| Commit History - (may be incomplete: see SVNWeb link above for full details) |
| Date | By | Description |
14 Oct 2012 15:30:47
  1.1_1
|
zi  |
- Add in additional package names for recent bind vulnerability
Feature safe: yes |
11 Oct 2012 19:15:12
1.1_1
|
flo |
- update to 16.0.1
- update vuln.xml entry
Feature safe: yes |
10 Oct 2012 22:07:00
1.1_1
|
rene |
Document a new vulnerability in www/chromium < 22.0.1229.94
Obtained
from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
Feature safe: yes |
10 Oct 2012 21:13:07
1.1_1
|
flo |
- Update firefox-esr, thunderbird-esr, linux-firefox and linux-thunderbird to
10.0.8
- Update firefox and thunderbird to 16.0
- Update seamonkey to 2.13
- Update all -i18n ports respectively
- switch firefox 16.0 and seamonkey 2.13 to ALSA by default for better
latency during pause and seeking with HTML5 video
- remove fedisableexcept() hacks, obsolete since FreeBSD 4.0
- support system hunspell dictionaries [1]
- unbreak -esr ports with clang3.2 [2]
- unbreak nss build when CC contains full path [3]
- remove GNOME option grouping [4]
- integrate enigmail into thunderbird/seamonkey as an option [5]
- remove mail/enigmail* [6]
- enable ENIGMAIL, LIGHTNING and GIO options by default
- add more reporters in about:memory: page-faults-hard, page-faults-soft, (Only the first 15 lines of the commit message are shown above  ) |
10 Oct 2012 11:54:44
1.1_1
|
erwin |
Upgrade to the latest BIND patch level:
A deliberately constructed combination of records could cause named
to hang while populating the additional section of a response.
Security:
http://www.vuxml.org/freebsd/57a700f9-12c0-11e2-9f86-001d923933b6.html |
03 Oct 2012 12:51:12
1.1_1
|
rm |
- correct the range in last entry (le/lt typo) |
03 Oct 2012 12:33:39
1.1_1
|
rm |
- update to 2.8.10
- add vuxml entry
This release fixes SQL injection vulnerability.
PR: 172114
Submitted by: rm (myself)
Approved by: ports-secteam (eadler)
Security: dee44ba9-08ab-11e2-a044-d0df9acfd7e5 |
27 Sep 2012 17:01:15
1.1_1
|
danfe |
Mark nvidia-driver-173.14.35_1 as not vulnerable. |
26 Sep 2012 21:49:34
1.1_1
|
rene |
Document vulnerabilities in www/chromium < 22.0.1229.79
Obtained
from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates |
26 Sep 2012 15:37:59
1.1_1
|
glarkin |
- Document remote code execution in ePerl (all versions)
- Deprecate and schedule removal in month - no upstream fix available and
no active development since 1998
Security: 73efb1b7-07ec-11e2-a391-000c29033c32
Security: CVE-2001-0733
Security: http://www.shmoo.com/mail/bugtraq/jun01/msg00286.shtml |
25 Sep 2012 21:41:51
1.1_1
|
glarkin |
- Documented PNG file DoS vulnerability in ImageMagick and GraphicsMagick
- Added -nox11 suffixes to various ImageMagick entries |
23 Sep 2012 12:27:22
1.1_1
|
eadler |
Update vuxml to indicate which versions are vulnerable. |
20 Sep 2012 03:02:43
1.1_1
|
bdrewery |
- Update php52 backports patch to 20120911
- Add and update relevant vuxml entries
Changes:
- CVE-2011-1398 - The sapi_header_op function in main/SAPI.c in PHP
before 5.3.11 does not properly handle %0D sequences
- CVE-2012-0789 - Memory leak in the timezone functionality in PHP
before 5.3.9 allows remote attackers to cause a denial of service
(memory consumption) by triggering many strtotime function calls,
which are not properly handled by the php_date_parse_tzfile cache.
