| Commit History - (may be incomplete: see CVSWeb link above for full details) |
| Date | By | Description |
14 May 2008 09:51:43
1.1_1
|
delphij  |
Document django XSS vulnerability. |
11 May 2008 20:35:33
1.1_1
|
naddy  |
Document vorbis-tools Speex header processing vulnerability. |
08 May 2008 21:36:00
1.1_1
|
nox  |
Document qemu -- "drive_init()" Disk Format Security Bypass |
08 May 2008 09:22:39
1.1_1
|
miwi  |
- Sort previous commit |
08 May 2008 08:27:06
1.1_1
|
brix  |
Add graphics/swfdec entry.
Approved by: erwin (mentor) |
03 May 2008 10:06:42
1.1_1
|
sat  |
- Thunderbird 2.0.0.14 is safe |
02 May 2008 21:22:09
1.1_1
|
miwi  |
- Document mt-daapd -- Integer overflow
PR: 123285 (based on)
Submitted by: Mark D. Foster <mark@foster.cc> |
02 May 2008 20:56:08
1.1_1
|
miwi  |
- Document sdl_image - Buffer Overflow Vulnerabilities |
02 May 2008 10:11:36
1.1_1
|
miwi  |
- Mark PHP5 as safe |
29 Apr 2008 13:12:08
1.1_1
|
miwi  |
- Mark graphics/png as safe. |
28 Apr 2008 23:55:32
1.1_1
|
miwi  |
- Fix last gnupg entry.
PR: 123178 [1]
Submitted by: Nick Barkas (via privat mail)
bf <bf2006a@yahoo.com> [1] |
28 Apr 2008 22:04:22
1.1_1
|
sat  |
- Clean up whitespace a bit
- Wrap long lines where appropriate
- Add a vim-friendly modeline |
28 Apr 2008 18:14:17
1.1_1
|
sat  |
- A new Firefox vulnerability currently affects 10 of our ports, on
average. A new VuXML entry usually forgets about 8 of them.
Wiki: http://wiki.freebsd.org/VuXML |
28 Apr 2008 08:34:39
1.1_1
|
miwi  |
- Update last python entry python23 and python24 also affected
PR: 123153
Submitted by: Nick Barkas <snb@threerings.net> |
27 Apr 2008 00:53:53
1.1_1
|
miwi  |
- Mark gnupg and gnupg1 as secure |
26 Apr 2008 23:43:53
1.1_1
|
miwi  |
- Document gnupg -- memory corruption vulnerability |
25 Apr 2008 20:03:04
1.1_1
|
delphij  |
Document extman password bypass vulnerability. |
25 Apr 2008 14:10:38
1.1_1
|
miwi  |
- Document mailman -- script insertion vulnerability.
Submitted by: tabthorpe (one a month ago)
Discussed/Reviewed by: tabthorpe |
25 Apr 2008 13:34:33
1.1_1
|
miwi  |
- now really fix the CVE entry |
25 Apr 2008 13:29:17
1.1_1
|
miwi  |
- Fix CVE entry from the previous commit |
25 Apr 2008 13:20:53
1.1_1
|
miwi  |
- Document mksh -- TTY Attachment Privilege Escalation. |
25 Apr 2008 13:05:13
1.1_1
|
miwi  |
- Document serendipity -- multiple cross site scripting vulnerabilities. |
25 Apr 2008 11:55:37
1.1_1
|
miwi  |
- Document firefox -- javascript harbage collector vulnerability. |
25 Apr 2008 11:20:59
1.1_1
|
miwi  |
- Add missing - in the previous entry |
25 Apr 2008 11:12:14
1.1_1
|
miwi  |
- Remove whitespaces
- Fix spelling |
25 Apr 2008 11:06:13
1.1_1
|
miwi  |
- Document png - unknown chunk processing uninitialized memory access |
25 Apr 2008 10:48:36
1.1_1
|
miwi  |
- Document openfire - unspecified denial of service
PR: 122872 (based on) |
25 Apr 2008 10:27:30
1.1_1
|
miwi  |
- Document php -- Integer Overflow Vulnerability
PR: based on 122872 |
25 Apr 2008 09:10:05
1.1_1
|
miwi  |
- Document python -- Integer Signedness Error in zlib Module |
25 Apr 2008 00:12:03
1.1_1
|
miwi  |
Document postgresql -- multiple vulnerabilities
PR: 120133 (basic on)
Submitted by: Nick Barkas <snb@threerings.net> |
24 Apr 2008 22:52:21
1.1_1
|
miwi  |
- Document phpMyAdmin - Shared Host Information Disclosure. |
24 Apr 2008 22:29:49
1.1_1
|
miwi  |
- Document phpMyAdmin - Username/Password Session File Information Disclosure. |
24 Apr 2008 15:11:34
1.1_1
|
tabthorpe  |
- Document libxine -- array index vulnerability
Reviewed by: remko, miwi |
16 Apr 2008 16:28:38
1.1_1
|
garga  |
Add an entry about clamav < 0.93 vulnerabilities
Reviewed by: mnag |
13 Apr 2008 04:52:31
1.1_1
|
mnag  |
lighttpd -- OpenSSL Error Queue Denial of Service Vulnerability |
12 Apr 2008 23:15:02
1.1_1
|
brix  |
Add www/ikiwiki entry.
