FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_2 security on this many watch lists=28 search for ports that depend on this port
Maintained by: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 12 Feb 2004 14:24:23
Also Listed In: textproc
License: BSD2CLAUSE


VuXML (the Vulnerability and eXposure Markup Language) is an XML
application for documenting security bugs and corrections within
a software package collection such as the FreeBSD Ports Collection.
This port installs the DTDs required for validating VuXML documents.
SVNWeb : Distfiles Availability : PortsMon

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Required To Run:
  1. textproc/xmlcatmgr
  2. textproc/xhtml-modularization
  3. textproc/xhtml-basic
  4. lang/python27
There are no ports dependent upon this port

To install the port: cd /usr/ports/security/vuxml/ && make install clean
To add the package: pkg install security/vuxml


Configuration Options
     No options to configure

Master Sites:
  1. http://distcache.FreeBSD.org/ports-distfiles/vuxml/
  2. http://www.vuxml.org/dtd/vuxml-1/

Number of commits found: 3489 (showing only 100 on this page)

[First Page]  «  1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
30 Sep 2013 19:31:32
Original commit files touched by this commit  1.1_1
Revision:328851
swills search for other commits by this committer
- Document graphite issue
24 Sep 2013 13:55:56
Original commit files touched by this commit  1.1_1
Revision:328135
tabthorpe search for other commits by this committer
- ebd877b9-7ef4-4375-b1fd-c67780581898 also applies to our ruby18

Reviewed by:	swills
22 Sep 2013 10:36:32
Original commit files touched by this commit  1.1_1
Revision:327862
lwhsu search for other commits by this committer
Document CVE-2013-1443 for www/py-django{,14,-devel}
22 Sep 2013 10:09:42
Original commit files touched by this commit  1.1_1
Revision:327861
lwhsu search for other commits by this committer
- Split names for different packages

Notified by:	remko
20 Sep 2013 22:55:26
Original commit files touched by this commit  1.1_1
Revision:327769
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
19 Sep 2013 08:29:16
Original commit files touched by this commit  1.1_1
Revision:327604
rm search for other commits by this committer
- add modification date to mozilla entry, that I forgot about
19 Sep 2013 07:50:30
Original commit files touched by this commit  1.1_1
Revision:327600
rm search for other commits by this committer
- correct thunderbird version in recent mozilla entry
19 Sep 2013 05:44:02
Original commit files touched by this commit  1.1_1
Revision:327595
remko (src,doc committer) search for other commits by this committer
Add the latest two FreeBSD Security Advisories that have impact
on -RELEASE versions. (RC's are not documented).

Hat:	secteam
18 Sep 2013 22:40:58
Original commit files touched by this commit  1.1_1
Revision:327587
flo search for other commits by this committer
- update firefox, thunderbird and libxul to 24.0
- update seamonkey to 2.21
- update firefox-esr to 17.0.9
- enable GSTREAMER by default for html5 with h264/aac/mp3
- WEBRTC is now always built
- add PROFILE and TESTS options

Security:		7dfed67b-20aa-11e3-b8d8-0025905a4771
In collaboration with:	Jan Beich <jbeich@tormail.org>
13 Sep 2013 13:13:36
Original commit files touched by this commit  1.1_1
Revision:327145
eadler search for other commits by this committer
Update flash to version 11.2.202.310

PR:		ports/182013
Submitted by:	Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
Security:	http://www.vuxml.org/freebsd/5bd6811f-1c75-11e3-ba72-98fc11cdc4f5
12 Sep 2013 16:03:45
Original commit files touched by this commit  1.1_1
Revision:327080
lwhsu search for other commits by this committer
Document CVE-2013-4315 for www/py-django{,14,-devel}
02 Sep 2013 19:04:21
Original commit files touched by this commit  1.1_1
Revision:326057
ohauer search for other commits by this committer
- update devel/subversion to 1.8.3	[1]
- update devel/subversion17 to 1.7.13	[1]
- add vuxml entry

Version 1.7.13
(29 Aug 2013, from /branches/1.7.x)
http://svn.apache.org/repos/asf/subversion/tags/1.7.13/CHANGES

User-visible changes:
 - General
   * merge: fix bogus mergeinfo with conflicting file merges (issue #4306)
   * diff: fix duplicated path component in '--summarize' output (issue #4408)
   * ra_serf: ignore case when checking certificate common names (r1514763)

