Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
1.1_1 05 Oct 2006 14:31:50
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document slapd acl selfwrite Security Issue in openldap |
1.1_1 05 Oct 2006 14:00:57
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document "System.CodeDom.Compiler" Insecure Temporary Creation in mono |
1.1_1 05 Oct 2006 05:24:37
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document open_basedir Race Condition Vulnerability in php |
1.1_1 04 Oct 2006 17:10:46
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document NULL byte injection vulnerability in phpbb |
1.1_1 04 Oct 2006 10:27:16
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Add references and use earlier discovery date in
fffa9257-3c17-11db-86ab-00123ffe8333 |
1.1_1 03 Oct 2006 12:14:22
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Add CVE names to 19b17ab4-51e0-11db-a5ae-00508d6a62df |
1.1_1 03 Oct 2006 12:10:50
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document admin section SQL injection in postnuke |
1.1_1 02 Oct 2006 12:39:24
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document LWFN Files Buffer Overflow Vulnerability in freetype |
1.1_1 02 Oct 2006 12:21:55
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document Buffer Overflow Vulnerabilities in cscope |
1.1_1 02 Oct 2006 12:05:49
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document RSA Signature Forgery Vulnerability in gnutls |
1.1_1 02 Oct 2006 11:50:49
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document Search Unspecified XSS in MT |
1.1_1 02 Oct 2006 11:38:14
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Update dokuwiki advisories |
1.1_1 02 Oct 2006 06:59:06
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document latest XSRF vulnerabilities in phpmyadmin |
1.1_1 01 Oct 2006 07:34:35
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Mark gtetrinet 0.7.10 safe |
1.1_1 30 Sep 2006 20:52:36
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document openssh -- multiple vulnerabilities AKA
FreeBSD-SA-06:22.openssh. |
1.1_1 30 Sep 2006 10:25:32
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document multiple vulnerabilities in dokuwiki |
1.1_1 30 Sep 2006 09:36:44
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document multiple vulnerabilities in tikiwiki |
1.1_1 30 Sep 2006 09:10:14
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document NULL byte injection vulnerability in punbb |
1.1_1 26 Sep 2006 18:43:41
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Concisify a Secunia report
- Use <gt>0 for an unpatched bug
Suggested by: simon |
1.1_1 26 Sep 2006 06:29:20
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document (another) Denial of Service Vulnerability in freeciv |
1.1_1 26 Sep 2006 06:12:16
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document Packet Parsing Denial of Service Vulnerability in freeciv |
1.1_1 26 Sep 2006 05:47:04
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document multiple vulnerabilities in plans |
1.1_1 26 Sep 2006 05:27:16
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Update the unace advisory |
1.1_1 25 Sep 2006 19:38:39
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document multiple XSS security bugs in eyeOS |
1.1_1 22 Sep 2006 13:05:33
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document restructuredText "csv_table" Information Disclosure in zope |
1.1_1 22 Sep 2006 12:23:28
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document stack-based buffer overflow in libmms |
1.1_1 22 Sep 2006 07:08:56
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document Opera SSL RSA Signature Forgery |
1.1_1 22 Sep 2006 05:59:58
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Bump modified data which was missed in last commit. |
1.1_1 21 Sep 2006 17:07:15
![files touched by this commit files touched by this commit](/images/logs.gif) |
sat ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Mark latest linux-{firefox,seamonkey}-devel safe |
1.1_1 15 Sep 2006 10:18:04
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document mozilla -- multiple vulnerabilities. |
1.1_1 14 Sep 2006 14:26:44
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
In the PHP entry, replace mod-php with mod_php [1].
Rewrite the win32-codecs entry to even better explain the vulnerability [2].
Noticed by: Dan Langille (with FreshPorts.org) [1]
Discussed with: simon [2] |
1.1_1 14 Sep 2006 11:31:27
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Try to explain a bit better that users who have the Quicktime plugin
as a browser plugin can be directly affected by the remote code
execution.