Approved by: pav (co-mentor) |
08 Apr 2008 07:22:55
1.1_1
|
sat  |
- Enrich Firefox 2.0.0.13 entry |
06 Apr 2008 12:47:54
1.1_1
|
rafan  |
- Use <mlist> as the references are mailing posts
- Correct discovery date
Noticed by: simon |
06 Apr 2008 09:50:38
1.1_1
|
rafan  |
- Add entry for mail/postfix-policyd-weight
PR: ports/122194
Reviewed by: ports-security (miwi) |
05 Apr 2008 16:19:50
1.1_1
|
rafan  |
- Add entries for www/suphp and dns/powerdns-recursor
Reviewed by: ports-security (remko, simon) |
05 Apr 2008 07:42:09
1.1_1
|
rafan  |
- Add entry for www/opera 9.26
PR: ports/122400
Reviewed by: remko, delphij |
30 Mar 2008 10:18:34
1.1_1
|
delphij  |
Document mozilla multiple vulnerabilities.
Reviewed by: miwi, remko (via IRC) |
26 Mar 2008 18:23:10
1.1_1
|
wxs  |
Document buffer overflow in silc-client and silc-server.
Reviewed by: remko
Approved by: garga (mentor) |
20 Mar 2008 23:43:36
1.1_1
|
delphij  |
Document bzip2 crash with certain malformed archive files |
11 Mar 2008 23:50:48
1.1_1
|
miwi  |
- Ups remove duplicate url |
11 Mar 2008 23:25:38
1.1_1
|
miwi  |
- Fix previos commit
* sort
* more reference |
11 Mar 2008 23:09:31
1.1_1
|
nox  |
Document qemu -- unchecked block read/write vulnerability
Reviewed by: stas |
10 Mar 2008 10:41:24
1.1_1
|
miwi  |
- Fix previous commit
* sort
* more reference |
10 Mar 2008 02:09:02
1.1_1
|
beech  |
- Add entry for dovecot |
06 Mar 2008 23:17:22
1.1_1
|
miwi  |
- Fix 2 typos form the previous commit
Submitted by: simon/gahr |
06 Mar 2008 23:02:06
1.1_1
|
miwi  |
- Document mplayer - multiple vulnerabilities |
05 Mar 2008 07:13:15
1.1_1
|
rafan  |
- Entry for ghostscrip-gpl 8.61
Reviewed by: ports-security@ (simon, remko) |
05 Mar 2008 01:01:18
1.1_1
|
tabthorpe  |
- Document phpmyadmin -- SQL injection vulnerability
Reviewed by: simon |
01 Mar 2008 04:08:11
1.1_1
|
tabthorpe  |
- Document pcre -- buffer overflow vulnerability
PR: ports/121224
Submitted by: Nick Barkas <snb threerings.net> |
28 Feb 2008 01:41:13
1.1_1
|
tabthorpe  |
- Document libxine -- buffer overflow vulnerability
Reviewed by: miwi |
27 Feb 2008 09:33:42
1.1_1
|
miwi  |
- Mark mail/up-imapproxy as safe
Submitted by: Abdullah Ibn Hamad Al-Marri <wearabnet@yahoo.ca> |
26 Feb 2008 12:43:36
1.1_1
|
tabthorpe  |
- Document coppermine -- multiple vulnerabilities.
Reviewed by: miwi |
26 Feb 2008 12:34:28
1.1_1
|
miwi  |
- Fix previous commit (use now <bid>) |
25 Feb 2008 18:38:12
1.1_1
|
tabthorpe  |
- Document moinmoin -- multiple vulnerabilities.
Reviewed by: remko |
22 Feb 2008 00:56:27
1.1_1
|
simon  |
Document opera -- multiple vulnerabilities. |
22 Feb 2008 00:43:24
1.1_1
|
simon  |
Document mozilla -- multiple vulnerabilities. |
22 Feb 2008 00:26:31
1.1_1
|
delphij  |
Document openldap modrdn DoS vulnerability |
15 Feb 2008 10:23:57
1.1_1
|
remko  |
Document clamav -- ClamAV libclamav PE File Integer Overflow Vulnerability
Submitted by: "Eygene Ryabinkin" <rea-fbsd at codelabs dot ru> |
13 Feb 2008 17:20:04
1.1_1
|
miwi  |
- Fix previous commit
Discussed with: remko |
13 Feb 2008 16:37:32
1.1_1
|
remko  |
Bump modification date for latest change. |
13 Feb 2008 15:32:00
1.1_1
|
oliver  |
xfce4-panel, libxfce4gui - mark the security problem which existed in 4.4.1 "<
4.4.2"
Noted by: Carl Johan Gustavsson <carl.gustavsson@bahnhofbredband.se> |
12 Feb 2008 22:14:19
1.1_1
|
miwi  |
- mark claws-mail as safe |
12 Feb 2008 13:30:47
1.1_1
|
sem  |
- Document a cacti vulnerability |
12 Feb 2008 08:48:25
1.1_1
|
brix  |
Add entry for www/ikiwiki.