 - Server-side bugfixes:
(Only the first 15 lines of the commit message are shown above View all of this commit message)
29 Aug 2013 10:56:24
Original commit files touched by this commit  1.1_1
Revision:325582
sem search for other commits by this committer
- Document the last cacti vulnerabilities

PR:		ports/181606 (based on)
Submitted by:	Rodrigo (ros) OSORIO <rodrigo@bebik.net>
29 Aug 2013 06:15:52
Original commit files touched by this commit  1.1_1
Revision:325565
remko (src,doc committer) search for other commits by this committer
Add CVE entries to latest entry for Asterisk.
Add "The" in who reports the issue.
Bump modified date
28 Aug 2013 20:51:32
Original commit files touched by this commit  1.1_1
Revision:325551
flo search for other commits by this committer
Update net/asterisk to 1.8.23.1
Update net/asterisk10 to 10.12.3
Update net/asterisk11 to 11.5.1

Security:	fd2bf3b5-1001-11e3-ba94-0025905a4771
21 Aug 2013 09:29:44
Original commit files touched by this commit  1.1_1
Revision:325102
rene search for other commits by this committer
Document new vulnerabilities in www/chromium < 29.0.1547.57

Obtained from:	http://googlechromereleases.blogspot.nl/
20 Aug 2013 15:36:43
Original commit files touched by this commit  1.1_1
Revision:325059
kwm search for other commits by this committer
Fix multiple security issues in the bundled libav version by replacing it
with a newer version.

Reported by:	Jan Beich <jbeich@tormail.org>
19 Aug 2013 08:07:02
Original commit files touched by this commit  1.1_1
Revision:324952
stas (src committer) search for other commits by this committer
- Correct lcms2 VuXML entry: only versions before 2.5 are vulnerable.

PR:		ports/181384
Reported by:	Derek Schrock <dereks@lifeofadishwasher.com>
18 Aug 2013 10:41:11
Original commit files touched by this commit  1.1_1
Revision:324899
ashish search for other commits by this committer
- Update modified date of VuXML entry which was missed in r317985

Reported by:	remko
17 Aug 2013 08:36:30
Original commit files touched by this commit  1.1_1
Revision:324834
remko (src,doc committer) search for other commits by this committer
Correct latest entry, properly indent the paragraphs
and sort the url list alphabetically.
17 Aug 2013 08:24:35
Original commit files touched by this commit  1.1_1
Revision:324831
bf search for other commits by this committer
Amend 689c2bf7-0701-11e3-9a25-002590860428 so that it doesn't overlap with
80771b89-f57b-11e2-bf21-b499baab0cbe, but keep both entries rather than
augmenting the old one, because I've cited the new one in a commit message.
17 Aug 2013 07:56:12
Original commit files touched by this commit  1.1_1
Revision:324830
bf search for other commits by this committer
Update security/libgcrypt to 1.5.3 [1], and document the latest gnupg
and libgcrypt vulnerability

PR:		181231
Submitted by:	Hirohisa Yamaguchi (maintainer) [1]
Security:	http://www.vuxml.org/freebsd/689c2bf7-0701-11e3-9a25-002590860428.html
16 Aug 2013 17:54:42
Original commit files touched by this commit  1.1_1
Revision:324808
brd (doc committer) search for other commits by this committer
- Update puppet to 3.2.4 which fixes CVE-2013-4761 and CVE-2013-4956

Approved by:	swills@
Security:	2b2f6092-0694-11e3-9e8e-000c29f6ae42
16 Aug 2013 05:35:00
Original commit files touched by this commit  1.1_1
Revision:324791
remko (src,doc committer) search for other commits by this committer
Correct polarssl entry, the lines were way to long, indentation was
incorrect, and the topic description does not need too many details
since that is explained in the description itself.

Also correct the url's since c comes before u ;-)

Prodded by:	stas
15 Aug 2013 19:54:23
Original commit files touched by this commit  1.1_1
Revision:324783
stas (src committer) search for other commits by this committer
- Fix ordering of references.

Reported by:	remko
15 Aug 2013 19:02:34
Original commit files touched by this commit  1.1_1
Revision:324781
stas (src committer) search for other commits by this committer
- Add lcms2 DoS vulnerability entry.

