This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-05-09 22:37:04 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
fc9c217e-3791-11dc-bb1a-000fea449b8a | lighttpd -- multiple vulnerabilities Secunia Advisory reports:
Discovery 2007-07-20 Entry 2007-07-21 Modified 2010-05-12 lighttpd < 1.4.15_1 CVE-2007-3947 CVE-2007-3948 CVE-2007-3949 CVE-2007-3950 http://trac.lighttpd.net/trac/ticket/1216 http://trac.lighttpd.net/trac/ticket/1232 http://trac.lighttpd.net/trac/ticket/1230 http://trac.lighttpd.net/trac/ticket/1263 |
ef0033ad-5823-11e6-80cc-001517f335e2 | lighttpd - multiple vulnerabilities Lighttpd Project reports:
Discovery 2016-07-31 Entry 2016-08-03 lighttpd < 1.4.41 http://www.lighttpd.net/2016/7/31/1.4.41/ ports/211495 |
bdad9ada-8a52-11d9-9e53-000a95bc6fae | lighttpd -- script source disclosure vulnerability The lighttpd website reports:
The vulnerability is in the handling of urlencoded trailing NUL bytes. Installations that do not use CGI or FastCGI are not affected. Discovery 2005-02-12 Entry 2005-03-01 lighttpd < 1.3.8 CVE-2005-0453 http://article.gmane.org/gmane.comp.web.lighttpd/1171 http://www.lighttpd.net/news/ http://xforce.iss.net/xforce/xfdb/19350 12567 |
92a6efd0-e40d-11e8-ada4-408d5cf35399 | lighttpd - use-after-free vulnerabilities Lighttpd Project reports:
Discovery 2018-08-26 Entry 2018-11-09 lighttpd < 1.4.51 https://www.lighttpd.net/2018/10/14/1.4.51/ ports/232278 |
fb911e31-8ceb-11dd-bb29-000c6e274733 | lighttpd -- multiple vulnerabilities Lighttpd seurity annoucement:
Discovery 2008-09-26 Entry 2008-09-27 Modified 2009-02-22 lighttpd < 1.4.19_3 31434 CVE-2008-4298 CVE-2008-4359 CVE-2008-4360 http://www.lighttpd.net/security/lighttpd_sa_2008_05.txt http://www.lighttpd.net/security/lighttpd_sa_2008_06.txt http://www.lighttpd.net/security/lighttpd_sa_2008_07.txt |
c6521b04-314b-11e1-9cf4-5404a67eef98 | lighttpd -- remote DoS in HTTP authentication US-CERT/NIST reports:
Discovery 2011-11-29 Entry 2011-12-28 lighttpd < 1.4.30 CVE-2011-4362 |
4b673ae7-5f9a-11dc-84dd-000102cc8983 | lighttpd -- FastCGI header overrun in mod_fastcgi lighttpd maintainer reports:
Discovery 2007-09-09 Entry 2007-09-10 lighttpd < 1.4.18 http://www.lighttpd.net/assets/2007/9/9/lighttpd_sa_2007_12.txt http://secweb.se/en/advisories/lighttpd-fastcgi-remote-vulnerability/ CVE-2007-4727 |
1a3bd81f-1b25-11df-bd1a-002170daae37 | lighttpd -- denial of service vulnerability Lighttpd security advisory reports:
Discovery 2010-02-02 Entry 2010-02-16 lighttpd < 1.4.26 38036 CVE-2010-0295 http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2010_01.txt |
dd7f29cc-3ee9-11e5-93ad-002590263bf5 | lighttpd -- Log injection vulnerability in mod_auth MITRE reports:
Discovery 2015-05-25 Entry 2015-08-10 lighttpd < 1.4.36 CVE-2015-3200 http://redmine.lighttpd.net/issues/2646 |
90b27045-9530-11e3-9d09-000c2980a9f3 | lighttpd -- multiple vulnerabilities lighttpd security advisories report:
Discovery 2013-11-28 Entry 2014-02-14 lighttpd < 1.4.34 http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2013_01.txt http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2013_02.txt http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2013_03.txt CVE-2013-4508 CVE-2013-4559 CVE-2013-4560 |
1ac77649-0908-11dd-974d-000fea2763ce | lighttpd -- OpenSSL Error Queue Denial of Service Vulnerability Secunia reports:
Discovery 2008-04-02 Entry 2008-04-13 lighttpd < 1.4.19_1 28489 CVE-2008-1531 http://secunia.com/advisories/29649 http://trac.lighttpd.net/trac/ticket/285 |
5678da43-ea99-11db-a802-000fea2763ce | lighttpd -- DOS when access files with mtime 0 Lighttpd SA:
Discovery 2007-01-14 Entry 2007-04-14 lighttpd < 1.4.15 CVE-2007-1870 http://www.lighttpd.net/assets/2007/4/13/lighttpd_sa2007_02.txt |