notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)Want a good monitor light? See my photosAll times are UTC		 Ukraine
This referral link gives you 10% off a Fastmail.com account and gives me a discount on my Fastmail account.

Get notified when packages are built

A new feature has been added. FreshPorts already tracks package built by the FreeBSD project. This information is displayed on each port page. You can now get an email when FreshPorts notices a new package is available for something on one of your watch lists. However, you must opt into that. Click on Report Subscriptions on the right, and New Package Notification box, and click on Update.

Finally, under Watch Lists, click on ABI Package Subscriptions to select your ABI (e.g. FreeBSD:14:amd64) & package set (latest/quarterly) combination for a given watch list. This is what FreshPorts will look for.

Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_6 security on this many watch lists=31 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 1.1_6Version of this port present on the latest quarterly branch.
Maintainer: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2004-02-12 14:24:23
Last Update: 2024-04-22 18:20:02
Commit Hash: a8b170f
People watching this port, also watch:: gnupg, curl, nmap, libxml2, vim
Also Listed In: textproc
License: BSD2CLAUSE
WWW:
https://vuxml.freebsd.org/
Description:
VuXML (the Vulnerability and eXposure Markup Language) is an XML application for documenting security bugs and corrections within a software package collection such as the FreeBSD Ports Collection. This port installs the DTDs required for validating VuXML documents.
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (13 items)
Collapse this list.
  1. /usr/local/share/licenses/vuxml-1.1_6/catalog.mk
  2. /usr/local/share/licenses/vuxml-1.1_6/LICENSE
  3. /usr/local/share/licenses/vuxml-1.1_6/BSD2CLAUSE
  4. @xmlcatmgr share/xml/dtd/vuxml/catalog
  5. @xmlcatmgr share/xml/dtd/vuxml/catalog.xml
  6. share/xml/dtd/vuxml/vuxml-10.dtd
  7. share/xml/dtd/vuxml/vuxml-11.dtd
  8. share/xml/dtd/vuxml/vuxml-model-10.mod
  9. share/xml/dtd/vuxml/vuxml-model-11.mod
  10. share/xml/dtd/vuxml/xml1.dcl
  11. @owner
  12. @group
  13. @mode
Collapse this list.
Dependency lines:
  • vuxml>0:security/vuxml
To install the port:
cd /usr/ports/security/vuxml/ && make install clean
To add the package, run one of these commands:
  • pkg install security/vuxml
  • pkg install vuxml
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: vuxml
Flavors: there is no flavor information for this port.
distinfo:
SHA256 (vuxml/vuxml-10.dtd) = 6a635ad2cf45f52361c8c2a29a689157fad4d00519045485bc822d34e04a524e SIZE (vuxml/vuxml-10.dtd) = 2986 SHA256 (vuxml/vuxml-model-10.mod) = 051fed00b52bedde8ee901003fc29f7b95cd904157e31ceef34e6b06f2d1a14a

Expand this list (11 items)

Collapse this list.

SIZE (vuxml/vuxml-model-10.mod) = 10599 SHA256 (vuxml/vuxml-11.dtd) = 12b50061d7bb34cecffede2e08d439e4469324376d55aeb7c73eb6aab0f36af1 SIZE (vuxml/vuxml-11.dtd) = 3063 SHA256 (vuxml/vuxml-model-11.mod) = a40777208625a3029c6f416aeeea733f614802a6a5f26035a4e445a09e61a47c SIZE (vuxml/vuxml-model-11.mod) = 13282 SHA256 (vuxml/xml1.dcl) = 343efa94c4e1302e85e08b2d1791d86e50aac1ecdbc3161daecac100e4726847 SIZE (vuxml/xml1.dcl) = 7372 SHA256 (vuxml/catalog) = 479a69cf02995603443fd1f3b5b33f97811670931f87f53be99a727d664abc66 SIZE (vuxml/catalog) = 549 SHA256 (vuxml/catalog.xml) = 7b2e2850f57264eeba0ccd3d1fc161b9d5ce3071ae0ec51b9da7fa956f2a6509 SIZE (vuxml/catalog.xml) = 2150

Collapse this list.

Packages (timestamps in pop-ups are UTC):
vuxml
ABIaarch64amd64armv6armv7i386powerpcpowerpc64powerpc64le
FreeBSD:13:latest1.1_61.1_61.1_51.1_61.1_6-1.1_5-
FreeBSD:13:quarterly1.1_61.1_61.1_61.1_61.1_61.1_61.1_61.1_6
FreeBSD:14:latest1.1_61.1_61.1_61.1_61.1_61.1_6-1.1_6
FreeBSD:14:quarterly1.1_61.1_6-1.1_61.1_61.1_61.1_61.1_6
FreeBSD:15:latest1.1_61.1_6n/a1.1_6n/a1.1_61.1_61.1_6
FreeBSD:15:quarterly--n/a-n/a---
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Runtime dependencies:
  1. xmlcatmgr : textproc/xmlcatmgr
  2. xsltproc : textproc/libxslt
  3. VERSION : textproc/xhtml-modularization
  4. xhtml-basic10.dtd : textproc/xhtml-basic
  5. python3.9 : lang/python39
There are no ports dependent upon this port
Configuration Options:
No options to configure
Options name:
security_vuxml
USES:
python:run
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. http://www.vuxml.org/dtd/vuxml-1/
Collapse this list.

