FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_2 security on this many watch lists=31 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 12 Feb 2004 14:24:23
Also Listed In: textproc
License: BSD2CLAUSE
VuXML (the Vulnerability and eXposure Markup Language) is an XML
application for documenting security bugs and corrections within
a software package collection such as the FreeBSD Ports Collection.
This port installs the DTDs required for validating VuXML documents.
SVNWeb : PortsMon

To install the port: cd /usr/ports/security/vuxml/ && make install clean
To add the package: pkg install vuxml

PKGNAME: vuxml


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Runtime dependencies:
  1. xmlcatmgr : textproc/xmlcatmgr
  2. VERSION : textproc/xhtml-modularization
  3. xhtml-basic10.dtd : textproc/xhtml-basic
  4. python2.7 : lang/python27
There are no ports dependent upon this port

Configuration Options
     No options to configure

USES:
python:run

Master Sites:
  1. http://www.vuxml.org/dtd/vuxml-1/

Number of commits found: 4291 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
26 Jun 2016 18:13:40
Original commit files touched by this commit  1.1_2
Revision:417596
junovitch search for other commits by this committer
Document remote denial of service via FileUpload component in Tomcat

PR:		209669 [1]
Reported by:	Geoffroy Desvernay <dgeo@centrale-marseille.fr> [1]
Reported by:	Roger Marquis <marquis@roble.com>
Security:	CVE-2016-3092
Security:	https://vuxml.FreeBSD.org/freebsd/cbceeb49-3bc7-11e6-8e82-002590263bf5.html
25 Jun 2016 23:17:46
Original commit files touched by this commit  1.1_2
Revision:417499
junovitch search for other commits by this committer
Document Wordpress vulnerabilities fixed in 4.5.3

PR:             210480 [1]
PR:             210581
Reported by:	Mihail Timofeev <9267096@gmail.com> [1]
Security:	CVE-2016-5832
Security:	CVE-2016-5833
Security:	CVE-2016-5834
Security:	CVE-2016-5835
Security:	CVE-2016-5836
Security:	CVE-2016-5837
Security:	CVE-2016-5838
Security:	CVE-2016-5839
Security:	https://vuxml.FreeBSD.org/freebsd/bfcc23b6-3b27-11e6-8e82-002590263bf5.html
25 Jun 2016 22:18:24
Original commit files touched by this commit  1.1_2
Revision:417490
junovitch search for other commits by this committer
Docment security issues fixed in PHP 7.0.8, 5.6.23, and 5.5.37

PR:		210491
PR:		210502
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Reported by:	Philip Jocks <freebsdbugs@filis.org>
Security:	CVE-2015-8874
Security:	CVE-2016-5766
Security:	CVE-2016-5767
Security:	CVE-2016-5768
Security:	CVE-2016-5769
Security:	CVE-2016-5770
Security:	CVE-2016-5771
Security:	CVE-2016-5772
Security:	CVE-2016-5773
Security:	https://vuxml.FreeBSD.org/freebsd/66d77c58-3b1d-11e6-8e82-002590263bf5.html
23 Jun 2016 16:55:18
Original commit files touched by this commit  1.1_2
Revision:417391
feld search for other commits by this committer
Fix vuxml

I didn't validate after updating "foo reports:" line

Pointyhat:	me
23 Jun 2016 16:25:47
Original commit files touched by this commit  1.1_2
Revision:417384
feld search for other commits by this committer
Document libarchive vulnerabilities

PR:		210493
Security:	CVE-2015-8934
Security:	CVE-2016-4300
Security:	CVE-2016-4301
Security:	CVE-2016-4302
23 Jun 2016 15:52:40
Original commit files touched by this commit  1.1_2
Revision:417381
feld search for other commits by this committer
Add piwik XSS to vuxml

No further information is available. No CVE has been assigned.

PR:		210458
21 Jun 2016 08:34:28
Original commit files touched by this commit  1.1_2
Revision:417193
vd search for other commits by this committer
Followup to r417190 - all versions of wget<1.18 are affected
21 Jun 2016 08:16:47
Original commit files touched by this commit  1.1_2
Revision:417190
vd search for other commits by this committer
Document ftp/wget's HTTP to FTP redirection file name confusion vulnerability

PR:		210420
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-4971
20 Jun 2016 19:08:32
Original commit files touched by this commit  1.1_2
Revision:417173
feld search for other commits by this committer
Update vuxml for libxslt vulnerabilities

These vulnerabilities were previously reported by Google as they bundle
libxslt with Chrome. When we patched Chromium to address these
vulnerabilites it was overlooked that we do not bundle libxslt library
with Chromium, but instead use textproc/libxslt. Chromium users have
continued to be vulnerable to these CVEs as a result. This update fixes
the Chromium CVE entry and adds a separate one for libxslt.