- CVE-2012-3365 - The SQLite functionality in PHP before 5.3.15 allows
remote attackers to bypass the open_basedir protection mechanism via
unspecified vectors
- Timezone database updated to version 2012.5 (2012e) (from 2011.13 (2011m))
- Minor improvements (CVE-2012-2688, compilation issues with old GCC)
PR: ports/171583
Submitted by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com>
Approved by: Alex Keda <admin@lissyara.su> (maintainer) |
20 Sep 2012 01:09:57
1.1_1
|
bdrewery |
- CVE-2012-2688 was addressed by php52-5.2.17_10
PR: ports/170063
PR: ports/171583
Reported by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com>
Security: bdab0acd-d4cd-11e1-8a1c-14dae9ebcf89 |
19 Sep 2012 03:46:36
1.1_1
|
dougb |
Upgrade to the latest BIND patch level:
Prevents a crash when queried for a record whose RDATA exceeds
65535 bytes.
Prevents a crash when validating caused by using "Bad cache" data
before it has been initialized.
ISC_QUEUE handling for recursive clients was updated to address
a race condition that could cause a memory leak. This rarely
occurred with UDP clients, but could be a significant problem
for a server handling a steady rate of TCP queries.
A condition has been corrected where improper handling of
zero-length RDATA could cause undesirable behavior, including
termination of the named process.
For more information: https://kb.isc.org/article/AA-00788 |
17 Sep 2012 18:46:52
1.1_1
|
lwhsu |
Document Jenkins Security Advisory 2012-09-17 |
15 Sep 2012 21:25:33
1.1_1
|
eadler |
include newly 'awarded' CVE |
15 Sep 2012 17:22:33
1.1_1
|
nox |
Add vuxml for older versions of multimedia/vlc .
PR: ports/169985
Submitted by: "Anders N." <wicked@baot.se> |
15 Sep 2012 02:19:37
1.1_1
|
eadler |
Tell the world about the recent bacula vuln |
13 Sep 2012 03:35:09
1.1_1
|
swills |
- Update to 0.10.22.6 which fixes two security issues
- Document security issues in vuxml [1]
Reviewed by: bdrewery [1]
Security: 178ba4ea-fd40-11e1-b2ae-001fd0af1a4c |
12 Sep 2012 07:31:22
1.1_1
|
danfe |
Update NVIDIA arbitrary memory access vulnerability with CVE-2012-4225. |
11 Sep 2012 11:38:53
1.1_1
|
zi |
- Update entry for net/freeradius2 to reflect local patch to address
cve-2012-3547 |
11 Sep 2012 08:46:31
1.1_1
|
rea |
VuXML: document remote code execution in freeRADIUS |
11 Sep 2012 07:51:07
1.1_1
|
rea |
www/moinmoin: fix CVE-2012-4404, wrong processing of group ACLs
Using upstream patch from
http://hg.moinmo.in/moin/1.9/raw-rev/7b9f39289e16
PR: 171346
QA page: http://codelabs.ru/fbsd/ports/qa/www/moinmoin/1.9.4_1
Approved by: khsing.cn@gmail.com (maintainer)
Security: http://www.vuxml.org/freebsd/4f99e2ef-f725-11e1-8bd8-0022156e8794.html |
08 Sep 2012 02:37:32
1.1_1
|
eadler |
Add vim specific modeline to help users write correct vuxml
Submitted by: bdrewery |
07 Sep 2012 23:07:15
1.1_1
|
rakuco |
Document the vulnerability that led to emacs 24.2 |
07 Sep 2012 21:34:03
1.1_1
|
eadler |
Add a sanity check to ensure vuxml is actually installed prior to performing
the tidy step in validate. This step actually requires just the dependancies
but the full validate requires that vuxml be installed.
Reviewed by: simon
Approved by: secteam (implicit) |
07 Sep 2012 20:25:41
1.1_1
|
swills |
- Update to 3.4.2 [1] [2] [3]
- Document security issue [4]
PR: ports/171397 [1]
PR: ports/171404 [2]
PR: ports/171405 [3]
Submitted by: Yuan-Chung Hsiao <ychsiao@ychsiao.org> (maintainer) [1]
Submitted by: Joe Horn <joehorn@gmail.com> (maintainer) [2] [3]
Reviewed by: eadler [4]
Security: 30149157-f926-11e1-95cd-001fd0af1a4c |
06 Sep 2012 06:10:42
1.1_1
|
rea |
VuXML: add <modified> tag for Wireshark's entry for CVE-2012-3548 |
05 Sep 2012 16:02:11
1.1_1
|
marcus |
Change the wireshark version for the DRDA fix. |
05 Sep 2012 10:42:38
1.1_1
|
rea |
VuXML: document XSS in MoinMoin before 1.9.4 via RST parser |
05 Sep 2012 09:47:35
1.1_1
|
rea |
VuXML: document wrong group ACL processing in MoinMoin |
05 Sep 2012 06:29:39
1.1_1
|
rea |
PHP 5.x: document header splitting vulnerability
There is a related CVE number (CVE-2012-4388), but there is no current
consensus about it:
http://article.gmane.org/gmane.comp.security.oss.general/8303 |
04 Sep 2012 21:05:15
1.1_1
|
mandree |
Modify fetchmail vuln' URLs to established site.
