FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_3 security on this many watch lists=31 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 12 Feb 2004 14:24:23
Also Listed In: textproc
License: BSD2CLAUSE
VuXML (the Vulnerability and eXposure Markup Language) is an XML
application for documenting security bugs and corrections within
a software package collection such as the FreeBSD Ports Collection.
This port installs the DTDs required for validating VuXML documents.
SVNWeb : PortsMon

To install the port: cd /usr/ports/security/vuxml/ && make install clean
To add the package: pkg install vuxml

PKGNAME: vuxml

distinfo:

SHA256 (vuxml/vuxml-10.dtd) = 6a635ad2cf45f52361c8c2a29a689157fad4d00519045485bc822d34e04a524e
SIZE (vuxml/vuxml-10.dtd) = 2986
SHA256 (vuxml/vuxml-model-10.mod) = 051fed00b52bedde8ee901003fc29f7b95cd904157e31ceef34e6b06f2d1a14a
SIZE (vuxml/vuxml-model-10.mod) = 10599
SHA256 (vuxml/vuxml-11.dtd) = 12b50061d7bb34cecffede2e08d439e4469324376d55aeb7c73eb6aab0f36af1
SIZE (vuxml/vuxml-11.dtd) = 3063
SHA256 (vuxml/vuxml-model-11.mod) = a40777208625a3029c6f416aeeea733f614802a6a5f26035a4e445a09e61a47c
SIZE (vuxml/vuxml-model-11.mod) = 13282
SHA256 (vuxml/xml1.dcl) = 343efa94c4e1302e85e08b2d1791d86e50aac1ecdbc3161daecac100e4726847
SIZE (vuxml/xml1.dcl) = 7372
SHA256 (vuxml/catalog) = 479a69cf02995603443fd1f3b5b33f97811670931f87f53be99a727d664abc66
SIZE (vuxml/catalog) = 549
SHA256 (vuxml/catalog.xml) = 7b2e2850f57264eeba0ccd3d1fc161b9d5ce3071ae0ec51b9da7fa956f2a6509
SIZE (vuxml/catalog.xml) = 2150


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Runtime dependencies:
  1. xmlcatmgr : textproc/xmlcatmgr
  2. xsltproc : textproc/libxslt
  3. VERSION : textproc/xhtml-modularization
  4. xhtml-basic10.dtd : textproc/xhtml-basic
  5. python2.7 : lang/python27
There are no ports dependent upon this port

Configuration Options
     No options to configure

USES:
python:run

Master Sites:
  1. http://www.vuxml.org/dtd/vuxml-1/

Number of commits found: 4342 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
22 Jul 2016 20:30:16
Original commit files touched by this commit  1.1_3
Revision:418932
rene search for other commits by this committer
Document new vulnerabilities in www/chromium < 52.0.2743.82

Obtained
from:	https://googlechromereleases.blogspot.nl/2016/07/stable-channel-update.html
22 Jul 2016 00:22:19
Original commit files touched by this commit  1.1_3
Revision:418902
cy search for other commits by this committer
Document a rare KDC denial of service vulnerability when anonymous
client principals are restricted to obtaining TGTs only [CVE-2016-3120]

URL:		http://web.mit.edu/kerberos/krb5-1.14/
Security:	CVE-2016-3120
21 Jul 2016 18:25:22
Original commit files touched by this commit  1.1_3
Revision:418887
brnrd search for other commits by this committer
security/vuxml: Current mysql57 is NOT vulnerable

PR:		211248
21 Jul 2016 18:04:14
Original commit files touched by this commit  1.1_3
Revision:418884
truckman search for other commits by this committer
Apache OpenOffice CVE-2016-1513 Memory Corruption Vulnerability
(Impress Presentations)
21 Jul 2016 14:58:08
Original commit files touched by this commit  1.1_3
Revision:418877
brnrd search for other commits by this committer
security/vuxml: Add MySQL vulnerabilities from quarterly update

  - Add MariaDB ports
  - Add Percona ports

PR:		211248
21 Jul 2016 14:23:01
Original commit files touched by this commit  1.1_3
Revision:418876
feld search for other commits by this committer
Properly cancel the httpoxy vuxml entry
20 Jul 2016 12:25:51
Original commit files touched by this commit  1.1_3
Revision:418834
feld search for other commits by this committer
Remove HTTPoxy entry in vuxml until a we know if upstream vendors will
patch this so things aren't marked vulnerable forever.
19 Jul 2016 12:55:43
Original commit files touched by this commit  1.1_3
Revision:418774
tz search for other commits by this committer
www/typo3 and www/typo3-lts: Document missing access check in Extbase

