FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
ff5606f7-8a45-11ec-8be6-d4c9ef517024MariaDB -- Multiple vulnerabilities

MariaDB reports:

MariaDB reports 5 vulnerabilities in supported versions without further detailed information.


Discovery 2022-02-10
Entry 2022-02-10
Modified 2022-02-17
mariadb103-client
< 10.3.33

mariadb103-server
< 10.3.33

mariadb104-client
< 10.4.23

mariadb104-server
< 10.4.23

mariadb105-client
< 10.5.14

mariadb105-server
< 10.5.14

CVE-2022-24052
CVE-2022-24051
CVE-2022-24050
CVE-2022-24048
CVE-2021-46659
https://mariadb.com/kb/en/cve/
https://mariadb.com/kb/en/mdb-10333-rn/
https://mariadb.com/kb/en/mdb-10423-rn/
https://mariadb.com/kb/en/mdb-10514-rn/
c9387e4d-2f5f-11ec-8be6-d4c9ef517024MySQL -- Multiple vulnerabilities

Oracle reports:

This Critical Patch Update contains 66 new security patches for Oracle MySQL. 8 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.

The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle MySQL is 9.8.

Note: MariaDB only vulnerable against CVE-2021-35604


Discovery 2021-10-16
Entry 2021-10-17
Modified 2021-11-09
mysql57-server
< 5.7.36

mysql80-client
< 8.0.27

mysql-connector-java
< 8.0.27

mysql80-server
< 8.0.27

mariadb103-server
< 10.3.32

mariadb104-server
< 10.4.22

mariadb105-server
< 10.5.13

CVE-2021-35631
CVE-2021-35626
CVE-2021-35627
CVE-2021-35628
CVE-2021-35629
CVE-2021-35575
CVE-2021-35634
CVE-2021-35635
CVE-2021-35636
CVE-2021-35638
CVE-2021-35641
https://www.oracle.com/security-alerts/cpuoct2021.html
CVE-2021-22931
CVE-2021-3711
CVE-2021-22926
CVE-2021-36222
CVE-2021-35583
CVE-2021-35610
CVE-2021-35597
CVE-2021-35607
CVE-2021-2481
CVE-2021-35590
CVE-2021-35592
CVE-2021-35593
CVE-2021-35594
CVE-2021-35598
CVE-2021-35621
CVE-2021-2471
CVE-2021-35604
CVE-2021-35612
CVE-2021-35608
CVE-2021-35602
CVE-2021-35577
CVE-2021-2478
CVE-2021-2479
CVE-2021-35537
CVE-2021-35591
CVE-2021-35596
CVE-2021-35648
CVE-2021-35642
CVE-2021-35643
CVE-2021-35644
CVE-2021-35645
CVE-2021-35646
CVE-2021-35647
CVE-2021-35630
CVE-2021-35637
CVE-2021-35546
CVE-2021-35622
CVE-2021-35624
CVE-2021-35639
CVE-2021-35632
CVE-2021-35584
CVE-2021-35613
CVE-2021-35640
CVE-2021-35633
CVE-2021-35625
CVE-2021-35623
CVE-2021-35618
4fba07ca-13aa-11eb-b31e-d4c9ef517024MySQL -- Multiple vulnerabilities

Oracle reports:

This Critical Patch Update contains 48 new security patches for Oracle MySQL.

The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle MySQL is 8.

NOTE: MariaDB only contains CVE-2020-14812 CVE-2020-14765 CVE-2020-14776 and CVE-2020-14789


Discovery 2020-10-20
Entry 2020-10-21
Modified 2020-11-07
mariadb103-server
< 10.3.26

mariadb104-server
< 10.4.16

mariadb105-server
< 10.5.7

mysql56-server
< 5.6.50

mysql57-server
< 5.7.32

mysql80-server
< 8.0.22

CVE-2020-14786
CVE-2020-14790
CVE-2020-14844
https://www.oracle.com/security-alerts/cpuoct2020.html#AppendixMSQL
CVE-2020-14878
CVE-2020-14828
CVE-2020-14775
CVE-2020-14765
CVE-2020-14769
CVE-2020-14830
CVE-2020-14836
CVE-2020-14846
CVE-2020-14800
CVE-2020-14827
CVE-2020-14760
CVE-2020-14776
CVE-2020-14821
CVE-2020-14829
CVE-2020-14848
CVE-2020-14852
CVE-2020-14814
CVE-2020-14789
CVE-2020-14804
CVE-2020-14812
CVE-2020-14773
CVE-2020-14777
CVE-2020-14785
CVE-2020-14793
CVE-2020-14794
CVE-2020-14809
CVE-2020-14837
CVE-2020-14839
CVE-2020-14845
CVE-2020-14861
CVE-2020-14866
CVE-2020-14868
CVE-2020-14888
CVE-2020-14891
CVE-2020-14893
CVE-2020-14799
CVE-2020-14869
CVE-2020-14672
CVE-2020-14870
CVE-2020-14867
CVE-2020-14873
CVE-2020-14838
CVE-2020-14860
CVE-2020-14791
CVE-2020-14771
36d10af7-248d-11ed-856e-d4c9ef517024MariaDB -- Multiple vulnerabilities

