FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Port details
vuxml 1.1_2 security on this many watch lists=28 search for ports that depend on this port
Vulnerability and eXposure Markup Language DTD
Maintained by: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 12 Feb 2004 14:24:23
Also Listed In: textproc
License: BSD2CLAUSE


VuXML (the Vulnerability and eXposure Markup Language) is an XML
application for documenting security bugs and corrections within
a software package collection such as the FreeBSD Ports Collection.
This port installs the DTDs required for validating VuXML documents.
SVNWeb : Distfiles Availability : PortsMon

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Required To Run:
  1. textproc/xmlcatmgr
  2. textproc/xhtml-modularization
  3. textproc/xhtml-basic
  4. lang/python27
There are no ports dependent upon this port

To install the port: cd /usr/ports/security/vuxml/ && make install clean
To add the package: pkg install security/vuxml


Configuration Options
     No options to configure

Master Sites:
  1. http://distcache.FreeBSD.org/ports-distfiles/vuxml/
  2. http://www.vuxml.org/dtd/vuxml-1/

Number of commits found: 3432 (showing only 100 on this page)

[First Page]  «  25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35  »  [Last Page]

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
26 Oct 2004 11:12:57
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document a denial-of-service issue in bogofilter.
This entry is slightly modified from one that was
Submitted by:   Matthias Andree <matthias.andree@gmx.de>
26 Oct 2004 05:41:47
Original commit files touched by this commit  1.1_1
nork search for other commits by this committer
Fix integer overflow vulnerabilities.

Patch made by:  Chris Evans, Dirk Muller, Sebastian Krahmer,
                Derek Noonburg and Marcus Meissner
Submitted by:   nectar
25 Oct 2004 20:22:38
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document xpdf 2 and xpdf 3 vulnerabilities.
25 Oct 2004 19:27:02
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document several security issues in gaim, fixed in various versions from
0.82 through 1.0.2.  While I'm here, notice that there have been ru-,
ko-, and ja- flavors of gaim, as well as a fairly short-lived range of
version numbers based on dates (snapshots).
25 Oct 2004 17:21:16
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note that the Red Hat based linux_base ports contain
vulnerable libXpm.so files.

Noticed by:     maho
24 Oct 2004 19:39:27
Original commit files touched by this commit  1.1_1
josef search for other commits by this committer
Document SSL_Cypherbypass vulnerability in mod_ssl
and buffer overflow vulnerability in gaim.
23 Oct 2004 16:08:43
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
- Document more buffer overflows in mpg123.
- Fix package name in two older mpg123 entries.

Approved by:    nectar
22 Oct 2004 12:21:53
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
I suck.    (Correct a typo that would have been readily detected if
            I would have run `make validate' before committing.)
22 Oct 2004 12:13:40
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add CVE name for cabextract issue.
21 Oct 2004 22:23:56
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Fix a copy/paste typo in last commit.
21 Oct 2004 22:17:21
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Document DoS in Apache 2 SSL handling.

Approved by:    nectar
21 Oct 2004 20:04:21
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note that xpm has been fixed.
Also, it appears that Motif itself is affected, so add related packages.
21 Oct 2004 12:34:33
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Update entry regarding INN 2.4.x buffer overflow:
 - The email archive referenced is no longer available.  Use
   marc.theaimsgroup.com archive instead.
 - Note that only 2.4.x versions are affected (earlier ones
   are not).

Reported by:    leeym
20 Oct 2004 21:21:53
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Document remote command execution vulnerability in phpMyAdmin.

Approved by:    nectar
20 Oct 2004 18:38:08
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Document insecure directory handling in cabextract.

Approved by:    nectar
19 Oct 2004 22:08:34
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Set correct entry date for the a2ps issue.

Noticed by:     nectar
Pointy hat to:  simon
19 Oct 2004 21:41:22
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Document insecure command line argument handling in a2ps.

Approved by:    nectar
19 Oct 2004 16:40:34
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document a vulnerability in ifmail.  (There does not exist
an appropriate public reference yet--- this entry should be
updated when the port is updated.)

Reported by:    Niels Heinen <niels.heinen@ubizen.com>
19 Oct 2004 15:41:37
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document a vulnerability in imwheel.
19 Oct 2004 14:11:44
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add CVE names for FreeRADIUS vulnerabilities.
18 Oct 2004 20:21:39
Original commit files touched by this commit  1.1_1
josef search for other commits by this committer
Document NTLM authentication vulnerability in squid

Approved by:    nectar
18 Oct 2004 17:56:31
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Document a SQL command injection in Cacti.