While at it, adjust the two oldest topics to current format, for uniformity,
on, for instance, http://www.vuxml.org/freebsd/pkg-fetchmail.html. |
04 Sep 2012 13:45:28
1.1_1
|
rea |
security/squidclamav: fix DoS and XSS vulnerabilities
Apply upstream patches for CVE-2012-3501 and CVE-2012-4667.
Security: http://www.vuxml.org/freebsd/ce680f0a-eea6-11e1-8bd8-0022156e8794.html
Security: http://www.vuxml.org/freebsd/8defa0f9-ee8a-11e1-8bd8-0022156e8794.html
PR: 171022
QA page: http://codelabs.ru/fbsd/ports/qa/security/squidclamav/5.7_1
Approved by: maintainer timeout (1 week) |
02 Sep 2012 02:57:38
1.1_1
|
eadler |
Inform the community about a recent bitcoin DoS vuln.
Reviewed by: swills |
01 Sep 2012 20:16:06
1.1_1
|
ohauer |
- update bugzilla bugzilla3 and bugzilla42
- use new bugzilla@ address (members skv@, tota@, ohauer@)
- patch russian/japanese/german bugzilla and bugzilla templates
so the reflect the security updates in the original templates
- patch german/bugzilla42 templates
- adopt new Makefile header
vuxml: 6ad18fe5-f469-11e1-920d-20cf30e32f6d
CVE: CVE-2012-3981
https://bugzilla.mozilla.org/show_bug.cgi?id=785470
https://bugzilla.mozilla.org/show_bug.cgi?id=785522
https://bugzilla.mozilla.org/show_bug.cgi?id=785511 |
01 Sep 2012 18:50:14
1.1_1
|
rea |
VuXML: document CVE-2012-3534, DoS via large number of connections |
01 Sep 2012 17:40:16
1.1_1
|
eadler |
vuxml matches on PKGNAME, not on the port directory.
mediawiki118 has PKGNAME mediawiki-1.18.4 |
01 Sep 2012 17:16:50
1.1_1
|
rea |
Add "modified" tag to the Java 7 entry
Forgot to do it at r303435.
Spotted by: wxs
Pointyhat to: rea |
01 Sep 2012 12:44:33
1.1_1
|
wen |
- Update www/mediawiki to 1.19.2
- Update www/mediawiki118 to 1.18.5
- Document the security bugs |
31 Aug 2012 16:58:42
1.1_1
|
rea |
VuXML: update Java 7 entry with Oracle-provided details
Oracle's Java 7 update 7 fixes CVE-2012-4681. |
31 Aug 2012 15:17:13
1.1_1
|
mandree |
Tidy up paragraph formatting (it passed "make validate" before).
Suggested by: wxs |
31 Aug 2012 10:59:18
1.1_1
|
rea |
VuXML: document CVE-2012-3548, DoS in Wireshark |
30 Aug 2012 23:08:55
1.1_1
|
rene |
Document vulnerabilities in www/chromium < 21.0.1180.89
Obtained
from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates |
30 Aug 2012 22:14:11
1.1_1
|
flo |
- Update net/asterisk to 1.8.15.1
- Update net/asterisk10 to 10.7.1
- Document vulnerabilities in vuln.xml
- Fix URLs in the pervious asterisk vuln.xml entry
Security: http://www.vuxml.org/freebsd/4c53f007-f2ed-11e1-a215-14dae9ebcf89.html |
30 Aug 2012 11:40:20
1.1_1
|
jase |
- Update to 1.5.20
- Update MASTER_SITES
- Convert to optionsNG and add DOCS option
- Document security vulnerabilities [1]
PR: ports/169558
Requested by: Alexey <alexey@kouznetsov.com> (submitter)
Security: 6dd5e45c-f084-11e1-8d0f-406186f3d89d [1]
Approved by: flo (mentor) |
30 Aug 2012 09:03:22
1.1_1
|
rea |
VuXML: document CVE-2012-4681, security manager bypass in Java 7.x |
30 Aug 2012 06:23:21
1.1_1
|
mandree |
Add a vuln' entry for fetchmail's CVE-2011-3389 vulnerability. |
27 Aug 2012 17:44:23
1.1_1
|
mandree |
Update fetchmail to 6.3.21_1, fixing CVE-2012-3482.