PR:          210870, 210871
Security:    CVE-2016-5091
Security:   
https://vuxml.freebsd.org/freebsd/3caf4e6c-4cef-11e6-a15f-00248c0c745d.html
Approved by: junovitch (mentor)
19 Jul 2016 06:43:52
Original commit files touched by this commit  1.1_3
Revision:418762
brnrd search for other commits by this committer
net/haproxy: Mark vulnerable to httpoxy in vuxml

Security:	cf0b5668-4d1b-11e6-b2ec-b499baebfeaf
18 Jul 2016 20:38:37
Original commit files touched by this commit  1.1_3
Revision:418747
brnrd search for other commits by this committer
lang/go: Mark 1.6.3 as NOT vulnerable to httpoxy

  - Version 1.6.3 includes fix for "httpoxy" [1]

1: https://groups.google.com/forum/#!topic/golang-announce/7jZDOQ8f8tM

Security:	cf0b5668-4d1b-11e6-b2ec-b499baebfeaf
Security:	CVE-2016-5386
18 Jul 2016 20:15:17
Original commit files touched by this commit  1.1_3
Revision:418744
brnrd search for other commits by this committer
www/apache24: Fix httpoxy vulnerability (+2.2)

  - Mark new Apache revisions not vulnerable
  - Add apache22-mpm-* ports
  - Add Apache CVE-number

Security:       cf0b5668-4d1b-11e6-b2ec-b499baebfeaf
Security:       CVE-2016-5387
18 Jul 2016 19:47:27
Original commit files touched by this commit  1.1_3
Revision:418737
brnrd search for other commits by this committer
httpoxy: Mark ports as vulnerable

  - apache22, apache24, go, go14, php55, php56, php70, python27, python33,
    python34, python35, nginx are all vulnerable.
  - No new versions fixing the HTTP Proxy header vulnerability
18 Jul 2016 17:36:43
Original commit files touched by this commit  1.1_3
Revision:418723
bdrewery search for other commits by this committer
Fix CVE-2016-0772 entry to not blame only Python 2.7
16 Jul 2016 02:26:55
Original commit files touched by this commit  1.1_3
Revision:418617
junovitch search for other commits by this committer
Document security issues from ATutor 2.2.1 and 2.2.2 changelog

Security:	https://vuxml.FreeBSD.org/freebsd/00cb1469-4afc-11e6-97ea-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/ffa8ca79-4afb-11e6-97ea-002590263bf5.html
16 Jul 2016 01:08:06
Original commit files touched by this commit  1.1_3
Revision:418615
junovitch search for other commits by this committer
Update Drupal SA-CORE-2016-002 with the assigned CVEs

PR:		210317
Security:	CVE-2016-6211
Security:	CVE-2016-6212
Security:	https://vuxml.FreeBSD.org/freebsd/7932548e-3427-11e6-8e82-002590263bf5.html
16 Jul 2016 00:59:10
Original commit files touched by this commit  1.1_3
Revision:418612
junovitch search for other commits by this committer
Document Flash vulnerabilities in Adobe Security Bulletins APSB16-25

Security:	CVE-2016-4172
Security:	CVE-2016-4173
Security:	CVE-2016-4174
Security:	CVE-2016-4175
Security:	CVE-2016-4176
Security:	CVE-2016-4177
Security:	CVE-2016-4178
Security:	CVE-2016-4179
Security:	CVE-2016-4180
Security:	CVE-2016-4181
Security:	CVE-2016-4182
Security:	CVE-2016-4183
Security:	CVE-2016-4184
(Only the first 15 lines of the commit message are shown above View all of this commit message)
15 Jul 2016 17:13:53
Original commit files touched by this commit  1.1_3
Revision:418592
feld search for other commits by this committer
Rename vuxml entry, add new detailed reference as primary.

This new reference has much more detailed information. It appears even
the latest version of struts is affected and this may affect many
products using the Apache Commons FileUpload Utility such as Jenkins,
Lucene-Solr, etc. Unfortunately it's difficult to identify which version
of the Apache Commons FileUpload Utility products may have, so this vuxml
may be expanded as more products are successfully identified.

