FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Search FreshPorts using Google
not searching src
Custom Search

The FreshPorts Search


Include deleted ports Case sensitive search Sort by:
Include /src tree

Notes

  • Case sensitivity is ignored for "sounds like" and output is ordered by the soundex.
  • When searching on 'Message ID', the type of match is ignored.
  • When searching on 'Commit Message' only 'containing' is used.
  • When searching by 'Under a pathname', your path must start with something like /ports/, /doc/, or /src/. All commits under that point will be returned. The selected match type is ignored and defaults to 'Starts with'.
Number of commits: 675 (showing only 100 on this page) 1 | 2 | 3 | 4 | 5 | 6 | 7  »  
Wed, 19 Oct 2005
[ 18:17 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Rename all CAN-yyyy-nnnn to CVE-yyyy-nnnn, with the exception of text
inside <blockquote>s.
See <URL:http://www.cve.mitre.org/cve/renumber.html>.
Fri, 17 Jun 2005
[ 18:37 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document an older, more serious gallery vulnerability.
[ 18:30 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document XSS vulnerabilities in gallery.
[ 18:11 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document KDE kstars vulnerability.
[ 17:00 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document fd_set overruns reported by 3APA3A.
Fri, 3 Jun 2005
[ 19:45 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document a directory traversal issue in older GForge versions.
[ 19:29 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document an authentication bypass vulnerability in imap-uw.
[ 19:18 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document squid denial-of-service vulnerabilities.
[ 19:08 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document a remote denial-of-service vulnerability in racoon.
[ 18:24 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document integer overflows in xli.
[ 18:19 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document arbitrary command execution vulnerabilities in xli and
xloadimage.
[ 18:01 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add new CVE names for yamt entry.
[ 17:56 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Correct and improve recent xli entry:
* It actually affected xloadimage and xli
* A slightly better topic than just "buffer overflows"
* More refererences
* Fix the version number for xli... it is still vulnerable as of this
  writing
[ 16:26 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Correct recently added yamt entry:
* This is not CAN-2004-1302, which was documented much earlier
* Try to explain the issue
* Add the only public reference to the issue I can find
Wed, 1 Jun 2005
[ 17:16 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Update entry for FreeStyle Wiki:
* <topic> style: ASCII em-dash "--" for separator
* replace quoted text with more informative excerpt from a Secunia
  advisory
* add CVE name
[ 17:08 nectar ] Original commit 
xview 3.2.1_3 x11-toolkits  Ignore files touched by this commit X Window-System-based Visual/Integrated Environment for Workstations
Correct buffer overflows in xview libraries.

Obtained from:  Debian
Security:      
http://vuxml.freebsd.org/ae6ec9b8-2f43-4d02-8129-c6a3a53ef09d.html
[ 17:07 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document vulnerabilities in XView library.
[ 16:52 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
document a vulnerability in xtrlock
[ 16:27 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document vulnerabilities reported in the Red Hat 7.1 libraries.
[ 16:09 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document squirrelmail vulnerabilities.
[ 15:53 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
correct version number for mailman password generation issue
[ 15:51 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document vulnerability in set-user-ID sympa application.
[ 15:36 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Another older mailman vulnerability, somewhat minor
[ 15:27 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add year-old mailman vulnerability, that seems to not have been
previously documented here.
[ 14:48 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
document Apache Jakarta Tomcat 5.x XSS issue
Fri, 13 May 2005
[ 16:24 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add FreeBSD-SA-05:09.htt.
[ 15:34 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
$EDITOR should not be quoted.  It might be "emacsclient -a vi" or
something.
[ 15:33 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
MAINTAINER -> security@FreeBSD.org
[ 15:32 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Update some leafnode references.
Add new leafnode vulnerability.

PR:             ports/80724
Submitted by:   Matthias Andree <matthias.andree@gmx.de>
Thu, 24 Mar 2005
[ 14:15 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document Wine information disclosure.

Based on an entry that was
Submitted by:   Devon H. O'Dell <dodell@offmyserver.com>
Approved by:    portmgr (blanket, VuXML)
[ 14:08 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document the most serious of the recently disclosed
Mozilla/Firefox/Thunderbird vulnerabilities.

Based on entries that were
Submitted by:   Devon H. O'Dell <dodell@offmyserver.com>
Approved by:    portmgr (blanket, VuXML)
Wed, 23 Mar 2005
[ 18:29 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document Sylpheed buffer overflow.

Reminded by:    netchild
Approved by:    portmgr (blanket, VuXML)
Mon, 7 Mar 2005
[ 15:45 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Fix invalid date.

Noticed by:     Kang Liu <liukang@bjut.edu.cn>
Sun, 6 Mar 2005
[ 17:06 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add <modified> date for recent commit to phpbb vulnerability.

Forgotten by:   delphij

While here, add msgids for recent phpbb addition.
Fri, 4 Mar 2005
[ 18:14 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document two phpnuke vulnerabilities, and a Linux RealPlayer
vulnerability.