Adjust VuXML database entry from < 6.3.22 to < 6.3.21_1.
PR: ports/170613
Approved by: maintainer timeout (14 days)
Security: http://www.vuxml.org/freebsd/83f9e943-e664-11e1-a66d-080027ef73ec.html
Security: CVE-2012-3482 |
26 Aug 2012 21:31:12
1.1_1
|
rea |
VuXML entry c906e0a4-efa6-11e1-8fbf-001b77d09812: fix port epoch
Pointyhat to: rea |
26 Aug 2012 21:26:57
1.1_1
|
rea |
VuXML: document XSS in RoundCube Web-mail application
Branch 0.8.x before 0.8.1 is prone to XSS attack via incoming
HTML messages. |
26 Aug 2012 17:33:12
1.1_1
|
rea |
news/inn: fix plaintext command injection, CVE-2012-3523
Relevant only for INN installations that are using encryption.
PR: 171013
Approved by: fluffy@FreeBSD.org (maintainer)
Security: http://www.vuxml.org/freebsd/a7975581-ee26-11e1-8bd8-0022156e8794.html |
26 Aug 2012 01:44:43
1.1_1
|
avilla |
- Document Calligra input validation failure. |
25 Aug 2012 22:17:29
1.1_1
|
bdrewery |
- Document that CVE-2012-3386 only affects automake >= 1.5.0
Verified this by inspecting the automake14 source, as well as
official release tarballs and git history.
Approved by: bapt (mentor) |
25 Aug 2012 11:38:00
1.1_1
|
rea |
VuXML: document cross-site scripting in SquidClamav |
25 Aug 2012 10:07:40
1.1_1
|
rea |
VuXML: document DoS in SquidGuard
SquidGuard can be crashed via the specially-crafted URL
when external URL checker is used. |
24 Aug 2012 20:13:53
1.1_1
|
rea |
VuXML: document INN plaintext command injection vulnerability |
22 Aug 2012 21:10:10
1.1_1
|
rea |
VuXML: document CVE-2012-3525 in jabberd 2.x |
22 Aug 2012 20:01:19
1.1_1
|
rea |
VuXML: fix whitespace in my previous rssh entry |
22 Aug 2012 20:00:31
1.1_1
|
rea |
VuXML: document rssh vulnerabilities fixed in version 2.3.3 |
21 Aug 2012 20:56:44
1.1_1
|
rea |
rssh: document arbitrary code execution, CVE-2012-3478 |
20 Aug 2012 01:40:39
1.1_1
|
wxs |
Put libotr entry back. I added the cited URL to the references. |
19 Aug 2012 21:47:46
1.1_1
|
dougb |
Remove the improperly formatted libotr entry. Someone with more knowledge
and experience needs to take care of this, I'm clearly not competent. |
18 Aug 2012 08:39:39
1.1_1
|
dougb |
14 August 2012 libotr version 3.2.1 released
Versions 3.2.0 and earlier of libotr contain a small heap write overrun
(thanks to Justin Ferguson for the report), and a large heap read overrun
(thanks to Ben Hawkes for the report).
Add a vuxml entry, and tune up the notes about adding a new entry. |
18 Aug 2012 03:07:42
1.1_1
|
wxs |
Document OpenTTD DoS. |
18 Aug 2012 02:30:28
1.1_1
|
wxs |
Document multiple wireshark vulnerabilities.
Two are from 1.8.1 (CVE-2012-4048 and CVE-2012-4049). The remaining are
from 1.8.2 which is not in ports yet. |
17 Aug 2012 19:39:51
1.1_1
|
jgh |
The PostgreSQL Global Development Group today released security updates for all
active branches
of the PostgreSQL database system, including versions 9.1.5, 9.0.9, 8.4.13 and
8.3.20. This
update patches security holes associated with libxml2 and libxslt, similar to
those affecting
other open source projects. All users are urged to update their installations at
the first
available opportunity.