The MariaDB project reports:

Multiple vulnerabilities, mostly segfaults, in the server component


Discovery 2022-08-22
Entry 2022-08-25
mariadb103-server
< 10.3.36

mariadb104-server
< 10.4.26

mariadb105-server
< 10.5.17

mariadb106-server
< 10.6.9

CVE-2022-32082
CVE-2022-32089
CVE-2022-32081
CVE-2018-25032
CVE-2022-32091
CVE-2022-32084
https://mariadb.com/kb/en/cve/
27bf9378-8ffd-11ec-8be6-d4c9ef517024MariaDB -- Multiple vulnerabilities

MariaDB reports:

MariaDB reports 5 vulnerabilities in supported versions resulting from fuzzing tests


Discovery 2022-02-12
Entry 2022-02-18
mariadb103-client
< 10.3.34

mariadb103-server
< 10.3.34

mariadb104-client
< 10.4.24

mariadb104-server
< 10.4.24

mariadb105-client
< 10.5.15

mariadb105-server
< 10.5.15

CVE-2021-46661
CVE-2021-46663
CVE-2021-46664
CVE-2021-46665
CVE-2021-46668
https://mariadb.com/kb/en/cve/
https://mariadb.com/kb/en/mdb-10334-rn/
https://mariadb.com/kb/en/mdb-10424-rn/
https://mariadb.com/kb/en/mdb-10515-rn/
cb0183bb-45f6-11ea-a1c7-b499baebfeafMariaDB -- Vulnerability in C API

MariaDB reports:

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client.


Discovery 2020-01-28
Entry 2020-02-02
mariadb55-client
< 5.5.67

mariadb55-server
< 5.5.67

mariadb101-client
< 10.1.44

mariadb101-server
< 10.1.44

mariadb102-client
< 10.2.31

mariadb102-server
< 10.2.31

mariadb103-client
< 10.3.22

mariadb103-server
< 10.3.22

mariadb104-client
< 10.4.12

mariadb104-server
< 10.4.12

mariadb-connector-c
< 3.1.7

https://mariadb.com/kb/en/security/
https://mariadb.com/kb/en/mdb-5567-rn/
https://mariadb.com/kb/en/mdb-10412-rn/
https://mariadb.com/kb/en/mdb-10322-rn/
https://mariadb.com/kb/en/mdb-10231-rn/
https://mariadb.com/kb/en/mdb-10144-rn/
https://mariadb.com/kb/en/mariadb-connector-c-317-release-notes/
CVE-2020-2574
fc91f2ef-fd7b-11e9-a1c7-b499baebfeafMySQL -- Multiple vulerabilities

Oracle reports:

This Critical Patch Update contains 31 new security fixes for Oracle MySQL. 6 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.


Discovery 2019-10-15
Entry 2019-11-02
mariadb55-server
< 5.5.66

mariadb101-server
< 10.1.42

mariadb102-server
< 10.2.28

mariadb103-server
< 10.3.19

mariadb104-server
< 10.4.9

mysql56-server
< 5.6.46

mysql57-server
< 5.7.28

mysql80-server
< 8.0.18

percona55-server
< 5.5.66

percona56-server
< 5.6.46

percona57-server
< 5.7.28

https://www.oracle.com/security-alerts/cpuoct2019.html
CVE-2019-5443
CVE-2019-1543
CVE-2019-3011
CVE-2019-2966
CVE-2019-2967
CVE-2019-2974
CVE-2019-2946
CVE-2019-3004
CVE-2019-2914
CVE-2019-2969
CVE-2019-2991
CVE-2019-2920
CVE-2019-2993
CVE-2019-2922
CVE-2019-2923
CVE-2019-2924
CVE-2019-2963
CVE-2019-2968
CVE-2019-3003
CVE-2019-2997
CVE-2019-2948
CVE-2019-2950
CVE-2019-2982
CVE-2019-2998
CVE-2019-2960
CVE-2019-2957
CVE-2019-2938
CVE-2019-3018
CVE-2019-3009
CVE-2019-2910
CVE-2019-2911
a2565962-1156-11eb-9c9c-d4c9ef517024MariaDB -- Undisclosed vulnerability

The MariaDB project reports:

Details of this vulnerability have not yet been disclosed


Discovery 2020-10-07
Entry 2020-10-18
mariadb103-client
< 10.3.25

mariadb103-server
< 10.3.25

mariadb104-client
< 10.4.15

mariadb104-server
< 10.4.15

mariadb105-client
< 10.5.6

mariadb105-server
< 10.5.6

https://mariadb.com/kb/en/mariadb-1056-release-notes/
https://mariadb.com/kb/en/mariadb-10415-release-notes/
https://mariadb.com/kb/en/mariadb-10325-release-notes/
CVE-2020-15180
38a4a043-e937-11eb-9b84-d4c9ef517024MySQL -- Multiple vulnerabilities

Oracle reports:

This Critical Patch Update contains 41 new security patches for Oracle MySQL. 10 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.