Number of commits found: 7238 (showing only 100 on this page)

[First Page]  «  25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35  »  [Last Page]

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
1.1_3
21 Jul 2016 14:58:08
Revision:418877Original commit files touched by this commit		 brnrd search for other commits by this committer 
security/vuxml: Add MySQL vulnerabilities from quarterly update

  - Add MariaDB ports
  - Add Percona ports

PR:		211248
1.1_3
21 Jul 2016 14:23:01
Revision:418876Original commit files touched by this commit		 feld search for other commits by this committer 
Properly cancel the httpoxy vuxml entry
1.1_3
20 Jul 2016 12:25:51
Revision:418834Original commit files touched by this commit		 feld search for other commits by this committer 
Remove HTTPoxy entry in vuxml until a we know if upstream vendors will
patch this so things aren't marked vulnerable forever.
1.1_3
19 Jul 2016 12:55:43
Revision:418774Original commit files touched by this commit		 tz search for other commits by this committer 
www/typo3 and www/typo3-lts: Document missing access check in Extbase

PR:          210870, 210871
Security:    CVE-2016-5091
Security:   
https://vuxml.freebsd.org/freebsd/3caf4e6c-4cef-11e6-a15f-00248c0c745d.html
Approved by: junovitch (mentor)
1.1_3
19 Jul 2016 06:43:52
Revision:418762Original commit files touched by this commit		 brnrd search for other commits by this committer 
net/haproxy: Mark vulnerable to httpoxy in vuxml

Security:	cf0b5668-4d1b-11e6-b2ec-b499baebfeaf
1.1_3
18 Jul 2016 20:38:37
Revision:418747Original commit files touched by this commit		 brnrd search for other commits by this committer 
lang/go: Mark 1.6.3 as NOT vulnerable to httpoxy

  - Version 1.6.3 includes fix for "httpoxy" [1]

1: https://groups.google.com/forum/#!topic/golang-announce/7jZDOQ8f8tM

Security:	cf0b5668-4d1b-11e6-b2ec-b499baebfeaf
Security:	CVE-2016-5386
1.1_3
18 Jul 2016 20:15:17
Revision:418744Original commit files touched by this commit		 brnrd search for other commits by this committer 
www/apache24: Fix httpoxy vulnerability (+2.2)

  - Mark new Apache revisions not vulnerable
  - Add apache22-mpm-* ports
  - Add Apache CVE-number

Security:       cf0b5668-4d1b-11e6-b2ec-b499baebfeaf
Security:       CVE-2016-5387
1.1_3
18 Jul 2016 19:47:27
Revision:418737Original commit files touched by this commit		 brnrd search for other commits by this committer 
httpoxy: Mark ports as vulnerable

  - apache22, apache24, go, go14, php55, php56, php70, python27, python33,
    python34, python35, nginx are all vulnerable.
  - No new versions fixing the HTTP Proxy header vulnerability
1.1_3
18 Jul 2016 17:36:43
Revision:418723Original commit files touched by this commit		 bdrewery search for other commits by this committer 
Fix CVE-2016-0772 entry to not blame only Python 2.7
1.1_3
16 Jul 2016 02:26:55
Revision:418617Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document security issues from ATutor 2.2.1 and 2.2.2 changelog

Security:	https://vuxml.FreeBSD.org/freebsd/00cb1469-4afc-11e6-97ea-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/ffa8ca79-4afb-11e6-97ea-002590263bf5.html
1.1_3
16 Jul 2016 01:08:06
Revision:418615Original commit files touched by this commit		 junovitch search for other commits by this committer 
Update Drupal SA-CORE-2016-002 with the assigned CVEs

PR:		210317
Security:	CVE-2016-6211
Security:	CVE-2016-6212
Security:	https://vuxml.FreeBSD.org/freebsd/7932548e-3427-11e6-8e82-002590263bf5.html
1.1_3
16 Jul 2016 00:59:10
Revision:418612Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Flash vulnerabilities in Adobe Security Bulletins APSB16-25

Security:	CVE-2016-4172
Security:	CVE-2016-4173
Security:	CVE-2016-4174
Security:	CVE-2016-4175
Security:	CVE-2016-4176
Security:	CVE-2016-4177
Security:	CVE-2016-4178
Security:	CVE-2016-4179
Security:	CVE-2016-4180
Security:	CVE-2016-4181
Security:	CVE-2016-4182
Security:	CVE-2016-4183
Security:	CVE-2016-4184
(Only the first 15 lines of the commit message are shown above View all of this commit message)
1.1_3
15 Jul 2016 17:13:53
Revision:418592Original commit files touched by this commit		 feld search for other commits by this committer 
Rename vuxml entry, add new detailed reference as primary.