Hat: secteam
13 Aug 2013 06:20:27
Original commit files touched by this commit  1.1_1
Revision:324652
mandree search for other commits by this committer
Add CVE Id, which was not in the advisory,
but on <https://polarssl.org/security>.
13 Aug 2013 06:17:33
Original commit files touched by this commit  1.1_1
Revision:324651
mandree search for other commits by this committer
Record PolarSSL < 1.2.8 infinite loop denial of service.

Note: the port has not yet been upgraded, and the fix then needs to be merged
to the 9.2 ports branch before release.
09 Aug 2013 20:52:29
Original commit files touched by this commit  1.1_1
Revision:324462
delphij search for other commits by this committer
Add a link to the advisory.

Submitted by:	remko
09 Aug 2013 17:22:17
Original commit files touched by this commit  1.1_1
Revision:324452
delphij search for other commits by this committer
Document Samba DoS vulnerability.
08 Aug 2013 18:42:03
Original commit files touched by this commit  1.1_1
Revision:324409
flo search for other commits by this committer
- update firefox to 23.0
- update firefox-esr, thunderbird and libxul to 17.0.8
- update seamonkey to 2.20
- fix plist for *-i18n

Security:		0998e79d-0055-11e3-905b-0025905a4771
In collaboration with:	Jan Beich <jbeich@tormail.org>
07 Aug 2013 16:26:13
Original commit files touched by this commit  1.1_1
Revision:324359
mandree search for other commits by this committer
Add one more reference for PuTTY 0.59-0.61 vuln CVE-2011-4607.
07 Aug 2013 16:22:30
Original commit files touched by this commit  1.1_1
Revision:324358
mandree search for other commits by this committer
More references for PuTTY < 0.63 vulnerabilities.
07 Aug 2013 16:11:18
Original commit files touched by this commit  1.1_1
Revision:324357
mandree search for other commits by this committer
Upgrade PuTTY to new 0.63 beta upstream release, adding vulnerability info.

Quoting the upstream's change log:

- Security fix: prevent a nefarious SSH server or network attacker from
  crashing PuTTY at startup in three different ways by presenting a maliciously
  constructed public key and signature.
- Security fix: PuTTY no longer retains the private half of users' keys in
  memory by mistake after authenticating with them.
- Revamped the internal configuration storage system to remove all fixed
  arbitrary limits on string lengths. In particular, there should now no longer
  be an unreasonably small limit on the number of port forwardings PuTTY can
  store.
- Port-forwarded TCP connections which close one direction before the other
  should now be reliably supported, with EOF propagated independently in the
(Only the first 15 lines of the commit message are shown above View all of this commit message)
07 Aug 2013 08:41:51
Original commit files touched by this commit  1.1_1
Revision:324336
danfe search for other commits by this committer
Adjust NVidia driver version ranges after r304966 to remedy false positives.
05 Aug 2013 21:56:57
Original commit files touched by this commit  1.1_1
Revision:324294
ohauer search for other commits by this committer
- secuity update for typo3 ports
- some small Makefile cleanups
- add vuxml entry

Vulnerability Types: Cross-Site Scripting, Remote Code Execution
 Overall Severity: Critical

Vulnerable subcomponent: Third Party Libraries used for audio and video playback
 Affected Versions: All versions from 4.5.0 up to the development branch of 6.2
 Vulnerability Type: Cross-Site Scripting
 Severity: Medium

Vulnerable subcomponent: Backend File Upload / File Abstraction Layer
 Vulnerability Type: Remote Code Execution by arbitrary file creation
 Affected Versions: All versions from 6.0.0 up to the development branch of 6.2
 Severity: Critical

PR:		ports/180951
		ports/180952
		ports/180953
Submitted by:	Helmut Ritter <freebsd-ports@charlieroot.de> (maintainer)
Security:	http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-002/
		CVE-2011-3642
		CVE-2013-1464
04 Aug 2013 12:13:51
Original commit files touched by this commit  1.1_1
Revision:324220
matthew search for other commits by this committer
- Security update of databases/phpmyadmin to 4.0.5

ChangeLog:
http://sourceforge.net/projects/phpmyadmin/files/phpMyAdmin/4.0.5/phpMyAdmin-4.0.5-notes.html/download
SecurityAdvisory: http://www.phpmyadmin.net/home_page/security/PMASA-2013-10.php

- Deprecate databases/phpmyadmin35

This version is vulnerable to the 'clickjacking protection bypass'
problem fixed in 4.0.5, but the development team will not be
publishing a fix. "We have no solution for 3.5.x, due to the proposed
solution requiring JavaScript. We don't want to introduce a dependency
to JavaScript in the 3.5.x family."