PR:		211105
Security:	CVE-2016-3092
15 Jul 2016 16:56:01
Original commit files touched by this commit  1.1_3
Revision:418591
feld search for other commits by this committer
Package name for jakarta-struts is actually apache-struts

Pointyhat:	me

PR:		211105
15 Jul 2016 16:54:27
Original commit files touched by this commit  1.1_3
Revision:418590
feld search for other commits by this committer
Also add jakara-struts to the vuxml entry for CVE-2016-3092

PR:		211105
15 Jul 2016 16:48:51
Original commit files touched by this commit  1.1_3
Revision:418589
feld search for other commits by this committer
Document tomcat vulnerability

PR:		211105
Security:	CVE-2016-3092
15 Jul 2016 16:41:21
Original commit files touched by this commit  1.1_3
Revision:418588
feld search for other commits by this committer
Document libreoffice vulnerability

PR:		211111
Security:	CVE-2016-4324
15 Jul 2016 16:34:00
Original commit files touched by this commit  1.1_3
Revision:418587
feld search for other commits by this committer
Update name in vuxml of person who reported CVE-2016-5102
15 Jul 2016 16:19:21
Original commit files touched by this commit  1.1_3
Revision:418584
feld search for other commits by this committer
Document tiff vulnerabilities

Security:	CVE-2016-5102
Security:	CVE-2016-5875
Security:	CVE-2016-3186

PR:		211113
15 Jul 2016 11:23:23
Original commit files touched by this commit  1.1_3
Revision:418575
rakuco search for other commits by this committer
Document CVE-2016-2334 and CVE-2016-2335 in archivers/p7zip.

PR:		211114
13 Jul 2016 01:26:46
Original commit files touched by this commit  1.1_3
Revision:418454
timur search for other commits by this committer
Add information about CVE-2016-2119 vulnerability in Samba suits.

Security:	CVE-2016-2119
11 Jul 2016 15:31:10
Original commit files touched by this commit  1.1_3
Revision:418386
tz search for other commits by this committer
rubygem-ruby-saml: Document XML signature wrapping attack

Security:    CVE-2016-5697
Security:
https://vuxml.freebsd.org/freebsd/3fcd52b2-4510-11e6-a15f-00248c0c745d.html
Approved by: junovitch (mentor)
07 Jul 2016 03:36:50
Original commit files touched by this commit  1.1_3
Revision:418159
lwhsu search for other commits by this committer
- Fix affected versions of qemu and qemu-devel

Reviewed by:	junovitch
07 Jul 2016 01:44:23
Original commit files touched by this commit  1.1_3
Revision:418154
junovitch search for other commits by this committer
Document remote denial of service in quassel

PR:		209218
Security:	CVE-2016-4414
Security:	https://vuxml.FreeBSD.org/freebsd/7d64d00c-43e3-11e6-ab34-002590263bf5.html
05 Jul 2016 17:59:18
Original commit files touched by this commit  1.1_3
Revision:418099
ohauer search for other commits by this committer
- document apache24 H2/X509 sec. issue.

  The sec. issue is only present if the port was built with
  non default settings (experimental H2 feature) and
  used in combination with X509 client auth!
04 Jul 2016 19:02:27
Original commit files touched by this commit  1.1_3
Revision:418049
junovitch search for other commits by this committer
Document Xen Security Advisories (XSAs 173, 175, 176, 178, 179, and 180).

XSAs 171, 172, 174, and 181 are not applicable to FreeBSD.

Discussed with:	royger
Security:	CVE-2014-3672
Security:	CVE-2016-3710
Security:	CVE-2016-3712
Security:	CVE-2016-4963
Security:	CVE-2016-4480
Security:	CVE-2016-4962
Security:	CVE-2016-3960
Security:	https://vuxml.FreeBSD.org/freebsd/e800cd4b-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e6ce6f50-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e589ae90-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e43b210a-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e2fca11b-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/d51ced72-4212-11e6-942d-bc5ff45d0f28.html
04 Jul 2016 13:40:29
Original commit files touched by this commit  1.1_3
Revision:418026
junovitch search for other commits by this committer
Update wnpa-sec-2016-12 through wnpa-sec-2016-18 with CVE assignment for
issues fixed in Wireshark 2.0.2

While here, fix bad copy/paste on upstream URL when the entry was made.

Security:	CVE-2016-4415
Security:	CVE-2016-4416
Security:	CVE-2016-4417
Security:	CVE-2016-4418
Security:	CVE-2016-4419
Security:	CVE-2016-4420
Security:	CVE-2016-4421
Secuirty:	https://vuxml.FreeBSD.org/freebsd/45117749-df55-11e5-b2bd-002590263bf5.html
04 Jul 2016 13:32:41
Original commit files touched by this commit  1.1_3
Revision:418025
junovitch search for other commits by this committer
Update wnpa-sec-2016-19 through wnpa-sec-2016-27 with CVE assignment for
issues fixed in Wireshark 2.0.3

