This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-05-25 07:15:41 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
f714d8ab-028e-11e7-8042-50e549ebab6c | kio: Information Leak when accessing https when using a malicious PAC file Albert Astals Cid reports:
Discovery 2017-02-28 Entry 2017-03-11 kdelibs < 4.14.29_10 kf5-kio < 5.31.0_1 https://www.kde.org/info/security/advisory-20170228-1.txt |
29dd0065-81fa-11d9-a9e7-0001020eed82 | kdelibs -- insecure temporary file creation Davide Madrisan reports:
Note: dcopidlng is only used at build time, so only users installing KDE are vulnerable, not users already running KDE. Discovery 2005-01-21 Entry 2005-02-18 Modified 2005-02-20 kdelibs ja-kdelibs < 3.3.2_5 CVE-2005-0365 http://bugs.kde.org/show_bug.cgi?id=97608 http://marc.theaimsgroup.com/?l=bugtraq&m=110814653804757 |
06404241-b306-11d9-a788-0001020eed82 | kdelibs -- kimgio input validation errors A KDE Security Advisory reports:
Discovery 2005-04-21 Entry 2005-04-22 kdelibs ge 3.2 lt 3.4.0_2 CVE-2005-1046 http://bugs.kde.org/102328 http://www.kde.org/info/security/advisory-20050421-1.txt |
0baee383-356c-11e7-b9a9-50e549ebab6c | kauth: Local privilege escalation Albert Astals Cid reports:
Discovery 2017-05-10 Entry 2017-05-10 kdelibs < 4.14.30_4 kf5-kauth < 5.33.0_1 CVE-2017-8422 http://www.openwall.com/lists/oss-security/2017/05/10/3 https://www.kde.org/info/security/advisory-20170510-1.txt |
972697a7-9a42-11d9-a256-0001020eed82 | kdelibs -- local DCOP denial of service vulnerability A KDE Security Advisory reports:
Discovery 2005-03-16 Entry 2005-03-21 ja-kdelibs kdelibs-nocups kdelibs < 3.4.0 CVE-2005-0396 http://www.kde.org/info/security/advisory-20050316-1.txt |
14ad2a28-66d2-11dc-b25f-02e0185f8d72 | konquerer -- address bar spoofing The KDE development team reports:
Discovery 2007-09-14 Entry 2007-09-19 kdebase < 3.5.7_3 kdelibs < 3.5.7_2 CVE-2007-3820 CVE-2007-4224 CVE-2007-4225 http://www.kde.org/info/security/advisory-20070914-1.txt |
2f90556f-18c6-11e4-9cc4-5453ed2e2b49 | kdelibs -- KAuth PID Reuse Flaw Martin Sandsmark reports:
Discovery 2014-07-30 Entry 2014-07-31 kdelibs < 4.12.5_3 CVE-2014-5033 http://lists.kde.org/?l=kde-announce&m=140674898412923&w=2 |
d8fbf13a-6215-11db-a59e-0211d85f11fb | kdelibs -- integer overflow in khtml Red Hat reports:
Discovery 2006-10-14 Entry 2006-10-22 kdelibs kdelibs-nocups < 3.5.4_4 qt qt-copy < 3.3.6_3 CVE-2006-4811 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=210742 http://rhn.redhat.com/errata/RHSA-2006-0720.html |
4472ab39-6c66-11e6-9ca5-50e549ebab6c | kdelibs -- directory traversal vulnerability David Faure reports:
Discovery 2016-07-24 Entry 2016-08-27 kdelibs < 4.14.10_7 CVE-2016-6232 https://www.kde.org/info/security/advisory-20160724-1.txt |
832e9d75-5bfc-11d9-a9e7-0001020eed82 | kdelibs3 -- konqueror FTP command injection vulnerability Albert Puigsech Galicia reports that Konqueror (more specifically kio_ftp) and Microsoft Internet Explorer are vulnerable to a FTP command injection vulnerability which can be exploited by tricking an user into clicking a specially crafted FTP URI. It is also reported by Ian Gulliver and Emanuele Balla that this vulnerability can be used to tricking a client into sending out emails without user interaction. Discovery 2004-12-01 Entry 2005-01-01 Modified 2005-01-04 ja-kdelibs kdelibs < 3.3.2_2 11827 CVE-2004-1165 http://marc.theaimsgroup.com/?l=bugtraq&m=110245752232681 http://marc.theaimsgroup.com/?l=full-disclosure&m=110387390226693 http://marc.theaimsgroup.com/?l=full-disclosure&m=110390734925183 http://www.kde.org/info/security/advisory-20050101-1.txt |