This security release fixes a vulnerability in the built-in XML functionality,
and a vulnerability
in the XSLT functionality supplied by the optional XML2 extension. Both
vulnerabilities allow
reading of arbitrary files by any authenticated database user, and the XSLT
vulnerability
allows writing files as well. The fixes cause limited backwards compatibility
issues.
These issues correspond to the following two vulnerabilities:
CVE-2012-3488: PostgreSQL insecure use of libxslt
CVE-2012-3489: PostgreSQL insecure use of libxml2
This release also contains several fixes to version 9.1, and a smaller number of
fixes to older versions, including: (Only the first 15 lines of the commit message are shown above ) |
17 Aug 2012 07:27:04
1.1_1
|
matthew |
Document the latest phpMyAdmin vulnerability PMSA-2012-4 |
15 Aug 2012 19:45:50
1.1_1
|
bdrewery |
- Update www/typo3 to 4.7.4 [1]
- Convert to new options framework [1]
- Update www/typo345 to 4.5.19 [2]
- Update www/typo346 to 4.6.12 [3]
- Changes: https://typo3.org/news/article/typo3-4519-4612-and-474-released/
- Document security vulnerabilities [4]
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-004/
PR: ports/170650 [1]
PR: ports/170647 [2]
PR: ports/170649 [3]
Submitted by: Helmut Schneider <jumper99@gmx.de> (maintainer)
Security: 48bcb4b2-e708-11e1-a59d-000d601460a4 [4]
Approved by: eadler (mentor) |
14 Aug 2012 23:17:56
1.1_1
|
mandree |
Document CVE-2012-3482 for fetchmail, one DoS and one information disclosure
vulnerability in non-default NTLM code.
Also see ports/170613 which is pending maintainer feedback. |
13 Aug 2012 17:57:26
1.1_1
|
jkim |
Belatedly add an entry for the recent IcedTea-Web updates. |
11 Aug 2012 17:41:52
1.1_1
|
novel |
Document libcloud MITM vuln.
Security: CVE-2012-3446 |
11 Aug 2012 08:11:17
1.1_1
|
matthew |
Document the latest phpmyadmin security problem. |
10 Aug 2012 14:38:47
1.1_1
|
rene |
- Document vulnerabilities in www/chromium 20.0.1132.57 and 21.0.1180.60.
- Keep the latest chromium vulnerabilies on top. |
10 Aug 2012 08:08:27
1.1_1
|
rene |
Document two vulnerabilities in www/chromium < 21.0.1180.75 related to the
builtin PDF viewer.
Obtained
from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates |
10 Aug 2012 02:50:54
1.1_1
|
swills |
- Update rails and friends to 3.2.8
- Document security issue in 3.2.7 [1]
Submitted by: bdrewery [1]
Reviewed by: swills [1]
Security: 31db9a18-e289-11e1-a57d-080027a27dbf |
09 Aug 2012 15:43:09
1.1_1
|
wxs |
Document old sudosh buffer overflow.
Noticed by: Diego Linke |
07 Aug 2012 15:57:26
1.1_1
|
wxs |
Fix up whitespace in 10f38033-e006-11e1-9304-000000000000.
Replace broken vid in 10f38033-e006-11e1-9304-000000000000 with one that is
correct. |
07 Aug 2012 02:02:26
1.1_1
|
zi |
- Document FreeBSD-SA-12:05.bind |
06 Aug 2012 22:44:14
1.1_1
|
bdrewery |
Document CVE-2012-3386 for devel/automake
Approved by: eadler (mentor) |
02 Aug 2012 21:24:11
1.1_1
|
flo |
Belatedly add an entry for the recent Mozilla updates
Security: http://www.freebsd.org/ports/portaudit/dbf338d0-dce5-11e1-b655-14dae9ebcf89.html |
02 Aug 2012 12:59:58
1.1_1
|
zi |
- Cleanup whitespace |
02 Aug 2012 12:48:10
1.1_1
|
wxs |
Whitespace fixes. |
02 Aug 2012 12:35:33
1.1_1
|
wxs |
Add modified for django entry.