Security:	CVE-2016-4006
Security:	CVE-2016-4076
Security:	CVE-2016-4077
Security:	CVE-2016-4078
Security:	CVE-2016-4079
Security:	CVE-2016-4080
Security:	CVE-2016-4081
Security:	CVE-2016-4082
Security:	CVE-2016-4083
Security:	CVE-2016-4084
Security:	https://vuxml.FreeBSD.org/freebsd/7e36c369-10c0-11e6-94fa-002590263bf5.html
04 Jul 2016 13:25:47
Original commit files touched by this commit  1.1_3
Revision:418023
junovitch search for other commits by this committer
Document wnpa-sec-2016-29 through wnpa-sec-2016-37 for issues fixed in
Wireshark 2.0.4

Security:	CVE-2016-5350
Security:	CVE-2016-5351
Security:	CVE-2016-5352
Security:	CVE-2016-5353
Security:	CVE-2016-5354
Security:	CVE-2016-5355
Security:	CVE-2016-5356
Security:	CVE-2016-5357
Security:	CVE-2016-5358
Security:	https://vuxml.FreeBSD.org/freebsd/313e9557-41e8-11e6-ab34-002590263bf5.html
04 Jul 2016 01:46:35
Original commit files touched by this commit  1.1_3
Revision:418007
junovitch search for other commits by this committer
Add fixed entries for Python 2.7, 3.4, 3.5 for urllib vulnerability.

Reset 3.3 as unfixed.

PR:		210539
PR:		210541
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5699
Security:	https://vuxml.FreeBSD.org/freebsd/a61374fc-3a4d-11e6-a671-60a44ce6887b.html
03 Jul 2016 23:13:14
Original commit files touched by this commit  1.1_3
Revision:418004
junovitch search for other commits by this committer
Update earlier openvswitch entry with version fixed in ports

PR:		208404
Reported by:	ohauer
Security:	CVE-2016-2074
Security:	https://vuxml.FreeBSD.org/freebsd/b53bbf58-257f-11e6-9f4d-20cf30e32f6d.html
03 Jul 2016 22:57:25
Original commit files touched by this commit  1.1_3
Revision:418003
junovitch search for other commits by this committer
Document multiple security advisories for Moodle

Security:	CVE-2016-3729
Security:	CVE-2016-3731
Security:	CVE-2016-3732
Security:	CVE-2016-3733
Security:	CVE-2016-3734
Security:	https://vuxml.FreeBSD.org/freebsd/8656cf5f-4170-11e6-8dfe-002590263bf5.html
03 Jul 2016 21:21:13
Original commit files touched by this commit  1.1_3
Revision:417998
feld search for other commits by this committer
Document icingaweb2 vulnerability
03 Jul 2016 19:31:27
Original commit files touched by this commit  1.1_3
Revision:417995
junovitch search for other commits by this committer
Fix date from r417994 (2016 not 2015)
03 Jul 2016 19:30:15
Original commit files touched by this commit  1.1_3
Revision:417994
junovitch search for other commits by this committer
Document authorization logic vulnerability in Apache Hive

PR:		207173
Security:	CVE-2015-7521
Security:	https://vuxml.FreeBSD.org/freebsd/a5c204b5-4153-11e6-8dfe-002590263bf5.html
03 Jul 2016 18:44:39
Original commit files touched by this commit  1.1_3
Revision:417989
junovitch search for other commits by this committer
Document SQLite3 tempdir selection vulnerability

PR:		210751
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-6153
Security:	https://vuxml.FreeBSD.org/freebsd/546deeea-3fc6-11e6-a671-60a44ce6887b.html
03 Jul 2016 09:28:58
Original commit files touched by this commit  1.1_3
Revision:417962
brnrd search for other commits by this committer
security/vuxml: Add Python smtplib TLS stripping vuln

PR:		210685
Submitted by:	brnrd
Security:	CVE-2016-0772
Security:	8d5368ef-40fe-11e6-b2ec-b499baebfeaf
01 Jul 2016 15:22:47
Original commit files touched by this commit  1.1_3
Revision:417890
matthew search for other commits by this committer
Belatedly document 12 security advisories about phpMyAdmin.
Severities range from 'non-critical' to 'severe'
01 Jul 2016 12:23:45
Original commit files touched by this commit  1.1_3
Revision:417875
mat search for other commits by this committer
Add a test target, testing that what the port is supposed to do works.

Sponsored by:	Absolight
01 Jul 2016 12:15:08
Original commit files touched by this commit  1.1_3
Revision:417874
mat search for other commits by this committer
Add missing dependency.