Based on entries that were
Submitted by:   Devon H. O'Dell <dodell@sitetronics.com>
Tue, 1 Mar 2005
[ 13:39 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Fix typo in linux-tiff version number for
http://vuxml.freebsd.org/8f86d8b5-6025-11d9-a9e7-0001020eed82.html

Reported by:    Ian Moore <no-spam@swiftdsl.com.au>
[ 13:23 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document lighttpd information disclosure bug.

This entry is based on one that was
Submitted by:   Devon H. O'Dell <dodell@offmyserver.com>
Mon, 28 Feb 2005
[ 13:41 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Fix typo in linux-tiff version number for
http://vuxml..freebsd.org/fc7e6a42-6012-11d9-a9e7-0001020eed82.html

Reported by:    Ian Moore <no-spam@swiftdsl.com.au>
[ 03:42 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Correct the linux-tiff version number for several entries.

Reported by:    netchild
Fri, 25 Feb 2005
[ 04:55 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Improve the description of the latest phpBB information disclosure
bugs.

Submitted by:   delphij (in part)
[ 03:22 nectar ] Original commit 
xhtml-modularization 1.0.20010410 textproc files touched by this commit W3C's Modularization of XHTML DTDs and docs
Fix the packing list so that when the port is deinstalled,
$PREFIX/share/xml/dtd will be removed if it is empty.

Reported by:    kris
Thu, 24 Feb 2005
[ 22:58 nectar ] Original commit 
im-ja 1.3 japanese files touched by this commit Japanese input module for GTK2
Update 1.2 -> 1.3.  This resolves a segfault occurring in some
situations due to an unterminated hotkey list.

The crash and cause was
Reported by:    nork
nork@ also recommended a fix, but ume@ noticed that the latest version
of im-ja corrected the issue.  In fact, this update was
Submitted by:   ume
Wed, 23 Feb 2005
[ 16:20 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add CVE names for wget.
[ 15:11 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
De-confuse latest AWStats entry: rewrite description, and add relevant
references.  There were so many bugs, it was hard to keep them straight
(^_^).
[ 14:37 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Format the <topic> of the most recent entry so that it is more
consistent with other entries.
Tue, 22 Feb 2005
[ 21:58 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
The mod_dosevasive port was upgraded.
[ 19:27 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Nit:
- In most recent `unace' entry, replace HTML entity with the Unicode
  character.  We do not use HTML entities so that a VuXML document may
  be processed without using the DTD.  (We also avoid character entity
  references for more natural grep'ing, sed'ing, and editor searching.)

Corrections:
- An invalid UUID was assigned to a FreeRADIUS vulnerability, and went
  undetected since last October.  (>_<)   Correct it.
- A bnc vulnerability was duplicated.  Cancel the older, less informative
  entry and update the newer entry.
Fri, 11 Feb 2005
[ 23:29 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Expand HTML entity reference in latest VuXML entry.
Tue, 8 Feb 2005
[ 15:11 nectar ] Original commit 
squid 2.5.7_12 www files touched by this commit HTTP Caching Proxy
Integrate the following vendor patch as published on
<http://www.squid-cache.org/Versions/v2/2.5/bugs/>:

 - Address HTTP protocol mismatch related to oversized reply headers and
   enhance cache.log on reply header parsing failures (squid bug #1216)
 - correct the search request generated by the LDAP authentication helper
 - fix a race within the NTLM authentication mechanism (squid bug #1127)
 - fix handling of failed PUT/POST requests (squid bug #1224)
 - fix problems with persistent server connections after failed PUT/POST
   requests (squid bug #1122)
 - improve handling of forged WCCP packets (squid bug #1225)

PR:             ports/76967
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)
Security:      
http://vuxml.freebsd.org/bfda39de-7467-11d9-9e1e-c296ac722cb3.html
[ 14:49 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add another squid issue.

PR:             ports/76967
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de>
[ 14:43 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add CERT Vulnerability Note reference for one squid issue,
and correct the reference for another one [1].

Reported by:    Thomas-Martin Seck <tmseck@netcologne.de> [1]
[ 13:48 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add CVE name for squid confusing empty ACL issue.
Mon, 7 Feb 2005
[ 20:02 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add US-CERT Vulnerability Note references for recent squid issues.
Wed, 2 Feb 2005
[ 18:59 nectar ] Original commit 
vuxml 1.1_1 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Note that perl does not have a suidperl by default.
Number of commits: 675 (showing only 100 on this page) 1 | 2 | 3 | 4 | 5 | 6 | 7  »  
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
curlApr 11
dbus-glibApr 11
libaudiofileApr 11
linux-f10-curlApr 11
linux-f10-dbus-glibApr 11
linux-f10-libaudiofileApr 11
linux-f10-nas-libsApr 11
linux-f10-openldapApr 11
mingw32-openssl*Apr 11
mingw32-opensslApr 11
nasApr 11
openssl*Apr 11
opensslApr 11
linux-f10-openssl*Apr 10
linux-f10-openssl*Apr 10

13 vulnerabilities affecting 34 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24393
Broken 177
Deprecated 120
Ignore 529
Forbidden 4
Restricted 263
No CDROM 108
Vulnerable 27
Expired 40
Set to expire 105
Interactive 22
new 24 hours 3
new 48 hours5
new 7 days16
new fortnight39
new month150

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.