This new reference has much more detailed information. It appears even
the latest version of struts is affected and this may affect many
products using the Apache Commons FileUpload Utility such as Jenkins,
Lucene-Solr, etc. Unfortunately it's difficult to identify which version
of the Apache Commons FileUpload Utility products may have, so this vuxml
may be expanded as more products are successfully identified.

PR:		211105
Security:	CVE-2016-3092
1.1_3
15 Jul 2016 16:56:01
Revision:418591Original commit files touched by this commit		 feld search for other commits by this committer 
Package name for jakarta-struts is actually apache-struts

Pointyhat:	me

PR:		211105
1.1_3
15 Jul 2016 16:54:27
Revision:418590Original commit files touched by this commit		 feld search for other commits by this committer 
Also add jakara-struts to the vuxml entry for CVE-2016-3092

PR:		211105
1.1_3
15 Jul 2016 16:48:51
Revision:418589Original commit files touched by this commit		 feld search for other commits by this committer 
Document tomcat vulnerability

PR:		211105
Security:	CVE-2016-3092
1.1_3
15 Jul 2016 16:41:21
Revision:418588Original commit files touched by this commit		 feld search for other commits by this committer 
Document libreoffice vulnerability

PR:		211111
Security:	CVE-2016-4324
1.1_3
15 Jul 2016 16:34:00
Revision:418587Original commit files touched by this commit		 feld search for other commits by this committer 
Update name in vuxml of person who reported CVE-2016-5102
1.1_3
15 Jul 2016 16:19:21
Revision:418584Original commit files touched by this commit		 feld search for other commits by this committer 
Document tiff vulnerabilities

Security:	CVE-2016-5102
Security:	CVE-2016-5875
Security:	CVE-2016-3186

PR:		211113
1.1_3
15 Jul 2016 11:23:23
Revision:418575Original commit files touched by this commit		 rakuco search for other commits by this committer 
Document CVE-2016-2334 and CVE-2016-2335 in archivers/p7zip.

PR:		211114
1.1_3
13 Jul 2016 01:26:46
Revision:418454Original commit files touched by this commit		 timur search for other commits by this committer 
Add information about CVE-2016-2119 vulnerability in Samba suits.

Security:	CVE-2016-2119
1.1_3
11 Jul 2016 15:31:10
Revision:418386Original commit files touched by this commit		 tz search for other commits by this committer 
rubygem-ruby-saml: Document XML signature wrapping attack

Security:    CVE-2016-5697
Security:
https://vuxml.freebsd.org/freebsd/3fcd52b2-4510-11e6-a15f-00248c0c745d.html
Approved by: junovitch (mentor)
1.1_3
07 Jul 2016 03:36:50
Revision:418159Original commit files touched by this commit		 lwhsu search for other commits by this committer 
- Fix affected versions of qemu and qemu-devel

Reviewed by:	junovitch
1.1_3
07 Jul 2016 01:44:23
Revision:418154Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document remote denial of service in quassel

PR:		209218
Security:	CVE-2016-4414
Security:	https://vuxml.FreeBSD.org/freebsd/7d64d00c-43e3-11e6-ab34-002590263bf5.html
1.1_3
05 Jul 2016 17:59:18
Revision:418099Original commit files touched by this commit		 ohauer search for other commits by this committer 
- document apache24 H2/X509 sec. issue.

  The sec. issue is only present if the port was built with
  non default settings (experimental H2 feature) and
  used in combination with X509 client auth!
1.1_3
04 Jul 2016 19:02:27
Revision:418049Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Xen Security Advisories (XSAs 173, 175, 176, 178, 179, and 180).

XSAs 171, 172, 174, and 181 are not applicable to FreeBSD.

Discussed with:	royger
Security:	CVE-2014-3672
Security:	CVE-2016-3710
Security:	CVE-2016-3712
Security:	CVE-2016-4963
Security:	CVE-2016-4480
Security:	CVE-2016-4962
Security:	CVE-2016-3960
Security:	https://vuxml.FreeBSD.org/freebsd/e800cd4b-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e6ce6f50-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e589ae90-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e43b210a-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e2fca11b-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/d51ced72-4212-11e6-942d-bc5ff45d0f28.html
1.1_3
04 Jul 2016 13:40:29
Revision:418026Original commit files touched by this commit		 junovitch search for other commits by this committer 
Update wnpa-sec-2016-12 through wnpa-sec-2016-18 with CVE assignment for
issues fixed in Wireshark 2.0.2

While here, fix bad copy/paste on upstream URL when the entry was made.

