (`\n~`) are available in "foreign" input (for instance in whois output). Discovery 2021-07-16 Entry 2021-10-28 py36-fail2ban py37-fail2ban py38-fail2ban py39-fail2ban py310-fail2ban < 0.11.2_3 CVE-2021-32749 https://github.com/fail2ban/fail2ban/security/advisories/GHSA-m985-3f3v-cwmm

c848059a-318b-11ec-aa15-0800270512f4

fail2ban -- possible RCE vulnerability in mailing action using mailutils

Jakub ÃÂ»oczek reports:

Command mail from mailutils package used in mail actions like mail-whois can execute command if unescaped sequences (\n~) are available in "foreign" input (for instance in whois output).

Discovery 2021-07-16
Entry 2021-10-28
py36-fail2ban
py37-fail2ban
py38-fail2ban
py39-fail2ban
py310-fail2ban

< 0.11.2_3

CVE-2021-32749
https://github.com/fail2ban/fail2ban/security/advisories/GHSA-m985-3f3v-cwmm