The status of the PHP configuration option magic_quotes_gpc was
confirmed by:   ale

Approved by:    nectar
17 Oct 2004 16:38:25
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Document a format string vulnerability in the apache13 mod_ssl proxy
support.

Approved by:    nectar
16 Oct 2004 20:31:23
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
- Change a few uses of <url> into <mlist>.

OK'ed by:       nectar

Additional comment to the Tor entry from v. 1.302, it was:

Submitted by:   rik <freebsd-security@rikrose.net> (original version)
15 Oct 2004 21:21:08
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
- Document remote DoS and loss of anonymity in Tor.
- Update a Samba entry with new information about vulnerable versions.

Approved by:    nectar
14 Oct 2004 17:52:41
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
lesstif has been upgraded to a version that is not affected by the
libXpm vulnerability.
14 Oct 2004 17:06:55
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Recommit my changes from 1.298 which was accidently removed in 1.299.

Pointy hat to:  josef (who also noticed the problem)
14 Oct 2004 16:55:27
Original commit files touched by this commit  1.1_1
josef search for other commits by this committer
Document two seperate security vulnerabilities in
icecast1 and icecast2.

Approved by:    nectar
14 Oct 2004 16:46:39
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Change the Xerces-C++ entry to match the xerces-c2 port.

Noticed by:     nectar
13 Oct 2004 22:00:21
Original commit files touched by this commit  1.1_1
josef search for other commits by this committer
Document vulnerability in freeradius.

Approved by:    nectar
13 Oct 2004 21:50:58
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
- Document DoS in Xerces-C++.
- Fix typo in a mozilla entry.

Approved by:    nectar
13 Oct 2004 21:12:02
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
It turns out that lesstif has libXpm sneakily embedded.  There are at
least three files with this comment at the top:

  * This file contains most of the source files of Xpm, concatenated and with
  * the public names changed (to have an _LtXpm prefix).
13 Oct 2004 21:01:12
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Document XSS in wordpress.

Approved by:    nectar
13 Oct 2004 20:39:48
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document integer overflows in libtiff.
13 Oct 2004 17:18:02
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
- Document a CUPS local information disclosure.
- Note the impact of the sharutils buffer overflows.

Approved by:    nectar
13 Oct 2004 16:55:35
Original commit files touched by this commit  1.1_1
josef search for other commits by this committer
Document a vulnerability in Zinf (freeamp).

Approved by:    nectar
13 Oct 2004 16:06:34
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document libtiff RLE decoder issues.
13 Oct 2004 10:27:33
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
The sharutils buffer overflows has been fixed in sharutils 4.2.1_2.
12 Oct 2004 23:46:41
Original commit files touched by this commit  1.1_1
simon search for other commits by this committer
Document a vulnerability in sharutils.

Approved by:    nectar
12 Oct 2004 21:58:58
Original commit files touched by this commit  1.1_1
josef search for other commits by this committer
Document 2 DoS attacks possible against
older versions of mail-notifier.

Based on the security advisories
mentioned in the reference links.

Approved by:    nectar
12 Oct 2004 15:39:33
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
ale@ reports that the only ports affected are php[45], php[45]-cgi,
and mod_php[45].
12 Oct 2004 15:09:53
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note squid SNMP DoS.  Based on an entry that was
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de>
12 Oct 2004 02:08:57
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
The documented xv vulnerabilities were fixed by dinoex@

Approved by:    portmgr
12 Oct 2004 01:07:22
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note that the image decoding vulnerabilities in gdk-pixbuf have been
fixed.

Reported by:    marcus
Approved by:    portmgr
12 Oct 2004 00:58:31
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document older cyrus-sasl bug affecting DIGEST-MD5.

Submitted by:   simon
Approved by:    portmgr
12 Oct 2004 00:57:22
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Update the description of and list of packages affected by the PHP file
upload processing bug.

Submitted by:   Jon Passki <cykyc@yahoo.com>
Approved by:    portmgr
08 Oct 2004 16:50:15
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document unsafe use of environmental variable SASL_PATH in cyrus-sasl.

Approved by:    portmgr
05 Oct 2004 19:28:26
Original commit files touched by this commit  1.1_1
trhodes search for other commits by this committer
Add some more apache ports.
Fix two errors found by nectar.