Security:	CVE-2016-4415
Security:	CVE-2016-4416
Security:	CVE-2016-4417
Security:	CVE-2016-4418
Security:	CVE-2016-4419
Security:	CVE-2016-4420
Security:	CVE-2016-4421
Secuirty:	https://vuxml.FreeBSD.org/freebsd/45117749-df55-11e5-b2bd-002590263bf5.html
1.1_3
04 Jul 2016 13:32:41
Revision:418025Original commit files touched by this commit		 junovitch search for other commits by this committer 
Update wnpa-sec-2016-19 through wnpa-sec-2016-27 with CVE assignment for
issues fixed in Wireshark 2.0.3

Security:	CVE-2016-4006
Security:	CVE-2016-4076
Security:	CVE-2016-4077
Security:	CVE-2016-4078
Security:	CVE-2016-4079
Security:	CVE-2016-4080
Security:	CVE-2016-4081
Security:	CVE-2016-4082
Security:	CVE-2016-4083
Security:	CVE-2016-4084
Security:	https://vuxml.FreeBSD.org/freebsd/7e36c369-10c0-11e6-94fa-002590263bf5.html
1.1_3
04 Jul 2016 13:25:47
Revision:418023Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document wnpa-sec-2016-29 through wnpa-sec-2016-37 for issues fixed in
Wireshark 2.0.4

Security:	CVE-2016-5350
Security:	CVE-2016-5351
Security:	CVE-2016-5352
Security:	CVE-2016-5353
Security:	CVE-2016-5354
Security:	CVE-2016-5355
Security:	CVE-2016-5356
Security:	CVE-2016-5357
Security:	CVE-2016-5358
Security:	https://vuxml.FreeBSD.org/freebsd/313e9557-41e8-11e6-ab34-002590263bf5.html
1.1_3
04 Jul 2016 01:46:35
Revision:418007Original commit files touched by this commit		 junovitch search for other commits by this committer 
Add fixed entries for Python 2.7, 3.4, 3.5 for urllib vulnerability.

Reset 3.3 as unfixed.

PR:		210539
PR:		210541
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5699
Security:	https://vuxml.FreeBSD.org/freebsd/a61374fc-3a4d-11e6-a671-60a44ce6887b.html
1.1_3
03 Jul 2016 23:13:14
Revision:418004Original commit files touched by this commit		 junovitch search for other commits by this committer 
Update earlier openvswitch entry with version fixed in ports

PR:		208404
Reported by:	ohauer
Security:	CVE-2016-2074
Security:	https://vuxml.FreeBSD.org/freebsd/b53bbf58-257f-11e6-9f4d-20cf30e32f6d.html
1.1_3
03 Jul 2016 22:57:25
Revision:418003Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document multiple security advisories for Moodle

Security:	CVE-2016-3729
Security:	CVE-2016-3731
Security:	CVE-2016-3732
Security:	CVE-2016-3733
Security:	CVE-2016-3734
Security:	https://vuxml.FreeBSD.org/freebsd/8656cf5f-4170-11e6-8dfe-002590263bf5.html
1.1_3
03 Jul 2016 21:21:13
Revision:417998Original commit files touched by this commit		 feld search for other commits by this committer 
Document icingaweb2 vulnerability
1.1_3
03 Jul 2016 19:31:27
Revision:417995Original commit files touched by this commit		 junovitch search for other commits by this committer 
Fix date from r417994 (2016 not 2015)
1.1_3
03 Jul 2016 19:30:15
Revision:417994Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document authorization logic vulnerability in Apache Hive

PR:		207173
Security:	CVE-2015-7521
Security:	https://vuxml.FreeBSD.org/freebsd/a5c204b5-4153-11e6-8dfe-002590263bf5.html
1.1_3
03 Jul 2016 18:44:39
Revision:417989Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document SQLite3 tempdir selection vulnerability

PR:		210751
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-6153
Security:	https://vuxml.FreeBSD.org/freebsd/546deeea-3fc6-11e6-a671-60a44ce6887b.html
1.1_3
03 Jul 2016 09:28:58
Revision:417962Original commit files touched by this commit		 brnrd search for other commits by this committer 
security/vuxml: Add Python smtplib TLS stripping vuln

PR:		210685
Submitted by:	brnrd
Security:	CVE-2016-0772
Security:	8d5368ef-40fe-11e6-b2ec-b499baebfeaf
1.1_3
01 Jul 2016 15:22:47
Revision:417890Original commit files touched by this commit		 matthew search for other commits by this committer 
Belatedly document 12 security advisories about phpMyAdmin.
Severities range from 'non-critical' to 'severe'
1.1_3
01 Jul 2016 12:23:45
Revision:417875Original commit files touched by this commit		 mat search for other commits by this committer 
Add a test target, testing that what the port is supposed to do works.