Noticed by: remko@ |
02 Aug 2012 03:25:54
1.1_1
|
wxs |
Add CVE entries for f01292a0-db3c-11e1-a84b-00e0814cab4e. |
02 Aug 2012 03:17:26
1.1_1
|
wxs |
Document Apache 2.2.x insecure handling of LD_LIBRARY_PATH.
Add patch[1] to address problem to apache port.
[1]:
http://svn.apache.org/viewvc/httpd/httpd/trunk/support/envvars-std.in?view=log&pathrev=1296428
Approved by: apache@ (pgollucci@)
Obtained from: Apache SVN |
31 Jul 2012 19:04:51
1.1_1
|
lwhsu |
- Document django -- multiple vulnerabilities |
30 Jul 2012 12:42:32
1.1_1
|
zi |
- Update net/isc-dhcp41-server to 4.1-ESV-R6 [1]
- Document vulnerabilities in net/isc-dhcp41-server
- Cleanup formatting in vuxml
PR: ports/170245 [1]
Submitted by: Douglas Thrift <douglas@douglasthrift.net> (maintainer) [1]
Security: c7fa3618-d5ff-11e1-90a2-000c299b62e1 |
27 Jul 2012 22:10:22
1.1_1
|
delphij |
Fix build. |
27 Jul 2012 21:34:05
1.1_1
|
ohauer |
- security update bugzilla
new Versions: 3.6.10, 4.0.7, 4.2.2
4.2.2
This release fixes two security issues. See the Security Advisory for details.
In addition, the following important fixes/changes have been made in this
release:
o A regression introduced in Bugzilla 4.0 caused some login names to be
ignored
when entered in the CC list of bugs. (Bug 756314)
o Some queries could trigger an invalid SQL query if strings entered by the
user
contained leading or trailing whitespaces. (Bug 760075)
o The auto-completion form for keywords no longer automatically selects the
first keyword in the list when the field is empty. (Bug 764517)(Only the first 15 lines of the commit message are shown above ) |
27 Jul 2012 13:20:22
1.1_1
|
miwi |
- Whitespace only fixes.
Please care more about formating. |
27 Jul 2012 12:39:06
1.1_1
|
zi |
- Update to 3.2.13
- Cleanup whitespace
- Document vulnerability in dns/nsd (CVE-2012-29789)
PR: ports/170208
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Security: 17f369dc-d7e7-11e1-90a2-000c299b62e1 |
27 Jul 2012 03:09:19
1.1_1
|
swills |
- Update Rails and friends to 3.2.7
- Add vuxml entry for Rails 3.2.6 [1]
Reviewed by: zi [1] |
26 Jul 2012 17:46:52
1.1_1
|
matthew |
Security update to 0.11
ChangeLog:
0.11 2012-07-03 Alex Vandiver
* Obfuscate passwords in RT's System Configuration page
* Set an empty CurrentUser on failure, instead of removing it entirely
0.10_01 2012-02-23 Thomas Sibley
* Escape usernames in filter values so special characters don't die
0.10 2012-02-17 Thomas Sibley
* Silence confusing log messages when $ExternalInfoPriority is empty
0.09_03 2012-01-27 Thomas Sibley(Only the first 15 lines of the commit message are shown above ) |
25 Jul 2012 02:32:22
1.1_1
|
zi |
- Document vulnerabilities in net/isc-dhcp42-server |
24 Jul 2012 19:23:23
1.1_1
|
dougb |
Heavy DNSSEC Validation Load Can Cause a "Bad Cache" Assertion Failure
in BIND9
High numbers of queries with DNSSEC validation enabled can cause an
assertion failure in named, caused by using a "bad cache" data structure
before it has been initialized.
CVE: CVE-2012-3817
Posting date: 24 July, 2012 |
24 Jul 2012 01:12:06
1.1_1
|
delphij |
/ is not allowed in package name, fix the entry by removing the
databases/ prefix. |
24 Jul 2012 00:56:07
1.1_1
|
swills |
- Document activerecord security issues |
23 Jul 2012 14:39:48
1.1_1
|
flo |
- update to 5.3.15
- document php vulnerabilities
Security: http://www.vuxml.org/freebsd/bdab0acd-d4cd-11e1-8a1c-14dae9ebcf89.html |
If you buy from Amazon USA, please support us by using this link.