Sponsored by:	Absolight
30 Jun 2016 22:55:50
Original commit files touched by this commit  1.1_2
Revision:417856
feld search for other commits by this committer
Document haproxy vulnerability

Security:	CVE-2016-5360
30 Jun 2016 22:47:25
Original commit files touched by this commit  1.1_2
Revision:417850
feld search for other commits by this committer
Document libtorrent-rasterbar vulnerability

Security:	CVE-2016-5301
30 Jun 2016 22:42:05
Original commit files touched by this commit  1.1_2
Revision:417849
feld search for other commits by this committer
Modify dnsmasq vuxml entry

The vulnerable version range was not matching correctly for the devel
port.
30 Jun 2016 22:32:06
Original commit files touched by this commit  1.1_2
Revision:417845
feld search for other commits by this committer
Document expat2 vulnerability

Security:	CVE-2016-4472
30 Jun 2016 22:10:41
Original commit files touched by this commit  1.1_2
Revision:417844
feld search for other commits by this committer
Document dnsmasq vulnerability

Security:	CVE-2015-8899
30 Jun 2016 21:08:43
Original commit files touched by this commit  1.1_2
Revision:417843
feld search for other commits by this committer
Document python vulnerability

PR:		210541
Security:	CVE-2016-5699
30 Jun 2016 20:52:39
Original commit files touched by this commit  1.1_2
Revision:417842
feld search for other commits by this committer
Document openssl vulnerability

PR:		210550
Security:	CVE-2016-2177
26 Jun 2016 18:13:40
Original commit files touched by this commit  1.1_2
Revision:417596
junovitch search for other commits by this committer
Document remote denial of service via FileUpload component in Tomcat

PR:		209669 [1]
Reported by:	Geoffroy Desvernay <dgeo@centrale-marseille.fr> [1]
Reported by:	Roger Marquis <marquis@roble.com>
Security:	CVE-2016-3092
Security:	https://vuxml.FreeBSD.org/freebsd/cbceeb49-3bc7-11e6-8e82-002590263bf5.html
25 Jun 2016 23:17:46
Original commit files touched by this commit  1.1_2
Revision:417499
junovitch search for other commits by this committer
Document Wordpress vulnerabilities fixed in 4.5.3

PR:             210480 [1]
PR:             210581
Reported by:	Mihail Timofeev <9267096@gmail.com> [1]
Security:	CVE-2016-5832
Security:	CVE-2016-5833
Security:	CVE-2016-5834
Security:	CVE-2016-5835
Security:	CVE-2016-5836
Security:	CVE-2016-5837
Security:	CVE-2016-5838
Security:	CVE-2016-5839
Security:	https://vuxml.FreeBSD.org/freebsd/bfcc23b6-3b27-11e6-8e82-002590263bf5.html
25 Jun 2016 22:18:24
Original commit files touched by this commit  1.1_2
Revision:417490
junovitch search for other commits by this committer
Docment security issues fixed in PHP 7.0.8, 5.6.23, and 5.5.37

PR:		210491
PR:		210502
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Reported by:	Philip Jocks <freebsdbugs@filis.org>
Security:	CVE-2015-8874
Security:	CVE-2016-5766
Security:	CVE-2016-5767
Security:	CVE-2016-5768
Security:	CVE-2016-5769
Security:	CVE-2016-5770
Security:	CVE-2016-5771
Security:	CVE-2016-5772
Security:	CVE-2016-5773
Security:	https://vuxml.FreeBSD.org/freebsd/66d77c58-3b1d-11e6-8e82-002590263bf5.html
23 Jun 2016 16:55:18
Original commit files touched by this commit  1.1_2
Revision:417391
feld search for other commits by this committer
Fix vuxml

I didn't validate after updating "foo reports:" line

Pointyhat:	me
23 Jun 2016 16:25:47
Original commit files touched by this commit  1.1_2
Revision:417384
feld search for other commits by this committer
Document libarchive vulnerabilities

PR:		210493
Security:	CVE-2015-8934
Security:	CVE-2016-4300
Security:	CVE-2016-4301
Security:	CVE-2016-4302
23 Jun 2016 15:52:40
Original commit files touched by this commit  1.1_2
Revision:417381
feld search for other commits by this committer
Add piwik XSS to vuxml

No further information is available. No CVE has been assigned.

PR:		210458
21 Jun 2016 08:34:28
Original commit files touched by this commit  1.1_2
Revision:417193
vd search for other commits by this committer
Followup to r417190 - all versions of wget<1.18 are affected
21 Jun 2016 08:16:47
Original commit files touched by this commit  1.1_2
Revision:417190
vd search for other commits by this committer
Document ftp/wget's HTTP to FTP redirection file name confusion vulnerability

PR:		210420
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-4971
20 Jun 2016 19:08:32
Original commit files touched by this commit  1.1_2
Revision:417173
feld search for other commits by this committer
Update vuxml for libxslt vulnerabilities

These vulnerabilities were previously reported by Google as they bundle
libxslt with Chrome. When we patched Chromium to address these
vulnerabilites it was overlooked that we do not bundle libxslt library
with Chromium, but instead use textproc/libxslt. Chromium users have
continued to be vulnerable to these CVEs as a result. This update fixes
the Chromium CVE entry and adds a separate one for libxslt.