Sponsored by:	Absolight
1.1_3
01 Jul 2016 12:15:08
Revision:417874Original commit files touched by this commit		 mat search for other commits by this committer 
Add missing dependency.

Sponsored by:	Absolight
1.1_2
30 Jun 2016 22:55:50
Revision:417856Original commit files touched by this commit		 feld search for other commits by this committer 
Document haproxy vulnerability

Security:	CVE-2016-5360
1.1_2
30 Jun 2016 22:47:25
Revision:417850Original commit files touched by this commit		 feld search for other commits by this committer 
Document libtorrent-rasterbar vulnerability

Security:	CVE-2016-5301
1.1_2
30 Jun 2016 22:42:05
Revision:417849Original commit files touched by this commit		 feld search for other commits by this committer 
Modify dnsmasq vuxml entry

The vulnerable version range was not matching correctly for the devel
port.
1.1_2
30 Jun 2016 22:32:06
Revision:417845Original commit files touched by this commit		 feld search for other commits by this committer 
Document expat2 vulnerability

Security:	CVE-2016-4472
1.1_2
30 Jun 2016 22:10:41
Revision:417844Original commit files touched by this commit		 feld search for other commits by this committer 
Document dnsmasq vulnerability

Security:	CVE-2015-8899
1.1_2
30 Jun 2016 21:08:43
Revision:417843Original commit files touched by this commit		 feld search for other commits by this committer 
Document python vulnerability

PR:		210541
Security:	CVE-2016-5699
1.1_2
30 Jun 2016 20:52:39
Revision:417842Original commit files touched by this commit		 feld search for other commits by this committer 
Document openssl vulnerability

PR:		210550
Security:	CVE-2016-2177
1.1_2
26 Jun 2016 18:13:40
Revision:417596Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document remote denial of service via FileUpload component in Tomcat

PR:		209669 [1]
Reported by:	Geoffroy Desvernay <dgeo@centrale-marseille.fr> [1]
Reported by:	Roger Marquis <marquis@roble.com>
Security:	CVE-2016-3092
Security:	https://vuxml.FreeBSD.org/freebsd/cbceeb49-3bc7-11e6-8e82-002590263bf5.html
1.1_2
25 Jun 2016 23:17:46
Revision:417499Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Wordpress vulnerabilities fixed in 4.5.3

PR:             210480 [1]
PR:             210581
Reported by:	Mihail Timofeev <9267096@gmail.com> [1]
Security:	CVE-2016-5832
Security:	CVE-2016-5833
Security:	CVE-2016-5834
Security:	CVE-2016-5835
Security:	CVE-2016-5836
Security:	CVE-2016-5837
Security:	CVE-2016-5838
Security:	CVE-2016-5839
Security:	https://vuxml.FreeBSD.org/freebsd/bfcc23b6-3b27-11e6-8e82-002590263bf5.html
1.1_2
25 Jun 2016 22:18:24
Revision:417490Original commit files touched by this commit		 junovitch search for other commits by this committer 
Docment security issues fixed in PHP 7.0.8, 5.6.23, and 5.5.37

PR:		210491
PR:		210502
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Reported by:	Philip Jocks <freebsdbugs@filis.org>
Security:	CVE-2015-8874
Security:	CVE-2016-5766
Security:	CVE-2016-5767
Security:	CVE-2016-5768
Security:	CVE-2016-5769
Security:	CVE-2016-5770
Security:	CVE-2016-5771
Security:	CVE-2016-5772
Security:	CVE-2016-5773
Security:	https://vuxml.FreeBSD.org/freebsd/66d77c58-3b1d-11e6-8e82-002590263bf5.html
1.1_2
23 Jun 2016 16:55:18
Revision:417391Original commit files touched by this commit		 feld search for other commits by this committer 
Fix vuxml

I didn't validate after updating "foo reports:" line

Pointyhat:	me
1.1_2
23 Jun 2016 16:25:47
Revision:417384Original commit files touched by this commit		 feld search for other commits by this committer 
Document libarchive vulnerabilities

PR:		210493
Security:	CVE-2015-8934
Security:	CVE-2016-4300
Security:	CVE-2016-4301
Security:	CVE-2016-4302
1.1_2
23 Jun 2016 15:52:40
Revision:417381Original commit files touched by this commit		 feld search for other commits by this committer 
Add piwik XSS to vuxml

No further information is available. No CVE has been assigned.

PR:		210458
1.1_2
21 Jun 2016 08:34:28
Revision:417193Original commit files touched by this commit		 vd search for other commits by this committer 
Followup to r417190 - all versions of wget<1.18 are affected
1.1_2
21 Jun 2016 08:16:47
Revision:417190Original commit files touched by this commit		 vd search for other commits by this committer 
Document ftp/wget's HTTP to FTP redirection file name confusion vulnerability

PR:		210420
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-4971
1.1_2
20 Jun 2016 19:08:32
Revision:417173Original commit files touched by this commit		 feld search for other commits by this committer 
Update vuxml for libxslt vulnerabilities

These vulnerabilities were previously reported by Google as they bundle
libxslt with Chrome. When we patched Chromium to address these
vulnerabilites it was overlooked that we do not bundle libxslt library
with Chromium, but instead use textproc/libxslt. Chromium users have
continued to be vulnerable to these CVEs as a result. This update fixes
the Chromium CVE entry and adds a separate one for libxslt.