Therefore deprecate this port and set expiry for one month.  Please
upgrade to 4.0.5 instead.

Security:	17326fd5-fcfb-11e2-9bb9-6805ca0b3d42
03 Aug 2013 14:56:42
Original commit files touched by this commit  1.1_1
Revision:324196
rene search for other commits by this committer
Add new vulnerabilities for www/chromium < 28.0.1500.95

Obtained from:	http://googlechromereleases.blogspot.nl/
01 Aug 2013 18:43:49
Original commit files touched by this commit  1.1_1
Revision:324117
remko (src,doc committer) search for other commits by this committer
Modify the latest puppet entry. Because the matching of the version everything
below 3.2.2 was a match, including all 2.7.x versions. It also appears that
there is no puppet27 version, just puppet-2.7.x and puppet-3.2.x instead.

Bump modification date.

PR:		180958
Submitted by:	Kan Sasaki <sasaki@fcc.ad.jp>
29 Jul 2013 19:17:27
Original commit files touched by this commit  1.1_1
Revision:323898
matthew search for other commits by this committer
Now that PMSA-2013-{9,11-15} have been published, borrow from them to
expand on the original rather sketchy entries.

Sort URL references[1]

Submitted by:	remko [1]
28 Jul 2013 15:38:45
Original commit files touched by this commit  1.1_1
Revision:323835
matthew search for other commits by this committer
Security update: multiple vulnerabilities in databases/phpmyadmin and
databases/phpmyadmin35

 - update phpmyadmin to 4.0.4.2

ChangeLog:
http://sourceforge.net/projects/phpmyadmin/files/phpMyAdmin/4.0.4.2/phpMyAdmin-4.0.4.2-notes.html/view

 - update phpmyadmin35 to 3.5.8.2

ChangeLog:
http://sourceforge.net/projects/phpmyadmin/files/phpMyAdmin/3.5.8.2/phpMyAdmin-3.5.8.2-notes.html/view

 - vuxml

The PMSA references shown have not been published yet, hence no CVE
numbers and a lack of detail in the descriptions.  Yes, PMSA-2013-10
is missing from the sequence.  According to the security alert e-mail:

   "For more details, see the upcoming PMASA-2013-8 to PMASA-2013-15 (minus
    PMASA-2013-10 which is reserved for a future advisory)."
27 Jul 2013 17:36:20
Original commit files touched by this commit  1.1_1
Revision:323801
remko (src,doc committer) search for other commits by this committer
Add entry for wordpress < 3.5.2

Requested by:	Patrick Oonk
27 Jul 2013 13:24:18
Original commit files touched by this commit  1.1_1
Revision:323783
remko (src,doc committer) search for other commits by this committer
Add additional reference, bump modified date.
26 Jul 2013 23:22:36
Original commit files touched by this commit  1.1_1
Revision:323760
delphij search for other commits by this committer
Document BIND denial of service vulnerability
26 Jul 2013 11:06:45
Original commit files touched by this commit  1.1_1
Revision:323712
remko (src,doc committer) search for other commits by this committer
Cleanup last entry. Properly indent the entry and
make sure that after a period on the end of a line
we follow with two spaces.

hat:	    secteam
25 Jul 2013 22:56:06
Original commit files touched by this commit  1.1_1
Revision:323675
kuriyama search for other commits by this committer
Add an entry for security/gnupg1.
25 Jul 2013 18:29:27
Original commit files touched by this commit  1.1_1
Revision:323659
bjk (doc committer) search for other commits by this committer
Update to 1.6.5

This is a security release by upstream, and requires configuration changes
in addition to the software update.  See UPDATING.

Reviewed by:	ports-security (zi, remko)
Approved by:	hrs (mentor, ports committer)
24 Jul 2013 20:59:28
Original commit files touched by this commit  1.1_1
Revision:323617
lev search for other commits by this committer
  Add <url></url> to references.