PR:		210298
Security:	CVE-2016-1683
Security:	CVE-2016-1684
19 Jun 2016 09:03:23
Original commit files touched by this commit  1.1_2
Revision:417104
brnrd search for other commits by this committer
Update security/libressl vulnerability for quarterly branch

  - Mark vulnerable from 2.3.0 up to 2.3.6
  - Mark vulnerable below 2.2.9
19 Jun 2016 02:57:04
Original commit files touched by this commit  1.1_2
Revision:417097
junovitch search for other commits by this committer
Document Flash vulnerabilities in Adobe Security Bulletins APSB16-10,
APSB16-15, APSB16-18

PR:		209592
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-1006, CVE-2016-1011, CVE-2016-1012, CVE-2016-1013,
		CVE-2016-1014, CVE-2016-1015, CVE-2016-1016, CVE-2016-1017,
		CVE-2016-1018, CVE-2016-1019, CVE-2016-1020, CVE-2016-1021,
		CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CVE-2016-1025,
		CVE-2016-1026, CVE-2016-1027, CVE-2016-1028, CVE-2016-1029,
		CVE-2016-1030, CVE-2016-1031, CVE-2016-1032, CVE-2016-1033,
		CVE-2016-1096, CVE-2016-1097, CVE-2016-1098, CVE-2016-1099,
		CVE-2016-1100, CVE-2016-1101, CVE-2016-1102, CVE-2016-1103,
		CVE-2016-1104, CVE-2016-1105, CVE-2016-1106, CVE-2016-1107,
		CVE-2016-1108, CVE-2016-1109, CVE-2016-1110, CVE-2016-4108,
(Only the first 15 lines of the commit message are shown above View all of this commit message)
17 Jun 2016 19:44:22
Original commit files touched by this commit  1.1_2
Revision:417031
feld search for other commits by this committer
Fix vuxml <cvename> syntax for recent Chrome entry
17 Jun 2016 19:14:16
Original commit files touched by this commit  1.1_2
Revision:417023
rene search for other commits by this committer
Document new vulnerabilities in www/chromium < 51.0.2704.103

Obtained
from:	https://googlechromereleases.blogspot.nl/2016/06/stable-channel-update_16.html
17 Jun 2016 17:03:57
Original commit files touched by this commit  1.1_2
Revision:417018
rm search for other commits by this committer
Document integer overflow in python's zipimport module

PR:		210324
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5636
17 Jun 2016 01:12:31
Original commit files touched by this commit  1.1_2
Revision:416988
junovitch search for other commits by this committer
Document Drupal vulnerabilities

PR:		210317
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	https://www.drupal.org/SA-CORE-2016-002
Security:	https://vuxml.FreeBSD.org/freebsd/7932548e-3427-11e6-8e82-002590263bf5.html
14 Jun 2016 01:48:36
Original commit files touched by this commit  1.1_2
Revision:416872
junovitch search for other commits by this committer
Document multiple issues in Botan

PR:		209595
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2015-7827
Security:	CVE-2016-2849
Security:	https://vuxml.FreeBSD.org/freebsd/ac0900df-31d0-11e6-8e82-002590263bf5.html
Security:	CVE-2014-9742
Security:	https://vuxml.FreeBSD.org/freebsd/f771880c-31cf-11e6-8e82-002590263bf5.html
13 Jun 2016 19:21:32
Original commit files touched by this commit  1.1_2
Revision:416861
feld search for other commits by this committer
Update vuxml

A backported fix was added to security/openssl
11 Jun 2016 10:10:56
Original commit files touched by this commit  1.1_2
Revision:416712
riggs search for other commits by this committer
Document remote code execution vulnerability in multimedia vlc before 2.2.4
10 Jun 2016 01:57:36
Original commit files touched by this commit  1.1_2
Revision:416651
jbeich search for other commits by this committer
Chase MFSA typo fix
10 Jun 2016 01:15:07
Original commit files touched by this commit  1.1_2
Revision:416647
junovitch search for other commits by this committer
Document cross-site scripting CVE in Roundcube