PR:		210298
Security:	CVE-2016-1683
Security:	CVE-2016-1684
1.1_2
19 Jun 2016 09:03:23
Revision:417104Original commit files touched by this commit		 brnrd search for other commits by this committer 
Update security/libressl vulnerability for quarterly branch

  - Mark vulnerable from 2.3.0 up to 2.3.6
  - Mark vulnerable below 2.2.9
1.1_2
19 Jun 2016 02:57:04
Revision:417097Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Flash vulnerabilities in Adobe Security Bulletins APSB16-10,
APSB16-15, APSB16-18

PR:		209592
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-1006, CVE-2016-1011, CVE-2016-1012, CVE-2016-1013,
		CVE-2016-1014, CVE-2016-1015, CVE-2016-1016, CVE-2016-1017,
		CVE-2016-1018, CVE-2016-1019, CVE-2016-1020, CVE-2016-1021,
		CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CVE-2016-1025,
		CVE-2016-1026, CVE-2016-1027, CVE-2016-1028, CVE-2016-1029,
		CVE-2016-1030, CVE-2016-1031, CVE-2016-1032, CVE-2016-1033,
		CVE-2016-1096, CVE-2016-1097, CVE-2016-1098, CVE-2016-1099,
		CVE-2016-1100, CVE-2016-1101, CVE-2016-1102, CVE-2016-1103,
		CVE-2016-1104, CVE-2016-1105, CVE-2016-1106, CVE-2016-1107,
		CVE-2016-1108, CVE-2016-1109, CVE-2016-1110, CVE-2016-4108,
(Only the first 15 lines of the commit message are shown above View all of this commit message)
1.1_2
17 Jun 2016 19:44:22
Revision:417031Original commit files touched by this commit		 feld search for other commits by this committer 
Fix vuxml <cvename> syntax for recent Chrome entry
1.1_2
17 Jun 2016 19:14:16
Revision:417023Original commit files touched by this commit		 rene search for other commits by this committer 
Document new vulnerabilities in www/chromium < 51.0.2704.103

Obtained
from:	https://googlechromereleases.blogspot.nl/2016/06/stable-channel-update_16.html
1.1_2
17 Jun 2016 17:03:57
Revision:417018Original commit files touched by this commit		 rm search for other commits by this committer 
Document integer overflow in python's zipimport module

PR:		210324
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5636
1.1_2
17 Jun 2016 01:12:31
Revision:416988Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Drupal vulnerabilities

PR:		210317
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	https://www.drupal.org/SA-CORE-2016-002
Security:	https://vuxml.FreeBSD.org/freebsd/7932548e-3427-11e6-8e82-002590263bf5.html
1.1_2
14 Jun 2016 01:48:36
Revision:416872Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document multiple issues in Botan

PR:		209595
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2015-7827
Security:	CVE-2016-2849
Security:	https://vuxml.FreeBSD.org/freebsd/ac0900df-31d0-11e6-8e82-002590263bf5.html
Security:	CVE-2014-9742
Security:	https://vuxml.FreeBSD.org/freebsd/f771880c-31cf-11e6-8e82-002590263bf5.html
1.1_2
13 Jun 2016 19:21:32
Revision:416861Original commit files touched by this commit		 feld search for other commits by this committer 
Update vuxml

A backported fix was added to security/openssl
1.1_2
11 Jun 2016 10:10:56
Revision:416712Original commit files touched by this commit		 riggs search for other commits by this committer 
Document remote code execution vulnerability in multimedia vlc before 2.2.4
1.1_2
10 Jun 2016 01:57:36
Revision:416651Original commit files touched by this commit		 jbeich search for other commits by this committer 
Chase MFSA typo fix
1.1_2
10 Jun 2016 01:15:07
Revision:416647Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document cross-site scripting CVE in Roundcube

PR:		209841
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5103
Security:	https://vuxml.FreeBSD.org/freebsd/97e86d10-2ea7-11e6-ae88-002590263bf5.html
1.1_2
09 Jun 2016 21:03:58
Revision:416631Original commit files touched by this commit		 brnrd search for other commits by this committer 
Add entry for CVE-2016-2178 OpenSSL vulnerability

Security:	CVE-2016-2178
1.1_2
09 Jun 2016 03:39:23
Revision:416582Original commit files touched by this commit		 junovitch search for other commits by this committer 
Fill in <freebsdpr> tag on last entry; I staged it prior to opening the PR
for tracking and forgot to fill it in pre-commit.