PR:		210298
Security:	CVE-2016-1683
Security:	CVE-2016-1684
19 Jun 2016 09:03:23
Original commit files touched by this commit  1.1_2
Revision:417104
brnrd search for other commits by this committer
Update security/libressl vulnerability for quarterly branch

  - Mark vulnerable from 2.3.0 up to 2.3.6
  - Mark vulnerable below 2.2.9
19 Jun 2016 02:57:04
Original commit files touched by this commit  1.1_2
Revision:417097
junovitch search for other commits by this committer
Document Flash vulnerabilities in Adobe Security Bulletins APSB16-10,
APSB16-15, APSB16-18

PR:		209592
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-1006, CVE-2016-1011, CVE-2016-1012, CVE-2016-1013,
		CVE-2016-1014, CVE-2016-1015, CVE-2016-1016, CVE-2016-1017,
		CVE-2016-1018, CVE-2016-1019, CVE-2016-1020, CVE-2016-1021,
		CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CVE-2016-1025,
		CVE-2016-1026, CVE-2016-1027, CVE-2016-1028, CVE-2016-1029,
		CVE-2016-1030, CVE-2016-1031, CVE-2016-1032, CVE-2016-1033,
		CVE-2016-1096, CVE-2016-1097, CVE-2016-1098, CVE-2016-1099,
		CVE-2016-1100, CVE-2016-1101, CVE-2016-1102, CVE-2016-1103,
		CVE-2016-1104, CVE-2016-1105, CVE-2016-1106, CVE-2016-1107,
		CVE-2016-1108, CVE-2016-1109, CVE-2016-1110, CVE-2016-4108,
(Only the first 15 lines of the commit message are shown above View all of this commit message)
17 Jun 2016 19:44:22
Original commit files touched by this commit  1.1_2
Revision:417031
feld search for other commits by this committer
Fix vuxml <cvename> syntax for recent Chrome entry
17 Jun 2016 19:14:16
Original commit files touched by this commit  1.1_2
Revision:417023
rene search for other commits by this committer
Document new vulnerabilities in www/chromium < 51.0.2704.103

Obtained
from:	https://googlechromereleases.blogspot.nl/2016/06/stable-channel-update_16.html
17 Jun 2016 17:03:57
Original commit files touched by this commit  1.1_2
Revision:417018
rm search for other commits by this committer
Document integer overflow in python's zipimport module

PR:		210324
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5636
17 Jun 2016 01:12:31
Original commit files touched by this commit  1.1_2
Revision:416988
junovitch search for other commits by this committer
Document Drupal vulnerabilities

PR:		210317
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	https://www.drupal.org/SA-CORE-2016-002
Security:	https://vuxml.FreeBSD.org/freebsd/7932548e-3427-11e6-8e82-002590263bf5.html
14 Jun 2016 01:48:36
Original commit files touched by this commit  1.1_2
Revision:416872
junovitch search for other commits by this committer
Document multiple issues in Botan

PR:		209595
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2015-7827
Security:	CVE-2016-2849
Security:	https://vuxml.FreeBSD.org/freebsd/ac0900df-31d0-11e6-8e82-002590263bf5.html
Security:	CVE-2014-9742
Security:	https://vuxml.FreeBSD.org/freebsd/f771880c-31cf-11e6-8e82-002590263bf5.html
13 Jun 2016 19:21:32
Original commit files touched by this commit  1.1_2
Revision:416861
feld search for other commits by this committer
Update vuxml

A backported fix was added to security/openssl
11 Jun 2016 10:10:56
Original commit files touched by this commit  1.1_2
Revision:416712
riggs search for other commits by this committer
Document remote code execution vulnerability in multimedia vlc before 2.2.4
10 Jun 2016 01:57:36
Original commit files touched by this commit  1.1_2
Revision:416651
jbeich search for other commits by this committer
Chase MFSA typo fix
10 Jun 2016 01:15:07
Original commit files touched by this commit  1.1_2
Revision:416647
junovitch search for other commits by this committer
Document cross-site scripting CVE in Roundcube

PR:		209841
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5103
Security:	https://vuxml.FreeBSD.org/freebsd/97e86d10-2ea7-11e6-ae88-002590263bf5.html
09 Jun 2016 21:03:58
Original commit files touched by this commit  1.1_2
Revision:416631
brnrd search for other commits by this committer
Add entry for CVE-2016-2178 OpenSSL vulnerability

Security:	CVE-2016-2178
09 Jun 2016 03:39:23
Original commit files touched by this commit  1.1_2
Revision:416582
junovitch search for other commits by this committer
Fill in <freebsdpr> tag on last entry; I staged it prior to opening the PR
for tracking and forgot to fill it in pre-commit.