Approved by:    portmgr
05 Oct 2004 17:41:55
Original commit files touched by this commit  1.1_1
trhodes search for other commits by this committer
Add imp3 issue, add apache13-ssl issue, correct a tag.

Approved by:    portmgr
05 Oct 2004 14:54:27
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note that older packages of bmon were dangerously installed set-user-ID.

Approved by:    portmgr
05 Oct 2004 14:33:02
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document GnuTLS denial-of-service (already mentioned in portaudit's
database).

Approved by:    portmgr
05 Oct 2004 14:06:55
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Record another PHP vulnerability.

Approved by:    portmgr
05 Oct 2004 13:52:38
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Record another PHP security issue.

Approved by:    portmgr
05 Oct 2004 12:52:58
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note that xv should not be used.

Approved by:    portmgr
04 Oct 2004 19:59:35
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note a symlink vulnerability in getmail.

Submitted by:   Shane Kinney <mod6@freebsdhackers.net>
Approved by:    portmgr
04 Oct 2004 17:30:00
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Fill in empty topic from previous commit.

Noticed by:     Shane Kinney <mod6@freebsdhackers.net>
Approved by:    portmgr
04 Oct 2004 17:09:55
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Record FreeBSD-SA-04:15.syscons.

Approved by:    portmgr
04 Oct 2004 14:01:46
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add missing PORTEPOCH for samba.

Noticed by:     dinoex
Approved by:    portmgr
03 Oct 2004 22:49:55
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note racoon certificate verification bug.

Submitted by:   Jon Passki <cykyc@yahoo.com>
Approved by:    portmgr
03 Oct 2004 15:51:49
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note distcc IP address ACL bug.

Submitted by:   Jon Passi <cykyc@yahoo.com>
Approved by:    portmgr
03 Oct 2004 15:38:27
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Remove a duplicate entry.

Submitted by:   Jon Passki <cykyc@yahoo.com>
Approved by:    portmgr
01 Oct 2004 01:40:54
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Correct the version number for latest Mozilla entry.
(cut-n-paste damage)

Approved by:    portmgr
01 Oct 2004 01:37:52
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document the last few of the relatively recent Mozilla vulnerabilities.

Approved by:    portmgr
30 Sep 2004 23:32:10
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Correct mangled CVE name: s/8983/0903/

Approved by:    portmgr
30 Sep 2004 23:29:23
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add another two older vulnerabilities affecting Mozilla & co.
Continue to try hard to cover past package names:
  - I missed el-linux-mozillafirebird previously.
  - Move all the `obsolete' package names into one place
    for clarity.

Approved by:    portmgr
30 Sep 2004 22:30:26
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Don't forget `ja-samba' also.

Approved by:    portmgr
30 Sep 2004 22:26:02
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note samba file disclosure vulnerability.

Approved by:    portmgr
29 Sep 2004 16:48:15
Original commit files touched by this commit  1.1_1
trhodes search for other commits by this committer
Fix apache version number entry, bump modified date for apache as well.

Approved by:    portmgr
28 Sep 2004 18:02:03
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Make an initial attempt at covering all Mozilla/Firefox/Thunderbird
package names that we've had.  Similar changes need to be made to many
other entries, but let's use this one as a test subject first.

Approved by:    portmgr
28 Sep 2004 15:06:19
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Correct spelling of phpnuke package name.

Reported by:    Dan Langille
Approved by:    portmgr
28 Sep 2004 14:31:41
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note BMP decoder flaws in Mozilla/Firefox/Thunderbird.

Approved by:    portmgr
28 Sep 2004 14:28:04
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note stack buffer overflow in Mozilla mail.

Approved by:    portmgr
28 Sep 2004 14:22:35
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document Mozilla/Firefox/Thunderbird heap buffer overflows.

Approved by:    portmgr
28 Sep 2004 13:36:53
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Correct the package name for phpMyAdmin.

Reported by:    Matthew Seaman <m.seaman@infracaninophile.co.uk>
Approved by:    portmgr
27 Sep 2004 15:15:21
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add CERT Vulnerability Note references to xpm entry.

Approved by:    portmgr
27 Sep 2004 02:57:32
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note two older vulnerabilities in PHP.

Submitted by:   Jon Passki <cykyc@yahoo.com>
Approved by:    portmgr
26 Sep 2004 18:17:36
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note subversion information disclosure vulnerability.

Submitted by:   lev
Approved by:    portmgr
26 Sep 2004 18:04:52
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add missing PORTEPOCH in a mozilla entry.
Correct package name in an apache entry.