PR:		209841
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5103
Security:	https://vuxml.FreeBSD.org/freebsd/97e86d10-2ea7-11e6-ae88-002590263bf5.html
09 Jun 2016 21:03:58
Original commit files touched by this commit  1.1_2
Revision:416631
brnrd search for other commits by this committer
Add entry for CVE-2016-2178 OpenSSL vulnerability

Security:	CVE-2016-2178
09 Jun 2016 03:39:23
Original commit files touched by this commit  1.1_2
Revision:416582
junovitch search for other commits by this committer
Fill in <freebsdpr> tag on last entry; I staged it prior to opening the PR
for tracking and forgot to fill it in pre-commit.

PR:		210155
09 Jun 2016 03:28:07
Original commit files touched by this commit  1.1_2
Revision:416580
junovitch search for other commits by this committer
Document two expat CVEs reported by upstream

PR:		210155
Reported by:	Sebastian Pipping <sebastian@pipping.org>
Security:	CVE-2012-6702
Security:	CVE-2016-5300
Security:	https://vuxml.FreeBSD.org/freebsd/c9c252f5-2def-11e6-ae88-002590263bf5.html
08 Jun 2016 20:32:00
Original commit files touched by this commit  1.1_2
Revision:416563
bmah search for other commits by this committer
Add entry for recent iperf3 vulnerability.

Security:	d6bbf2d8-2cfc-11e6-800b-080027468580
Sponsored by:	ESnet
07 Jun 2016 16:37:58
Original commit files touched by this commit  1.1_2
Revision:416515
tijl search for other commits by this committer
Document GNUTLS-SA-2016-1.
07 Jun 2016 16:34:07
Original commit files touched by this commit  1.1_2
Revision:416514
jbeich search for other commits by this committer
Document recent Firefox vulnerabilities
06 Jun 2016 22:32:48
Original commit files touched by this commit  1.1_2
Revision:416490
feld search for other commits by this committer
Fix cvename entries
06 Jun 2016 21:08:05
Original commit files touched by this commit  1.1_2
Revision:416488
rene search for other commits by this committer
Document new vulnerabilities in www/chromium < 51.0.2704.79

Obtained
from:	http://googlechromereleases.blogspot.nl/2016/06/stable-channel-update.html
05 Jun 2016 18:59:49
Original commit files touched by this commit  1.1_2
Revision:416417
tijl search for other commits by this committer
The Expat vulnerability also affects linux-*-expat.
05 Jun 2016 18:04:11
Original commit files touched by this commit  1.1_2
Revision:416410
junovitch search for other commits by this committer
Document OpenAFS vulnerabilities in 1.6.16 and 1.6.17

PR:		209534
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2015-8312
Security:	CVE-2016-2860
Security:	CVE-2016-4536
Security:	https://vuxml.FreeBSD.org/freebsd/2e8fe57e-2b46-11e6-ae88-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/bcbd3fe0-2b46-11e6-ae88-002590263bf5.html
05 Jun 2016 17:44:15
Original commit files touched by this commit  1.1_2
Revision:416408
junovitch search for other commits by this committer
Fixup invalid nginx version from r416222; it needed a PORTEPOCH to be valid.
Add version range valid for backported commit on 1.8 and 1.9 in quarterly.

Security:	CVE-2016-4450
Security:	https://vuxml.FreeBSD.org/freebsd/36cf7670-2774-11e6-af29-f0def16c5c1b.html
05 Jun 2016 16:36:59
Original commit files touched by this commit  1.1_2
Revision:416397
junovitch search for other commits by this committer
Document ikiwiki XSS vulnerability

PR:		209593
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-4561
Security:	https://vuxml.FreeBSD.org/freebsd/0297b260-2b3b-11e6-ae88-002590263bf5.html
01 Jun 2016 22:49:47
Original commit files touched by this commit  1.1_2
Revision:416260
zi search for other commits by this committer
- Document vulnerability in www/h2o

PR:		209926
Submitted by:	Dave Cottlehuber (maintainer)
31 May 2016 21:50:59
Original commit files touched by this commit  1.1_2
Revision:416223
osa search for other commits by this committer
Fix latest cacti entry.