Also mention that I changed the entry date in the previous entry
(PHP) which I had forgotten to do yesterday and did not mention
in the previous commit. |
1.1_1 14 Sep 2006 11:03:34
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document win32-codecs -- multiple vulnerabilities |
1.1_1 13 Sep 2006 22:07:28
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Attempt two:
Document php -- multiple vulnerabilities |
1.1_1 13 Sep 2006 22:01:57
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
OK, I do not know WHAT went wrong but it went wrong, revert to the old
situation and i will re-adopt the PHP entry. |
1.1_1 13 Sep 2006 21:53:27
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document php -- multiple vulnerabilities |
1.1_1 13 Sep 2006 18:39:38
![files touched by this commit files touched by this commit](/images/logs.gif) |
novel ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Cancel latest gnutls entry (GNUTLS-SA-2006-3) - it is a false alarm:
http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001208.html |
1.1_1 13 Sep 2006 18:03:26
![files touched by this commit files touched by this commit](/images/logs.gif) |
brooks ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Upgrade drupal-pubcookie to the latest version fixing a security hole
allowing anyone to bypass the authenication system and become an
arbitrary drupal user.
Security: vid:c0fd7890-4346-11db-89cc-000ae42e9b93 |
1.1_1 13 Sep 2006 15:17:36
![files touched by this commit files touched by this commit](/images/logs.gif) |
novel ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Style neats for the latest gnutls entry.
Reviewed by: remko |
1.1_1 12 Sep 2006 20:48:18
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
correct the tomcat entry (change the ,5 to _5 since we talk about PORTREVISION
instead of PORTEPOCH) [1]
correct the jdk -- jar directory traversal vulnerability entry, the
FreeBSD Foundation uses different package names [2], [3].
For both entries the modification date was bumped.
Reported by: Gabor Kovesdan (on #bsdports) [1]
David Robillard <david dot robillard at gmail dot com>
[2]
Tim Zingelman <zingelman at fnal dot gov> |
1.1_1 12 Sep 2006 20:31:47
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document linux-flashplugin7 -- arbitrary code execution vulnerabilities. |
1.1_1 11 Sep 2006 13:02:11
![files touched by this commit files touched by this commit](/images/logs.gif) |
lawrance ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Mark jakarta-tomcat5 as fixed since 5.0.30,5 regarding minor XSS issue. |
1.1_1 10 Sep 2006 17:50:17
![files touched by this commit files touched by this commit](/images/logs.gif) |
novel ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add an info about GNUTLS-SA-2006-3. |
1.1_1 04 Sep 2006 14:59:30
![files touched by this commit files touched by this commit](/images/logs.gif) |
mnag ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- mailman -- Multiple Vulnerabilities |
1.1_1 03 Sep 2006 14:24:45
![files touched by this commit files touched by this commit](/images/logs.gif) |
garga ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Bump modification date for last jabber entry change
Noted by: remko |
1.1_1 03 Sep 2006 12:51:30
![files touched by this commit files touched by this commit](/images/logs.gif) |
garga ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Fix jabber entry |
1.1_1 02 Sep 2006 19:47:15
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document hlstats -- multiple cross site scripting vulnerabilities. |
1.1_1 02 Sep 2006 19:27:03
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document gtetrinet -- remote code execution |
1.1_1 02 Sep 2006 18:32:42
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Bump modified date in the entry changed by garga.
Forgotten by: garga |
1.1_1 02 Sep 2006 17:14:27
![files touched by this commit files touched by this commit](/images/logs.gif) |
garga ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
net-im/jabber -- Mark the correct versions with fd_set vulnerability, author
fixed the problem on trunk and 2 new releases (1.4.3.1 and 1.4.4.1) is comming
soon |
1.1_1 30 Aug 2006 18:14:23
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Update the latest FreeBSD-SA entry, ppp got replaced by sppp.
Also implement a suggestion from Simon, mark all versions before
the latest version vulnerable. |
1.1_1 30 Aug 2006 12:32:07
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document joomla -- multiple vulnerabilities
Note that I only documented the high level
threats, there are several others which can
be found at the link provided [1]
Reference: http://www.joomla.org/content/view/1841/78/ [1] |
1.1_1 23 Aug 2006 23:09:56
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document FreeBSD-SA-06:18.ppp |
1.1_1 20 Aug 2006 10:40:53
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Minor whitespace cleanup (we need a blank line every after </entry>
so that we can easily see the different entries). |
1.1_1 18 Aug 2006 02:31:06
![files touched by this commit files touched by this commit](/images/logs.gif) |
shaun ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Add imp to the previous entry.
- Add some SecurityFocus BIDs too. |
1.1_1 17 Aug 2006 22:54:47
![files touched by this commit files touched by this commit](/images/logs.gif) |
shaun ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document horde -- Phishing and Cross-Site Scripting Vulnerabilities. |
1.1_1 15 Aug 2006 21:26:36
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Convert 8 spaces to tab as per the FDP for the latest
entry. |
1.1_1 15 Aug 2006 21:09:15
![files touched by this commit files touched by this commit](/images/logs.gif) |
brooks ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add entry for globus tmpfile creation bugs. |
1.1_1 15 Aug 2006 20:07:50
![files touched by this commit files touched by this commit](/images/logs.gif) |
brueffer ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
The lang/f2c port has been updated, update affected versions.