Reported by:    Dan Langille <dan@langille.org>
Approved by:    portmgr
25 Sep 2004 00:59:48
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Forgot to add <modified> element for last commit.

Approved by:    portmgr
25 Sep 2004 00:58:59
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add missing PORTEPOCH on one of the mozilla entries.

Noticed by:     Dan Langille <dan@langille.org>
Approved by:    portmgr
23 Sep 2004 15:07:39
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document vulnerabilities in lha.

Reviewed by:    dinoex
Approved by:    portmgr
23 Sep 2004 14:16:16
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Lately it seems I like to use dashes in topics... but I should at
least be consistent with how many.  s/---/--/

Approved by:    portmgr
23 Sep 2004 14:10:58
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document mysql buffer overflow.

Reported by:    ale
Approved by:    portmgr
22 Sep 2004 16:39:58
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document Mozilla security icon spoofing vulnerability.

Approved by:    portmgr
22 Sep 2004 16:16:30
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document Mozilla vulnerability involving NULL bytes in FTP URLs.

Also, correct s/firebird/firefox/ in a previously documented issue.

Approved by:    portmgr
22 Sep 2004 15:59:56
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document Mozilla automatic file upload vulnerability.

Approved by:    portmgr
22 Sep 2004 15:44:03
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Document mozilla certificate import denial-of-service vulnerability.

Approved by:    portmgr
21 Sep 2004 22:04:54
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note a file name disclosure issue in rssh.

Reported by:    leeym
Approved by:    portmgr
20 Sep 2004 20:13:11
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add entry describe GNU Radius denial-of-service vulnerability.

Approved by:    portmgr
20 Sep 2004 20:06:44
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Add sudoedit vulnerability.

Approved by:    portmgr
19 Sep 2004 23:36:42
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
In latest CVS entry, remove the reference to the exploit.  It does
not apply to any of these vulnerabilities, but to the previous CVS
vulnerability (CAN-2004-0396).

Approved by:    portmgr
19 Sep 2004 23:32:05
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Oh yeah, add affected FreeBSD versions for CVS issues.

Approved by:    portmgr
19 Sep 2004 23:23:49
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Update CVS entry with some details.

Approved by:    portmgr
19 Sep 2004 17:38:14
Original commit files touched by this commit  1.1_1
trhodes search for other commits by this committer
Add an entry for the mod_proxy buffer overflow existant in apache13.

Approved by:    portmgr
18 Sep 2004 15:42:01
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note some fixes for XPM image decoding vulnerabilities.

Submitted by:   lesi

Add references to Chris Evans's advisories while I'm at it.

Approved by:    portmgr
17 Sep 2004 02:12:17
Original commit files touched by this commit  1.1_1
marcus search for other commits by this committer
Update to gdk-pixbuf vulnerability to reflect the fixed version of gtk20.

Approved by:    portmgr( implicit)
15 Sep 2004 19:54:22
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note that a patched version of webmin 1.150 is now available, thanks
to olengi@.

Submitted by:   olengi

Add a paragraph introducing the Webmin blockquote while I'm here.

Approved by:    portmgr
15 Sep 2004 18:05:16
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note gdk-pixbuf image decoding issues.

Approved by:    portmgr
15 Sep 2004 17:39:48
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
clement@ has patched Apache 2.

Approved by:    portmgr
15 Sep 2004 16:31:55
Original commit files touched by this commit  1.1_1
nectar search for other commits by this committer
Note CUPS printer queue browser denial-of-service.

Approved by:    portmgr

Number of commits found: 3432 (showing only 100 on this page)

[First Page]  «  25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35  »  [Last Page]

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
dbusSep 17
nginxSep 16
nginx-develSep 16
phpmyadminSep 13
ossec-hids-clientSep 11
ossec-hids-localSep 11
ossec-hids-serverSep 11
chromiumSep 09
trafficserverSep 05
apache22*Sep 03
apache22-event-mpm*Sep 03
apache22-itk-mpm*Sep 03
apache22-peruser-mpm*Sep 03
apache22-worker-mpm*Sep 03
chromiumAug 26

7 vulnerabilities affecting 15 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24094
Broken 121
Deprecated 90
Ignore 385
Forbidden 17
Restricted 203
No CDROM 94
Vulnerable 22
Expired 2
Set to expire 85
Interactive 0
new 24 hours 3
new 48 hours7
new 7 days37
new fortnight139
new month242

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.