The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle MySQL is 8.8.

MariaDB is affected by CVE-2021-2372 and CVE-2021-2389 only.


Discovery 2021-07-20
Entry 2021-07-20
Modified 2021-08-04
mysql57-server
< 5.7.35

mysql80-server
< 8.0.26

mariadb103-server
< 10.3.31

mariadb104-server
< 10.4.21

mariadb105-server
< 10.5.12

https://www.oracle.com/security-alerts/cpujul2021.html
CVE-2019-17543
CVE-2021-2339
CVE-2021-2340
CVE-2021-2342
CVE-2021-2352
CVE-2021-2354
CVE-2021-2356
CVE-2021-2357
CVE-2021-2367
CVE-2021-2370
CVE-2021-2372
CVE-2021-2374
CVE-2021-2383
CVE-2021-2384
CVE-2021-2385
CVE-2021-2387
CVE-2021-2389
CVE-2021-2390
CVE-2021-2399
CVE-2021-2402
CVE-2021-2410
CVE-2021-2411
CVE-2021-2412
CVE-2021-2417
CVE-2021-2418
CVE-2021-2422
CVE-2021-2424
CVE-2021-2425
CVE-2021-2426
CVE-2021-2427
CVE-2021-2429
CVE-2021-2437
CVE-2021-2440
CVE-2021-2441
CVE-2021-2444
CVE-2021-3450
CVE-2021-22884
CVE-2021-22901
21d59ea3-8559-11ea-a5e2-d4c9ef517024MySQL Server -- Multiple vulerabilities

Oracle reports:

This Critical Patch Update contains 45 new security patches for Oracle MySQL. 9 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.

MariaDB reports 4 of these vulnerabilities exist in their software


Discovery 2020-04-14
Entry 2020-04-23
Modified 2020-05-16
mariadb101-server
< 10.1.45

mariadb102-server
< 10.2.32

mariadb103-server
< 10.3.23

mariadb104-server
< 10.4.13

mysql56-server
< 5.6.48

mysql57-server
< 5.7.30

mysql80-server
< 8.0.20

percona55-server
< 5.5.68

percona56-server
< 5.6.48

percona57-server
< 5.7.30

https://www.oracle.com/security-alerts/cpujan2020.html
CVE-2019-5482
CVE-2019-15601
CVE-2020-2780
CVE-2020-2790
CVE-2020-2768
CVE-2020-2804
CVE-2020-2760
CVE-2020-2806
CVE-2020-2762
CVE-2020-2814
CVE-2020-2893
CVE-2020-2895
CVE-2020-2898
CVE-2020-2903
CVE-2020-2896
CVE-2020-2770
CVE-2020-2765
CVE-2020-2892
CVE-2020-2897
CVE-2020-2923
CVE-2020-2924
CVE-2020-2901
CVE-2020-2928
CVE-2020-2904
CVE-2020-2925
CVE-2020-2759
CVE-2020-2763
CVE-2020-2761
CVE-2020-2774
CVE-2020-2853
CVE-2020-2779
CVE-2020-2812
CVE-2019-1547
CVE-2020-2926
CVE-2020-2921
CVE-2020-2930
198e6220-ac8b-11e9-a1c7-b499baebfeafMySQL -- Multiple vulerabilities

Oracle reports:

This Critical Patch Update contains 45 new security fixes for Oracle MySQL. 4 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.