Reviewed by: simon |
1.1_1 13 Aug 2006 20:33:47
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document x11vnc -- authentication bypass vulnerability.
The 1.1111th commit, yay. |
1.1_1 13 Aug 2006 19:28:13
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document alsaplayer -- multiple vulnerabilities. |
1.1_1 13 Aug 2006 16:44:13
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document postgresql -- encoding based SQL injection.
Reported by: Radim Kolar <hsn at netmag dot cz> |
1.1_1 13 Aug 2006 15:33:34
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Bump modified date in the older entry I just corrected.
Spotted by: simon (again) |
1.1_1 13 Aug 2006 15:25:17
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document postgresql -- multiple vulnerabilities.
These are all older vulnerabilities which had not yet been documented
by the Security Team.
Also fix a minor mistake in an older PostgreSQL entry. |
1.1_1 13 Aug 2006 14:14:56
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Fix the discovery date in the latest MySQL entry.
Spotted by: simon |
1.1_1 13 Aug 2006 13:40:40
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document mysql -- format string vulnerability. |
1.1_1 12 Aug 2006 19:44:22
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
OK after some more discussions with Simon it appeared that the ,2
marked all future releases of squirrelmail as vulnerable.
The negative side-effect of PORTEPOCH. Split the previous entry
into two seperated entries again, restoring the old entry for
squirrelmail, and having the 'new' entry for ja-squirrelmail.
This would grab any future versions of ja-squirrelmail if it were
to be readded, and does not conflict with future versions of
squirrelmail.
For more information about the portepoch discussion etc:
http://lists.freebsd.org/pipermail/freebsd-vuxml/2006-July/000185.html |
1.1_1 12 Aug 2006 18:36:38
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Simon provided me with the necessary clue to mark the appropriate ports
as vulnerable. I was soo close.. |
1.1_1 12 Aug 2006 17:10:26
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document squirrelmail -- random variable overwrite vulnerability.
Note that I marked all ja-squirrelmail entries as vulnerable, it
does no longer exist on it's own and the portepoch is giving me
matching problems. |
1.1_1 10 Aug 2006 21:06:26
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document rubygem-rails -- evaluation of ruby code.
Submitted by: Marius Nuennerich <marius.nuennerich@gmx.net> |
1.1_1 08 Aug 2006 20:01:12
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add CVE name to recent ClamAV entry. |
1.1_1 08 Aug 2006 14:46:36
![files touched by this commit files touched by this commit](/images/logs.gif) |
garga ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document clamav and clamav-devel vulnerability
Reviewed by: secteam (mnag) |
1.1_1 08 Aug 2006 14:03:32
![files touched by this commit files touched by this commit](/images/logs.gif) |
mnag ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Fix discovery date in latest entry
- Remove extra "." in latest entry |
1.1_1 02 Aug 2006 22:24:21
![files touched by this commit files touched by this commit](/images/logs.gif) |
brooks ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Update drupal to 4.6.9 to fix yet another XSS vulnerability.
Security: vuxml vid c905298c-2274-11db-896e-000ae42e9b93 |
1.1_1 02 Aug 2006 01:40:25
![files touched by this commit files touched by this commit](/images/logs.gif) |
kuriyama ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add recent gnupg issue. |
1.1_1 30 Jul 2006 14:07:15
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
We are not affected by: CAN-2005-0018 in the
f2c entry (43cb40b3-c8c2-11da-a672-000e0c2e438a). We do not have
the shellscript, and it is not installed.
Reported by: thierry |
1.1_1 30 Jul 2006 13:58:31
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Unbreak latest ruby entry by adding missing </lt>. |
1.1_1 30 Jul 2006 13:32:42
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Run make tidy to clean up some style issues. |
1.1_1 30 Jul 2006 13:18:32
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Only sort on entry date, not modified date. It simply causes too much
repo churn with little value to resort all entries which have been
modified. |
1.1_1 30 Jul 2006 09:58:18
![files touched by this commit files touched by this commit](/images/logs.gif) |
sem ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- The last vulnerabilities was fixed in ruby18 port |
1.1_1 29 Jul 2006 20:58:27
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
OK, I misunderstood Simon with this one. The <gt>1.8.*</gt> entry
should have stayed and I interpreted that wrong.