Submitted by:	Remko Lodder <remko@FreeBSD.org>
24 Jul 2013 17:18:50
Original commit files touched by this commit  1.1_1
Revision:323611
lev search for other commits by this committer
 Update:
   devel/subversion to 1.8.1
   devel/subversion16 to 1.7.11

 These releases fix CVE-2013-4131
 http://subversion.apache.org/security/CVE-2013-4131-advisory.txt

Approved by:	Olli Hauer <ohauer@FreeBSD.org> for devel/subversion17
Security:	CVE-2013-4131
23 Jul 2013 10:32:23
Original commit files touched by this commit  1.1_1
Revision:323525
bdrewery search for other commits by this committer
- Update whitespace for 2fbfd455-f2d0-11e2-8a46-000d601460a4

Requested by:	remko
22 Jul 2013 13:24:05
Original commit files touched by this commit  1.1_1
Revision:323445
bdrewery search for other commits by this committer
- Update suPHP to 0.7.2
- Document possible privilege escalation

Approved by:	maintainer timeout
Security:	2fbfd455-f2d0-11e2-8a46-000d601460a4
21 Jul 2013 18:54:51
Original commit files touched by this commit  1.1_1
Revision:323410
ohauer search for other commits by this committer
- change apache24 version from 2.4.5 to 2.4.6 (2.4.5 was not released)
- add http://www.apache.org/dist/httpd/Announcement2.4.html as reference

requested by remko@
20 Jul 2013 17:11:54
Original commit files touched by this commit  1.1_1
Revision:323351
ohauer search for other commits by this committer
- update to apache24-2.4.6
 - new modules: mod_cache_socache, mod_macro and mod_proxy_wstunnel

- add enty to vuxml

SECURITY: CVE-2013-1896 (cve.mitre.org)
 mod_dav: Sending a MERGE request against a URI handled by mod_dav_svn with
 the source href (sent as part of the request body as XML) pointing to a
 URI that is not configured for DAV will trigger a segfault.

SECURITY: CVE-2013-2249 (cve.mitre.org)
 mod_session_dbd: Make sure that dirty flag is respected when saving
 sessions, and ensure the session ID is changed each time the session
 changes. This changes the format of the updatesession SQL statement.
 Existing configurations must be changed.

Changelog:
http://www.apache.org/dist/httpd/CHANGES_2.4.6

with hat apache@

Security:	ca4d63fb-f15c-11e2-b183-20cf30e32f6d
17 Jul 2013 22:09:58
Original commit files touched by this commit  1.1_1
Revision:323190
delphij search for other commits by this committer
Document gallery3 multiple vulnerabilities.
17 Jul 2013 22:07:22
Original commit files touched by this commit  1.1_1
Revision:323189
eadler search for other commits by this committer
Add missing citation

Requested by:	remko
16 Jul 2013 18:10:12
Original commit files touched by this commit  1.1_1
Revision:323118
des search for other commits by this committer
Add two more PHP entries for issues which have already been fixed.
15 Jul 2013 21:06:36
Original commit files touched by this commit  1.1_1
Revision:323080
eadler search for other commits by this committer
Update to 11.2r202.291

PR:		ports/179502
Submitted by:	Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
15 Jul 2013 18:25:19
Original commit files touched by this commit  1.1_1
Revision:323071
delphij search for other commits by this committer
Document squid 3.x denial of service vulnerability.
15 Jul 2013 09:26:37
Original commit files touched by this commit  1.1_1
Revision:323026
cs search for other commits by this committer
Adjust version numbers for OTRS vulnerabilities
14 Jul 2013 22:03:55
Original commit files touched by this commit  1.1_1
Revision:323009
eadler search for other commits by this committer
Add missing modified dates from r321329.

I had this sitting for a bit, but forgot to test & commit.