PR:		210155
1.1_2
09 Jun 2016 03:28:07
Revision:416580Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document two expat CVEs reported by upstream

PR:		210155
Reported by:	Sebastian Pipping <sebastian@pipping.org>
Security:	CVE-2012-6702
Security:	CVE-2016-5300
Security:	https://vuxml.FreeBSD.org/freebsd/c9c252f5-2def-11e6-ae88-002590263bf5.html
1.1_2
08 Jun 2016 20:32:00
Revision:416563Original commit files touched by this commit		 bmah search for other commits by this committer 
Add entry for recent iperf3 vulnerability.

Security:	d6bbf2d8-2cfc-11e6-800b-080027468580
Sponsored by:	ESnet
1.1_2
07 Jun 2016 16:37:58
Revision:416515Original commit files touched by this commit		 tijl search for other commits by this committer 
Document GNUTLS-SA-2016-1.
1.1_2
07 Jun 2016 16:34:07
Revision:416514Original commit files touched by this commit		 jbeich search for other commits by this committer 
Document recent Firefox vulnerabilities
1.1_2
06 Jun 2016 22:32:48
Revision:416490Original commit files touched by this commit		 feld search for other commits by this committer 
Fix cvename entries
1.1_2
06 Jun 2016 21:08:05
Revision:416488Original commit files touched by this commit		 rene search for other commits by this committer 
Document new vulnerabilities in www/chromium < 51.0.2704.79

Obtained
from:	http://googlechromereleases.blogspot.nl/2016/06/stable-channel-update.html
1.1_2
05 Jun 2016 18:59:49
Revision:416417Original commit files touched by this commit		 tijl search for other commits by this committer 
The Expat vulnerability also affects linux-*-expat.
1.1_2
05 Jun 2016 18:04:11
Revision:416410Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document OpenAFS vulnerabilities in 1.6.16 and 1.6.17

PR:		209534
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2015-8312
Security:	CVE-2016-2860
Security:	CVE-2016-4536
Security:	https://vuxml.FreeBSD.org/freebsd/2e8fe57e-2b46-11e6-ae88-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/bcbd3fe0-2b46-11e6-ae88-002590263bf5.html
1.1_2
05 Jun 2016 17:44:15
Revision:416408Original commit files touched by this commit		 junovitch search for other commits by this committer 
Fixup invalid nginx version from r416222; it needed a PORTEPOCH to be valid.
Add version range valid for backported commit on 1.8 and 1.9 in quarterly.

Security:	CVE-2016-4450
Security:	https://vuxml.FreeBSD.org/freebsd/36cf7670-2774-11e6-af29-f0def16c5c1b.html
1.1_2
05 Jun 2016 16:36:59
Revision:416397Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document ikiwiki XSS vulnerability

PR:		209593
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-4561
Security:	https://vuxml.FreeBSD.org/freebsd/0297b260-2b3b-11e6-ae88-002590263bf5.html
1.1_2
01 Jun 2016 22:49:47
Revision:416260Original commit files touched by this commit		 zi search for other commits by this committer 
- Document vulnerability in www/h2o

PR:		209926
Submitted by:	Dave Cottlehuber (maintainer)
1.1_2
31 May 2016 21:50:59
Revision:416223Original commit files touched by this commit		 osa search for other commits by this committer 
Fix latest cacti entry.

Found by:	make validate
No cookie for:	brnrd
1.1_2
31 May 2016 21:44:52
Revision:416222Original commit files touched by this commit		 osa search for other commits by this committer 
Add an entry about latest nginx vulnerability.
1.1_2
31 May 2016 20:00:29
Revision:416215Original commit files touched by this commit		 brnrd search for other commits by this committer 
security/vuxml: Modify libressl < 2.3.4 range

  - Change existing range to >2.3.0 and <2.3.4
  - Add <2.2.7 range
  - Update modified date

This addresses pkg audit showing LibreSSL 2.2.7 as vulnerable
1.1_2
29 May 2016 19:01:24
Revision:416120Original commit files touched by this commit		 pi search for other commits by this committer 
Document security issues fixed in cacti 0.8.8h

PR:		209809
Reported by:	Daniel Austin <freebsd-ports@dan.me.uk>
Security:	CVE-2016-3659
Security:	https://vuxml.FreeBSD.org/freebsd/6167b341-250c-11e6-a6fb-003048f2e514.html
1.1_2
29 May 2016 09:46:32
Revision:416090Original commit files touched by this commit		 ohauer search for other commits by this committer 
- document openvswitch CVE-2016-2074

PR:		208404
Submitted by:	ohauer
1.1_2
28 May 2016 10:14:12
Revision:415981Original commit files touched by this commit		 rene search for other commits by this committer 
Document vulnerabilities in www/chromium:
 < 50.0.2661.94
 < 50.0.2661.102
 < 51.0.2704.63