Pointyhat: remko |
1.1_1 29 Jul 2006 20:40:55
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Fix my previous version commit. The two entries matched twice when you
have ruby installed. You learn something new everyday...
Noticed/discussed with: simon |
1.1_1 29 Jul 2006 17:41:13
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Mark all 1.6 and 1.8 versions as vulnerable, we do not have a fix
yet and are unable to tell what the naming scheme will be with
those patches. We can narrow down the scope later, we should
not do so before we know the mentioned scheme.
Triggered by: sem |
1.1_1 29 Jul 2006 16:54:34
![files touched by this commit files touched by this commit](/images/logs.gif) |
remko ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add a BID to the latest vuxml entry.
Some minor changes to the markup of the entry. |
1.1_1 29 Jul 2006 16:34:04
![files touched by this commit files touched by this commit](/images/logs.gif) |
shaun ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- Document Ruby vulnerability. [1]
- Fix URL in previous mutt entry while here.
Reported by: Joel Hatton via freebsd-ports [1] |
1.1_1 29 Jul 2006 12:48:38
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add linux-thunderbird to mozilla -- multiple vulnerabilities entry.
Prodded by: sat |
1.1_1 28 Jul 2006 21:59:23
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document apache -- mod_rewrite ldap buffer overflow vulnerability.
Thanks to remko for doing initial list of apache package names in an
earlier VuXML entry. |
1.1_1 27 Jul 2006 23:51:20
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Fix error in latest mozilla entry which marked all firefox version as
vulnerable.
Reported by: Craig Leres |
1.1_1 27 Jul 2006 13:59:06
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document mozilla -- multiple vulnerabilities.
Note I assume that linux-firefox-devel 3.0.a2006.07.26 is fixed, I
haven't actually checked (way to many issues to check for). |
1.1_1 14 Jul 2006 11:03:58
![files touched by this commit files touched by this commit](/images/logs.gif) |
garga ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add "zope -- information disclosure vulnerability" entry
Reviewed by: simon |
1.1_1 14 Jul 2006 10:57:17
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
For latest drupal entry:
- Unbreak vuln.xml format by adding content to the references section.
- Remove vulnerabilities already documented in
40a0185f-ec32-11da-be02-000c6ec775d9. |
1.1_1 13 Jul 2006 16:19:54
![files touched by this commit files touched by this commit](/images/logs.gif) |
brooks ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add entry for drupal issues. |
1.1_1 11 Jul 2006 13:23:42
![files touched by this commit files touched by this commit](/images/logs.gif) |
erwin ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Add shoutcast crosssite scripting.
Submitted by: gabor
Reviewed by: simon |
1.1_1 11 Jul 2006 12:24:24
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Cancel VID 0a4cd819-0291-11db-bbf7-000c6ec775d9 / opera -- JPEG
processing integer overflow vulnerability, since it turns out that the
issue does not affect the FreeBSD or Linux versions of Opera.
Source: http://www.opera.com/support/search/supsearch.dml?index=834 |
1.1_1 11 Jul 2006 11:23:47
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Correct dates in latest mambo entry by resetting entry date and adding
a modified date.
OK'ed by: itetcu |
1.1_1 11 Jul 2006 11:04:36
![files touched by this commit files touched by this commit](/images/logs.gif) |
itetcu ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Bump modified date for previous commit.
Requested by: simon |
1.1_1 11 Jul 2006 10:19:16
![files touched by this commit files touched by this commit](/images/logs.gif) |
itetcu ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
The two two SQL injection vulnerabilities in Mambo described in
vid f70d09cb-0c46-11db-aac7-000c6ec775d9 are fixed in 4.5.4
PR: ports/100044
Submited by: maintainer |
1.1_1 10 Jul 2006 22:59:36
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Fix markup breakage that slipped in just before commit of the latest
samba entry. |
1.1_1 10 Jul 2006 22:38:50
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
Document samba -- memory exhaustion DoS in smbd. |
1.1_1 10 Jul 2006 11:48:01
![files touched by this commit files touched by this commit](/images/logs.gif) |
simon ![search for other commits by this committer search for other commits by this committer](/images/search.jpg) |
- For the latest trac entry include information from the release
announcements about setups which are not affected. To avoid having
to reference two documents simply reference the release notes for
all the information (it's basically the same as the changelog with
slightly different wording).
- Add a modified date tag. |