PR:		210155
09 Jun 2016 03:28:07
Original commit files touched by this commit  1.1_2
Revision:416580
junovitch search for other commits by this committer
Document two expat CVEs reported by upstream

PR:		210155
Reported by:	Sebastian Pipping <sebastian@pipping.org>
Security:	CVE-2012-6702
Security:	CVE-2016-5300
Security:	https://vuxml.FreeBSD.org/freebsd/c9c252f5-2def-11e6-ae88-002590263bf5.html
08 Jun 2016 20:32:00
Original commit files touched by this commit  1.1_2
Revision:416563
bmah search for other commits by this committer
Add entry for recent iperf3 vulnerability.

Security:	d6bbf2d8-2cfc-11e6-800b-080027468580
Sponsored by:	ESnet
07 Jun 2016 16:37:58
Original commit files touched by this commit  1.1_2
Revision:416515
tijl search for other commits by this committer
Document GNUTLS-SA-2016-1.
07 Jun 2016 16:34:07
Original commit files touched by this commit  1.1_2
Revision:416514
jbeich search for other commits by this committer
Document recent Firefox vulnerabilities
06 Jun 2016 22:32:48
Original commit files touched by this commit  1.1_2
Revision:416490
feld search for other commits by this committer
Fix cvename entries
06 Jun 2016 21:08:05
Original commit files touched by this commit  1.1_2
Revision:416488
rene search for other commits by this committer
Document new vulnerabilities in www/chromium < 51.0.2704.79

Obtained
from:	http://googlechromereleases.blogspot.nl/2016/06/stable-channel-update.html
05 Jun 2016 18:59:49
Original commit files touched by this commit  1.1_2
Revision:416417
tijl search for other commits by this committer
The Expat vulnerability also affects linux-*-expat.
05 Jun 2016 18:04:11
Original commit files touched by this commit  1.1_2
Revision:416410
junovitch search for other commits by this committer
Document OpenAFS vulnerabilities in 1.6.16 and 1.6.17

PR:		209534
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2015-8312
Security:	CVE-2016-2860
Security:	CVE-2016-4536
Security:	https://vuxml.FreeBSD.org/freebsd/2e8fe57e-2b46-11e6-ae88-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/bcbd3fe0-2b46-11e6-ae88-002590263bf5.html
05 Jun 2016 17:44:15
Original commit files touched by this commit  1.1_2
Revision:416408
junovitch search for other commits by this committer
Fixup invalid nginx version from r416222; it needed a PORTEPOCH to be valid.
Add version range valid for backported commit on 1.8 and 1.9 in quarterly.

Security:	CVE-2016-4450
Security:	https://vuxml.FreeBSD.org/freebsd/36cf7670-2774-11e6-af29-f0def16c5c1b.html
05 Jun 2016 16:36:59
Original commit files touched by this commit  1.1_2
Revision:416397
junovitch search for other commits by this committer
Document ikiwiki XSS vulnerability

PR:		209593
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-4561
Security:	https://vuxml.FreeBSD.org/freebsd/0297b260-2b3b-11e6-ae88-002590263bf5.html
01 Jun 2016 22:49:47
Original commit files touched by this commit  1.1_2
Revision:416260
zi search for other commits by this committer
- Document vulnerability in www/h2o

PR:		209926
Submitted by:	Dave Cottlehuber (maintainer)
31 May 2016 21:50:59
Original commit files touched by this commit  1.1_2
Revision:416223
osa search for other commits by this committer
Fix latest cacti entry.

Found by:	make validate
No cookie for:	brnrd
31 May 2016 21:44:52
Original commit files touched by this commit  1.1_2
Revision:416222
osa search for other commits by this committer
Add an entry about latest nginx vulnerability.
31 May 2016 20:00:29
Original commit files touched by this commit  1.1_2
Revision:416215
brnrd search for other commits by this committer
security/vuxml: Modify libressl < 2.3.4 range

  - Change existing range to >2.3.0 and <2.3.4
  - Add <2.2.7 range
  - Update modified date

This addresses pkg audit showing LibreSSL 2.2.7 as vulnerable
29 May 2016 19:01:24
Original commit files touched by this commit  1.1_2
Revision:416120
pi search for other commits by this committer
Document security issues fixed in cacti 0.8.8h