Requested by:	remko
11 Jul 2013 21:28:39
Original commit files touched by this commit  1.1_1
Revision:322798
delphij search for other commits by this committer
Wrap long lines.  No content change.
11 Jul 2013 20:35:20
Original commit files touched by this commit  1.1_1
Revision:322797
cs search for other commits by this committer
Security vulnerabilities in libzrtp

Security:	04320e7d-ea66-11e2-a96e-60a44c524f57
11 Jul 2013 20:17:34
Original commit files touched by this commit  1.1_1
Revision:322795
swills search for other commits by this committer
- Document ruby vulnerability
11 Jul 2013 07:50:27
Original commit files touched by this commit  1.1_1
Revision:322757
cs search for other commits by this committer
Add vulnerability on otrs

Security:	e3e788aa-e9fd-11e2-a96e-60a44c524f57
10 Jul 2013 19:01:44
Original commit files touched by this commit  1.1_1
Revision:322728
ohauer search for other commits by this committer
- update to apache-2.2.25
- update vuxml with additional CVE-2013-1896 entry

Changes with Apache 2.2.25
  http://www.apache.org/dist/httpd/CHANGES_2.2.25

  *) SECURITY: CVE-2013-1896 (cve.mitre.org)
     mod_dav: Sending a MERGE request against a URI handled by mod_dav_svn with
     the source href (sent as part of the request body as XML) pointing to a
     URI that is not configured for DAV will trigger a segfault. [Ben Reser
     <ben reser.org>]

  *) SECURITY: CVE-2013-1862 (cve.mitre.org)
     mod_rewrite: Ensure that client data written to the RewriteLog is
     escaped to prevent terminal escape sequences from entering the
(Only the first 15 lines of the commit message are shown above View all of this commit message)
10 Jul 2013 14:35:58
Original commit files touched by this commit  1.1_1
Revision:322699
rene search for other commits by this committer
Add new vulnerabilities for www/chromium < 28.0.1500.71

Obtained from:	http://googlechromereleases.blogspot.nl/
06 Jul 2013 08:46:40
Original commit files touched by this commit  1.1_1
Revision:322368
ohauer search for other commits by this committer
- add fix for CVE-2013-1862
- adjust vuxml
05 Jul 2013 21:06:16
Original commit files touched by this commit  1.1_1
Revision:322357
ohauer search for other commits by this committer
- document apache22 CVE-2013-1862 (mod_rewrite)

Update to apache22-2.2.25 is ready to commit.
Until now there is no official announcement from apache.org
so we hold the update back until we have official checksums.
02 Jul 2013 07:43:03
Original commit files touched by this commit  1.1_1
Revision:322159
delphij search for other commits by this committer
Fix CVE-2013-2174 for ftp/curl with a patch from vendor for
now so that users can build the port, per popular demands
on mailing list.

The upgrade patch found in ports/172325 is currently under
exp-run.  The changes in this commit against ftp/curl can be
safely reverted before applying that patch, as it's shipped
with new curl release.

Approved by:	portmgr (miwi)
30 Jun 2013 20:49:33
Original commit files touched by this commit  1.1_1
Revision:322099
matthew search for other commits by this committer
Security update to 4.0.4.1

ChangeLog:
http://sourceforge.net/projects/phpmyadmin/files/phpMyAdmin/4.0.4.1/phpMyAdmin-4.0.4.1-notes.html/view

Advisory: http://www.phpmyadmin.net/home_page/security/PMASA-2013-7.php

Security:	1b93f6fe-e1c1-11e2-948d-6805ca0b3d42
28 Jun 2013 11:07:49
Original commit files touched by this commit  1.1_1
Revision:321955
girgen search for other commits by this committer
Security update for apache-xml-security-c

URL:	http://santuario.apache.org/secadv.data/CVE-2013-2210.txt
Security:	81da673e-dfe1-11e2-9389-08002798f6ff
Security:	CVE-2013-2210
26 Jun 2013 11:01:35
Original commit files touched by this commit  1.1_1
Revision:321792
flo search for other commits by this committer
- update firefox to 22.0
- update firefox-esr, thunderbird and libxul to 17.0.7
- update nspr to 4.10
- OSS support was removed upstream, only ALSA and PulseAudio are supported
  from now on.

