FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
e4d9dffb-2a32-11ea-9693-e1b3f6feec79OpenEXR -- heap buffer overflow, and out-of-memory bugs

Cary Phillips reports:

OpenEXR (IlmBase) v2.4.0 fixes the following security vulnerabilities:

  • CVE-2018-18444 Issue #351 Out of Memory
  • CVE-2018-18443 Issue #350 heap-buffer-overflow

The relevant patches have been backported to the FreeBSD ports.


Discovery 2018-10-17
Entry 2019-12-29
ilmbase
lt 2.3.0_4

openexr
lt 2.3.0_3

https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v2.4.0
https://github.com/AcademySoftwareFoundation/openexr/issues/350
https://github.com/AcademySoftwareFoundation/openexr/issues/351
CVE-2018-18443
CVE-2018-18444