PR:		209809
Reported by:	Daniel Austin <freebsd-ports@dan.me.uk>
Security:	CVE-2016-3659
Security:	https://vuxml.FreeBSD.org/freebsd/6167b341-250c-11e6-a6fb-003048f2e514.html
29 May 2016 09:46:32
Original commit files touched by this commit  1.1_2
Revision:416090
ohauer search for other commits by this committer
- document openvswitch CVE-2016-2074

PR:		208404
Submitted by:	ohauer
28 May 2016 10:14:12
Original commit files touched by this commit  1.1_2
Revision:415981
rene search for other commits by this committer
Document vulnerabilities in www/chromium:
 < 50.0.2661.94
 < 50.0.2661.102
 < 51.0.2704.63

Obtained from:	http://googlechromereleases.blogspot.nl/
28 May 2016 01:40:53
Original commit files touched by this commit  1.1_2
Revision:415969
junovitch search for other commits by this committer
Document security issues fixed in PHP 7.0.7, 5.6.22, and 5.5.36

PR:		209779
Reported by:	Fabiano Sidler <fabianosidler@swissonline.ch>
Security:	CVE-2013-7456
Security:	CVE-2016-4343
Security:	CVE-2016-5093
Security:	CVE-2016-5094
Security:	CVE-2016-5096
Security:	https://vuxml.FreeBSD.org/freebsd/6b110175-246d-11e6-8dd3-002590263bf5.html
26 May 2016 20:01:01
Original commit files touched by this commit  1.1_2
Revision:415913
matthew search for other commits by this committer
Add CVE names for the latest phpMyAdmin advisories, not that they have
been released.
26 May 2016 06:57:58
Original commit files touched by this commit  1.1_2
Revision:415876
matthew search for other commits by this committer
fix typo.
25 May 2016 21:06:55
Original commit files touched by this commit  1.1_2
Revision:415865
matthew search for other commits by this committer
Document two more phpMyAdmin vulnerabilities: PMSA-2016-14 and
PMSA-2016-16.

(For anyone wondering about the suspicious gap in the sequence:
PMSA-2016-15 only affected unreleased code in their git master
development branch)
24 May 2016 22:32:49
Original commit files touched by this commit  1.1_2
Revision:415814
bapt search for other commits by this committer
Add a new keywork xmlcatmgr

It simplifies the handling of the XML and SMGL catalog
It brings a big of consistency by always specifying the catalog path absolute
instead of mixing absolute and relative path.
The keyword is also written a PKG_ROOTDIR friendly to simplify cross installing

Reviewed by:	hrs
Differential Revision:	https://reviews.freebsd.org/D6539
24 May 2016 01:57:31
Original commit files touched by this commit  1.1_2
Revision:415757
junovitch search for other commits by this committer
Document security announcement from MediaWiki 1.26.3, 1.25.6, and
1.23.14 release.
20 May 2016 01:22:31
Original commit files touched by this commit  1.1_2
Revision:415536
junovitch search for other commits by this committer
Document wpa_supplicant security advisory 2016-1

PR:		209564
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-4477
Security:	CVE-2016-4476
Security:	https://vuxml.FreeBSD.org/freebsd/967b852b-1e28-11e6-8dd3-002590263bf5.html
20 May 2016 01:07:11
Original commit files touched by this commit  1.1_2
Revision:415533
junovitch search for other commits by this committer
Document Expat XML Parser crash on malformed input

Security:	CVE-2016-0718
Security:	https://vuxml.FreeBSD.org/freebsd/57b3aba7-1e25-11e6-8dd3-002590263bf5.html
17 May 2016 18:32:17
Original commit files touched by this commit  1.1_2
Revision:415406
ohauer search for other commits by this committer
- document bugzilla Cross-Site Scripting issue
14 May 2016 08:46:46
Original commit files touched by this commit  1.1_2
Revision:415181
mandree search for other commits by this committer
Mark openvpn-polarssl <v2.3.11 vulnerable, too, not just openvpn.

Security: 0dc8be9e-19af-11e6-8de0-080027ef73ec

Number of commits found: 4342 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
chromiumJul 22
krb5-114Jul 21
mariadb100-server*Jul 21
mariadb101-server*Jul 21
mariadb55-server*Jul 21
mysql55-server*Jul 21
mysql56-server*Jul 21
mysql57-server*Jul 21
openoffice-4Jul 21
openoffice-develJul 21
percona55-server*Jul 21
typo3Jul 18
typo3-ltsJul 18
atutorJul 16
atutorJul 16

18 vulnerabilities affecting 35 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26061
Broken 80
Deprecated 122
Ignore 351
Forbidden 0
Restricted 201
No CDROM 83
Vulnerable 74
Expired 10
Set to expire 109
Interactive 0
new 24 hours 3
new 48 hours8
new 7 days22
new fortnight89
new month165

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.