Security:	b3fcb387-de4b-11e2-b1c6-0025905a4771
In collaboration with:	Jan Beich <jbeich@tormail.org>
23 Jun 2013 20:14:01
Original commit files touched by this commit  1.1_1
Revision:321649
rea search for other commits by this committer
VuXML: document CVE-2013-2174, heap corruption in cURL library
22 Jun 2013 12:49:29
Original commit files touched by this commit  1.1_1
Revision:321570
swills search for other commits by this committer
- Update puppet to 3.2.2 which fixes CVE-2013-3567 [1]
- Update puppet27 to 2.7.22 which fixes CVE-2013-3567
- Document security issue

PR:		ports/179816 [1]
Submitted by:	mat [1]
Security:	b162b218-c547-4ba2-ae31-6fdcb61bc763
22 Jun 2013 09:36:10
Original commit files touched by this commit  1.1_1
Revision:321558
bf search for other commits by this committer
Correct the CVE-2013-0131 entry, so that the most recent revision of
x11/nvidia-driver-304 is not mistakenly flagged as vulnerable
19 Jun 2013 21:56:57
Original commit files touched by this commit  1.1_1
Revision:321338
jgh search for other commits by this committer
- fix formating of 8b97d289-d8cf-11e2-a1f5-60a44c524f57

With Hat:	ports-secteam
19 Jun 2013 21:20:50
Original commit files touched by this commit  1.1_1
Revision:321330
eadler search for other commits by this committer
Add extra-validation to the validation target.

While here, test with python2 and permit the script to run with either 2 or 3.

Requested by:	delphij
With Hat:	ports-secteam
19 Jun 2013 21:14:51
Original commit files touched by this commit  1.1_1
Revision:321329
eadler search for other commits by this committer
- Fix entry dates for some 'insane' dates.  In some cases a best effort was made
to guess what was meant due to either destroyed svn logs (formatting 'fixes') or
lost to time reports.

With Hat:	ports-secteam
19 Jun 2013 20:46:23
Original commit files touched by this commit  1.1_1
Revision:321322
eadler search for other commits by this committer
Add an additional validation script to the vuxml port.
At this point it is not tied to the validate: target because validation fails.

Reviewed by:	simon, delphij
With Hat:	ports-secteam
19 Jun 2013 11:08:02
Original commit files touched by this commit  1.1_1
Revision:321237
cs search for other commits by this committer
Fix typo soccat -> socat
19 Jun 2013 11:07:36
Original commit files touched by this commit  1.1_1
Revision:321236
cs search for other commits by this committer
Add vulnerability on OTRS
18 Jun 2013 15:50:05
Original commit files touched by this commit  1.1_1
Revision:321198
delphij search for other commits by this committer
Fix date for flashpluginwrapper.
18 Jun 2013 15:45:03
Original commit files touched by this commit  1.1_1
Revision:321196
delphij search for other commits by this committer
Add entry for SA-13:06.mmap.
18 Jun 2013 15:15:48
Original commit files touched by this commit  1.1_1
Revision:321194
girgen search for other commits by this committer
Security update for apache-xml-security-c.
Dependant ports, especially shibboleth2-sp, opensaml2, xmltooling
and log4shib should all be updated.

Security: CVE-2013-2156
17 Jun 2013 03:23:53
Original commit files touched by this commit  1.1_1
Revision:321084
bf search for other commits by this committer
Document Tor bug 9072
14 Jun 2013 06:21:14
Original commit files touched by this commit  1.1_1
Revision:320884
ak search for other commits by this committer
- Fix typo in dbus entry

Reported by:	Christoph Mallon <christoph.mallon@gmx.de>
13 Jun 2013 19:54:25
Original commit files touched by this commit  1.1_1
Revision:320834
kwm search for other commits by this committer
Update to 1.6.12.

I'm not completly sure this affects us, but beter safe then sorry.
While here wordsmith Options description to try to make it clearer.

Security:	CVE-2013-2168
11 Jun 2013 22:44:39
Original commit files touched by this commit  1.1_1
Revision:320654
eadler search for other commits by this committer
Update to 11.2r202.291

PR:		ports/179502
Submitted by:	Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
11 Jun 2013 21:03:38
Original commit files touched by this commit  1.1_1
Revision:320642
culot search for other commits by this committer
- Document vulnerabilities in www/owncloud

Security:	d7a43ee6-d2d5-11e2-9894-002590082ac6
Obtained from:	http://owncloud.org/about/security/advisories/
07 Jun 2013 15:19:27
Original commit files touched by this commit  1.1_1
Revision:320210
flo search for other commits by this committer
Update to 5.3.26