Discovery 2019-07-16
Entry 2019-07-22
mariadb55-server
< 5.5.65

mariadb101-server
< 10.1.41

mariadb102-server
< 10.2.26

mariadb103-server
< 10.3.17

mariadb104-server
< 10.4.7

mysql56-server
< 5.6.45

mysql57-server
< 5.7.27

mysql80-server
< 8.0.17

percona55-server
< 5.5.65

percona56-server
< 5.6.45

percona57-server
< 5.7.27

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
CVE-2019-2730
CVE-2019-2731
CVE-2019-2737
CVE-2019-2738
CVE-2019-2739
CVE-2019-2740
CVE-2019-2741
CVE-2019-2743
CVE-2019-2746
CVE-2019-2747
CVE-2019-2752
CVE-2019-2755
CVE-2019-2757
CVE-2019-2758
CVE-2019-2774
CVE-2019-2778
CVE-2019-2780
CVE-2019-2784
CVE-2019-2785
CVE-2019-2789
CVE-2019-2791
CVE-2019-2795
CVE-2019-2796
CVE-2019-2797
CVE-2019-2798
CVE-2019-2800
CVE-2019-2801
CVE-2019-2802
CVE-2019-2803
CVE-2019-2805
CVE-2019-2808
CVE-2019-2810
CVE-2019-2811
CVE-2019-2812
CVE-2019-2814
CVE-2019-2815
CVE-2019-2819
CVE-2019-2822
CVE-2019-2826
CVE-2019-2830
CVE-2019-2834
CVE-2019-2879
CVE-2019-3822
4e1997e8-5de0-11e9-b95c-b499baebfeafMySQL -- multiple vulnerabilities

Oracle reports:

Critical Patch Update Oracle MySQL Executive Summary

This Critical Patch Update contains 44 new security fixes for Oracle MySQL. 3 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.

The Oracle MySQL products and versions affected by vulnerabilities that are fixed in this Critical Patch Update are: MySQL Server, versions 5.6.43 and prior, 5.7.25 and prior, 8.0.15 and prior

Further details will be published by Oracle on 2019-04-16


Discovery 2019-04-13
Entry 2019-04-13
mariadb55-server
< 5.5.64

mariadb101-server
< 10.1.39

mariadb102-server
< 10.2.23

mariadb103-server
< 10.3.14

mysql56-server
< 5.6.44

mysql57-server
< 5.7.26

mysql80-server
< 8.0.15

percona55-server
< 5.5.64

percona56-server
< 5.6.44

percona57-server
< 5.7.26

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
04fecc47-dad2-11ec-8fbd-d4c9ef517024MariaDB -- Multiple vulnerabilities

The MariaDB project reports:

MariaDB fixed 23 vulnerabilities across all supported versions


Discovery 2022-05-20
Entry 2022-05-23
mariadb103-client
< 10.3.35

mariadb103-server
< 10.3.35

mariadb104-client
< 10.4.25

mariadb104-server
< 10.4.25

mariadb105-client
< 10.5.16

mariadb105-server
< 10.5.16

mariadb106-client
< 10.6.8

mariadb106-server
< 10.6.8

CVE-2021-46669
CVE-2022-27376
CVE-2022-27377
CVE-2022-27378
CVE-2022-27379
CVE-2022-27380
CVE-2022-27381
CVE-2022-27382
CVE-2022-27383
CVE-2022-27384
CVE-2022-27386
CVE-2022-27387
CVE-2022-27444
CVE-2022-27445
CVE-2022-27446
CVE-2022-27447
CVE-2022-27448
CVE-2022-27449
CVE-2022-27451
CVE-2022-27452
CVE-2022-27455
CVE-2022-27456
CVE-2022-27457
CVE-2022-27458
https://mariadb.com/kb/en/security/#full-list-of-cves-fixed-in-mariadb
56ba4513-a1be-11eb-9072-d4c9ef517024MySQL -- Multiple vulnerabilities

Oracle reports:

This Critical Patch Update contains 49 new security patches for Oracle MySQL. 10 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.

The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle MySQL is 9.8.

MariaDB is affected by CVE-2021-2166 and CVE-2021-2154 only


Discovery 2021-04-20
Entry 2021-04-20
Modified 2021-05-04
mariadb103-server
< 10.3.29

mariadb104-server
< 10.4.19

mariadb105-server
< 10.5.10

mysql56-server
< 5.6.52

mysql57-server
< 5.7.34

mysql80-server
< 8.0.24

https://www.oracle.com/security-alerts/cpuapr2021.html
https://mariadb.com/kb/en/mariadb-10510-release-notes/
CVE-2020-8277
CVE-2020-1971
CVE-2021-3449
CVE-2020-28196
CVE-2021-23841
CVE-2021-2144
CVE-2021-2172
CVE-2021-2298
CVE-2021-2178
CVE-2021-2202
CVE-2021-2307
CVE-2021-2304
CVE-2021-2180
CVE-2021-2194
CVE-2021-2154
CVE-2021-2166
CVE-2021-2196
CVE-2021-2300
CVE-2021-2305
CVE-2021-2179
CVE-2021-2226
CVE-2021-2160
CVE-2021-2164
CVE-2021-2169
CVE-2021-2170
CVE-2021-2193
CVE-2021-2203
CVE-2021-2212
CVE-2021-2213
CVE-2021-2278
CVE-2021-2299
CVE-2021-2230
CVE-2021-2146
CVE-2021-2201
CVE-2021-2208
CVE-2021-2215
CVE-2021-2217
CVE-2021-2293
CVE-2021-2174
CVE-2021-2171
CVE-2021-2162
CVE-2021-2301
CVE-2021-2308
CVE-2021-2232