Found by:	make validate
No cookie for:	brnrd
31 May 2016 21:44:52
Original commit files touched by this commit  1.1_2
Revision:416222
osa search for other commits by this committer
Add an entry about latest nginx vulnerability.
31 May 2016 20:00:29
Original commit files touched by this commit  1.1_2
Revision:416215
brnrd search for other commits by this committer
security/vuxml: Modify libressl < 2.3.4 range

  - Change existing range to >2.3.0 and <2.3.4
  - Add <2.2.7 range
  - Update modified date

This addresses pkg audit showing LibreSSL 2.2.7 as vulnerable
29 May 2016 19:01:24
Original commit files touched by this commit  1.1_2
Revision:416120
pi search for other commits by this committer
Document security issues fixed in cacti 0.8.8h

PR:		209809
Reported by:	Daniel Austin <freebsd-ports@dan.me.uk>
Security:	CVE-2016-3659
Security:	https://vuxml.FreeBSD.org/freebsd/6167b341-250c-11e6-a6fb-003048f2e514.html
29 May 2016 09:46:32
Original commit files touched by this commit  1.1_2
Revision:416090
ohauer search for other commits by this committer
- document openvswitch CVE-2016-2074

PR:		208404
Submitted by:	ohauer
28 May 2016 10:14:12
Original commit files touched by this commit  1.1_2
Revision:415981
rene search for other commits by this committer
Document vulnerabilities in www/chromium:
 < 50.0.2661.94
 < 50.0.2661.102
 < 51.0.2704.63

Obtained from:	http://googlechromereleases.blogspot.nl/
28 May 2016 01:40:53
Original commit files touched by this commit  1.1_2
Revision:415969
junovitch search for other commits by this committer
Document security issues fixed in PHP 7.0.7, 5.6.22, and 5.5.36

PR:		209779
Reported by:	Fabiano Sidler <fabianosidler@swissonline.ch>
Security:	CVE-2013-7456
Security:	CVE-2016-4343
Security:	CVE-2016-5093
Security:	CVE-2016-5094
Security:	CVE-2016-5096
Security:	https://vuxml.FreeBSD.org/freebsd/6b110175-246d-11e6-8dd3-002590263bf5.html
26 May 2016 20:01:01
Original commit files touched by this commit  1.1_2
Revision:415913
matthew search for other commits by this committer
Add CVE names for the latest phpMyAdmin advisories, not that they have
been released.
26 May 2016 06:57:58
Original commit files touched by this commit  1.1_2
Revision:415876
matthew search for other commits by this committer
fix typo.
25 May 2016 21:06:55
Original commit files touched by this commit  1.1_2
Revision:415865
matthew search for other commits by this committer
Document two more phpMyAdmin vulnerabilities: PMSA-2016-14 and
PMSA-2016-16.

(For anyone wondering about the suspicious gap in the sequence:
PMSA-2016-15 only affected unreleased code in their git master
development branch)
24 May 2016 22:32:49
Original commit files touched by this commit  1.1_2
Revision:415814
bapt search for other commits by this committer
Add a new keywork xmlcatmgr

It simplifies the handling of the XML and SMGL catalog
It brings a big of consistency by always specifying the catalog path absolute
instead of mixing absolute and relative path.
The keyword is also written a PKG_ROOTDIR friendly to simplify cross installing

Reviewed by:	hrs
Differential Revision:	https://reviews.freebsd.org/D6539
24 May 2016 01:57:31
Original commit files touched by this commit  1.1_2
Revision:415757
junovitch search for other commits by this committer
Document security announcement from MediaWiki 1.26.3, 1.25.6, and
1.23.14 release.
20 May 2016 01:22:31
Original commit files touched by this commit  1.1_2
Revision:415536
junovitch search for other commits by this committer
Document wpa_supplicant security advisory 2016-1

PR:		209564
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-4477
Security:	CVE-2016-4476
Security:	https://vuxml.FreeBSD.org/freebsd/967b852b-1e28-11e6-8dd3-002590263bf5.html
20 May 2016 01:07:11
Original commit files touched by this commit  1.1_2
Revision:415533
junovitch search for other commits by this committer
Document Expat XML Parser crash on malformed input

Security:	CVE-2016-0718
Security:	https://vuxml.FreeBSD.org/freebsd/57b3aba7-1e25-11e6-8dd3-002590263bf5.html
17 May 2016 18:32:17
Original commit files touched by this commit  1.1_2
Revision:415406
ohauer search for other commits by this committer
- document bugzilla Cross-Site Scripting issue
14 May 2016 08:46:46
Original commit files touched by this commit  1.1_2
Revision:415181
mandree search for other commits by this committer
Mark openvpn-polarssl <v2.3.11 vulnerable, too, not just openvpn.