Approved by: erwin (mentor) |
09 Feb 2008 18:47:05
1.1_1
|
tabthorpe  |
- Fix grammar for www/zenphoto description |
09 Feb 2008 14:39:27
1.1_1
|
tabthorpe  |
- Document www/zenphoto
Reviewed by: remko |
09 Feb 2008 11:16:13
1.1_1
|
miwi  |
- Fix a typo
Submitted by: antoine@ |
04 Feb 2008 07:58:54
1.1_1
|
miwi  |
- Document jetty -- multiple vulnerability
PR: 120171
Submitted by: Nick Barkas <snb@threerings.net> |
31 Jan 2008 14:47:15
1.1_1
|
miwi  |
- Bump modified from previous commit |
31 Jan 2008 04:06:30
1.1_1
|
linimon  |
Fix name of irc/dircproxy package.
Hat: portmgr |
29 Jan 2008 15:14:43
1.1_1
|
nobutaka  |
Document libxine -- buffer overflow vulnerability. |
23 Jan 2008 12:11:57
1.1_1
|
flz  |
Document xorg -- multiple vulnerabilities.
Reviewed by: miwi |
22 Jan 2008 22:18:47
1.1_1
|
miwi  |
- Fix discovery line from the previous commit :( |
22 Jan 2008 22:01:46
1.1_1
|
miwi  |
- Document xfce -- multiple vulnerabilities |
22 Jan 2008 21:38:40
1.1_1
|
miwi  |
- Document claws-mail -- insecure temporary file creation |
20 Jan 2008 10:04:32
1.1_1
|
miwi  |
- Add modified date for previous commit |
20 Jan 2008 02:28:26
1.1_1
|
lwhsu  |
- Fix freeradius-devel entry, narrow down range to prevent affect later versions
PR: ports/119582
Submitted by: David Wood <david AT wood2.org.uk>
Reviewed by: pav |
20 Jan 2008 01:35:00
1.1_1
|
miwi  |
- Fix previous commit (whitespaces, sorting) |
20 Jan 2008 01:21:48
1.1_1
|
beech  |
- Add entry for ircservices
PR: ports/119769
Approved by: linimon (mentor) |
19 Jan 2008 18:03:22
1.1_1
|
nobutaka  |
Document libxine -- buffer overflow vulnerability. |
19 Jan 2008 09:50:19
1.1_1
|
skv  |
Update the "firebird" entry to properly match corrected versions. |
15 Jan 2008 22:43:59
1.1_1
|
miwi  |
- Fix <name> sections from both previous committs |
15 Jan 2008 20:15:53
1.1_1
|
miwi  |
- Fix previous commit
- Mark geeklog as safe
- add cve
Reviewed by: remko |
15 Jan 2008 18:52:15
1.1_1
|
tabthorpe  |
- Document XSS vulnerability in geeklog 1.4.0
Reviewed by: remko |
14 Jan 2008 15:56:08
1.1_1
|
stas  |
- This vulnerability exists in PHP versions prior to 4.4.8, not
after. Fix the entry.
Reported by: Vadim Goncharov <vadimnuclight@tpu.ru> |
12 Jan 2008 15:53:47
1.1_1
|
simon  |
Document multiple drupal issues.
Submitted by: Nick Hilliard <nick@foobar.org> |
10 Jan 2008 19:38:12
1.1_1
|
miwi  |
- Document maradns -- CNAME record resource rotation denial of service
PR: ports/119471 (based on)
Submitted by: Mark D. Foster <mark@foster.cc>
Reviewed by: simon |
07 Jan 2008 22:48:35
1.1_1
|
miwi  |
- Mark security/lsh as safe |
04 Jan 2008 18:52:09
1.1_1
|
delphij  |
Update php multiple vulnerability entry: revalent bugs were fixed in PHP 4.4.8. |
04 Jan 2008 18:48:28
1.1_1
|
mnag  |
- Fix linux-realplayer new version |
04 Jan 2008 18:45:08
1.1_1
|
mnag  |
- Fix range for linux-flahsplugin |
04 Jan 2008 18:07:34
1.1_1
|
mnag  |
- linux-realplayer -- multiple vulnerabilities |
03 Jan 2008 13:13:22
1.1_1
|
mnag  |
- linux-flashplugin -- multiple vulnerabilities |
31 Dec 2007 11:59:44
1.1_1
|
miwi  |
- Fix the last tcl/tk entry for portaudit.
Submitted by: mm@
Reviewed by: simon |
30 Dec 2007 09:35:30
1.1_1
|
delphij  |
Document dovecot specific LDAP + auth cache configuration may mix up user logins
vulnerability |