Obtained from:	http://googlechromereleases.blogspot.nl/
1.1_2
28 May 2016 01:40:53
Revision:415969Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document security issues fixed in PHP 7.0.7, 5.6.22, and 5.5.36

PR:		209779
Reported by:	Fabiano Sidler <fabianosidler@swissonline.ch>
Security:	CVE-2013-7456
Security:	CVE-2016-4343
Security:	CVE-2016-5093
Security:	CVE-2016-5094
Security:	CVE-2016-5096
Security:	https://vuxml.FreeBSD.org/freebsd/6b110175-246d-11e6-8dd3-002590263bf5.html
1.1_2
26 May 2016 20:01:01
Revision:415913Original commit files touched by this commit		 matthew search for other commits by this committer 
Add CVE names for the latest phpMyAdmin advisories, not that they have
been released.
1.1_2
26 May 2016 06:57:58
Revision:415876Original commit files touched by this commit		 matthew search for other commits by this committer 
fix typo.
1.1_2
25 May 2016 21:06:55
Revision:415865Original commit files touched by this commit		 matthew search for other commits by this committer 
Document two more phpMyAdmin vulnerabilities: PMSA-2016-14 and
PMSA-2016-16.

(For anyone wondering about the suspicious gap in the sequence:
PMSA-2016-15 only affected unreleased code in their git master
development branch)
1.1_2
24 May 2016 22:32:49
Revision:415814Original commit files touched by this commit		 bapt search for other commits by this committer 
Add a new keywork xmlcatmgr

It simplifies the handling of the XML and SMGL catalog
It brings a big of consistency by always specifying the catalog path absolute
instead of mixing absolute and relative path.
The keyword is also written a PKG_ROOTDIR friendly to simplify cross installing

Reviewed by:	hrs
Differential Revision:	https://reviews.freebsd.org/D6539
1.1_2
24 May 2016 01:57:31
Revision:415757Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document security announcement from MediaWiki 1.26.3, 1.25.6, and
1.23.14 release.
1.1_2
20 May 2016 01:22:31
Revision:415536Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document wpa_supplicant security advisory 2016-1

PR:		209564
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-4477
Security:	CVE-2016-4476
Security:	https://vuxml.FreeBSD.org/freebsd/967b852b-1e28-11e6-8dd3-002590263bf5.html
1.1_2
20 May 2016 01:07:11
Revision:415533Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Expat XML Parser crash on malformed input

Security:	CVE-2016-0718
Security:	https://vuxml.FreeBSD.org/freebsd/57b3aba7-1e25-11e6-8dd3-002590263bf5.html
1.1_2
17 May 2016 18:32:17
Revision:415406Original commit files touched by this commit		 ohauer search for other commits by this committer 
- document bugzilla Cross-Site Scripting issue
1.1_2
14 May 2016 08:46:46
Revision:415181Original commit files touched by this commit		 mandree search for other commits by this committer 
Mark openvpn-polarssl <v2.3.11 vulnerable, too, not just openvpn.

Security: 0dc8be9e-19af-11e6-8de0-080027ef73ec
1.1_2
14 May 2016 08:43:48
Revision:415180Original commit files touched by this commit		 mandree search for other commits by this committer 
Mark OpenVPN before 2.3.11 vulnerable.

v2.3.11 fixed a buffer overrun in PAM authentication,
and a port-share bug with denial-of-service potential.
1.1_2
13 May 2016 12:51:44
Revision:415105Original commit files touched by this commit		 feld search for other commits by this committer 
Fix vuxml
1.1_2
13 May 2016 12:43:03
Revision:415104Original commit files touched by this commit		 kwm search for other commits by this committer 
Add basic imagemagick entry.
1.1_2
12 May 2016 03:45:24
Revision:415045Original commit files touched by this commit		 lwhsu search for other commits by this committer 
Fix affected versions

Number of commits found: 7238 (showing only 100 on this page)

[First Page]  «  25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35  »  [Last Page]
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
Security Policy
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
sdl2_soundApr 22
chromiumApr 21
ungoogled-chromiumApr 21
clamavApr 19
jenkinsApr 19
jenkins-ltsApr 19
electron27Apr 18
electron28Apr 18
electron29Apr 18
filezillaApr 16
php81Apr 16
php82Apr 16
php83Apr 16
puttyApr 16
putty-nogtkApr 16

15 vulnerabilities affecting 262 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last processed:
2024-04-22 18:21:47 UTC


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)

Calculated hourly:
Port count 32216
Broken 86
Deprecated 178
Ignore 217
Forbidden 2
Restricted 2
No CDROM 1
Vulnerable 40
Expired 5
Set to expire 152
Interactive 0
new 24 hours 0
new 48 hours3
new 7 days14
new fortnight23
new month180
Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD 		Valid HTML, CSS, and RSS. Copyright © 2000-2024 Dan Langille. All rights reserved.