Security:	59e7163c-cf84-11e2-907b-0025905a4770
07 Jun 2013 06:30:39
Original commit files touched by this commit  1.1_1
Revision:320151
erwin search for other commits by this committer
Match only the most recent Bind9* version in the latest vulnerability,
older versions are not affected.
06 Jun 2013 10:59:35
Original commit files touched by this commit  1.1_1
Revision:320080
erwin search for other commits by this committer
Fix typo in previous revision.
06 Jun 2013 08:36:34
Original commit files touched by this commit  1.1_1
Revision:320060
erwin search for other commits by this committer
Add entry for the latest Bind vulnerabilities in CVE-2013-3919.
05 Jun 2013 22:02:14
Original commit files touched by this commit  1.1_1
Revision:320032
matthew search for other commits by this committer
Security upgrade to 4.0.3

Advisory: http://www.phpmyadmin.net/home_page/security/PMASA-2013-6.php

ChangeLog:
http://sourceforge.net/projects/phpmyadmin/files/phpMyAdmin/4.0.3/phpMyAdmin-4.0.3-notes.html/view

Security:	6b97436c-ce1e-11e2-9cb2-6805ca0b3d42
05 Jun 2013 09:02:47
Original commit files touched by this commit  1.1_1
Revision:319965
kwm search for other commits by this committer
Update to 0.16.6.

Obtained from:	GNOME dev repo
Security:	CVE-2013-1431
04 Jun 2013 22:30:28
Original commit files touched by this commit  1.1_1
Revision:319933
rene search for other commits by this committer
Document vulnerabilities in www/chromium < 27.0.1453.110

Obtained from:	http://googlechromereleases.blogspot.nl/
04 Jun 2013 21:52:40
Original commit files touched by this commit  1.1_1
Revision:319919
eadler search for other commits by this committer
- Fix build
- Ensure validation
04 Jun 2013 19:31:30
Original commit files touched by this commit  1.1_1
Revision:319899
zeising search for other commits by this committer
Fix security issues in xorg client libraries.
Most libraries were updated to newer versions, in some cases patches
were backported instead.

Most notably, x11/libX11 was updated to 1.6.0

Security:	CVE-2013-1981
		CVE-2013-1982
		CVE-2013-1983
		CVE-2013-1984
		CVE-2013-1985
		CVE-2013-1986
		CVE-2013-1987
		CVE-2013-1988
		CVE-2013-1989
(Only the first 15 lines of the commit message are shown above View all of this commit message)
04 Jun 2013 04:45:23
Original commit files touched by this commit  1.1_1
Revision:319823
cy search for other commits by this committer
Update krb5 1.11.2 --> 1.11.3.

This is a bugfix release.

* Fix a UDP ping-pong vulnerability in the kpasswd (password changing)
  service.  [CVE-2002-2443]

* Improve interoperability with some Windows native PKINIT clients.

Security:	CVE-2002-2443
03 Jun 2013 18:29:51
Original commit files touched by this commit  1.1_1
Revision:319798
crees search for other commits by this committer
Update to 1.6.2

* Fix buffer overflows in fileserver and ptserver.
* Fix rare file corruption during background sync (Gerrit 8796).
* Fix corrupting clients' metadata cache during certain errors (Gerrit 6957).
* Fix cache corruption when reading from a file another client is simultaneously
writing to (Gerrit 7994).
* Fix fileservers to properly report >2 TiB partitions.

and some other less serious changes.

PR:		ports/179259
Submitted by:	Adam Nowacki <nowak@tepeserwery.pl>
Submitted by:	bjk (maintainer)
Security:	CVE-2013-1794

Number of commits found: 3489 (showing only 100 on this page)

[First Page]  «  1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
flacNov 25
asterisk11Nov 21
asterisk11Nov 21
phpmyadminNov 21
kde4-runtimeNov 20
kwebkitpartNov 20
yiiNov 19
chromiumNov 18
kde4-workspaceNov 17
dbusNov 11
wgetNov 08
konversation-kde4Nov 05
jenkinsOct 31
jenkins-ltsOct 31
twikiOct 31

9 vulnerabilities affecting 11 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24386
Broken 160
Deprecated 79
Ignore 417
Forbidden 1
Restricted 206
No CDROM 93
Vulnerable 18
Expired 12
Set to expire 74
Interactive 0
new 24 hours 4
new 48 hours7
new 7 days48
new fortnight177
new month233

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.