Security: 0dc8be9e-19af-11e6-8de0-080027ef73ec
14 May 2016 08:43:48
Original commit files touched by this commit  1.1_2
Revision:415180
mandree search for other commits by this committer
Mark OpenVPN before 2.3.11 vulnerable.

v2.3.11 fixed a buffer overrun in PAM authentication,
and a port-share bug with denial-of-service potential.
13 May 2016 12:51:44
Original commit files touched by this commit  1.1_2
Revision:415105
feld search for other commits by this committer
Fix vuxml
13 May 2016 12:43:03
Original commit files touched by this commit  1.1_2
Revision:415104
kwm search for other commits by this committer
Add basic imagemagick entry.
12 May 2016 03:45:24
Original commit files touched by this commit  1.1_2
Revision:415045
lwhsu search for other commits by this committer
Fix affected versions
12 May 2016 03:44:24
Original commit files touched by this commit  1.1_2
Revision:415044
lwhsu search for other commits by this committer
Document Jenkins Security Advisory 2016-05-11
10 May 2016 03:00:14
Original commit files touched by this commit  1.1_2
Revision:414913
junovitch search for other commits by this committer
Document Perl taint protection bypass vulnerability

PR:		208879
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-2381
Security:	https://vuxml.FreeBSD.org/freebsd/d9f99491-1656-11e6-94fa-002590263bf5.html
10 May 2016 01:49:25
Original commit files touched by this commit  1.1_2
Revision:414902
junovitch search for other commits by this committer
Document Wordpress vulnerabilities fixed in 4.5.2

PR:		209409
PR:		209378 [1]
Reported by:	Mihail Timofeev <9267096@gmail.com> [1]
Security:	CVE-2016-4566
Security:	CVE-2016-4567
Security:	https://vuxml.FreeBSD.org/freebsd/3686917b-164d-11e6-94fa-002590263bf5.html
10 May 2016 00:22:27
Original commit files touched by this commit  1.1_2
Revision:414896
junovitch search for other commits by this committer
Fix version range for libarchive entry. [1]

While here, add CVE and wrap lines at <80

PR:		209404 [1]
Reported by:	dereks@lifeofadishwasher.com [1]
Security:	CVE-2016-1541
Security:	https://vuxml.FreeBSD.org/freebsd/2b4c8e1f-1609-11e6-b55e-b499baebfeaf.html
09 May 2016 19:31:37
Original commit files touched by this commit  1.1_2
Revision:414889
brnrd search for other commits by this committer
security/vuxml: Add entry for libarchive

  - Vulnerable < 2.3.0

Reviewed by:	feld (mentor)
Approved by:	feld (mentor, ports-secteam)
Security:	CVE-2016-1541
09 May 2016 15:24:48
Original commit files touched by this commit  1.1_2
Revision:414860
matthew search for other commits by this committer
Update recent squid, squid-devel entry to add CVE Numbers
07 May 2016 11:56:27
Original commit files touched by this commit  1.1_2
Revision:414774
matthew search for other commits by this committer
Document three security advisories for the squid and squid-devel
ports.  CVE numbers are not yet available.

PR:		209334
Submitted by:	timp87@gmail.com (maintainer)
07 May 2016 07:30:31
Original commit files touched by this commit  1.1_2
Revision:414760
kwm search for other commits by this committer
Add forgotten portepoch to the ImageMagick 6.x version.

PR:		209241
Reported by:	Ben Woods, Jason Unovitch
06 May 2016 15:27:49
Original commit files touched by this commit  1.1_2
Revision:414710
kwm search for other commits by this committer
Document ImageMagick vulnabilities.

PR:		209241
Submitted by:	Ben Woods
04 May 2016 06:25:52
Original commit files touched by this commit  1.1_2
Revision:414587
vanilla search for other commits by this committer
Add entry of devel/jansson

PR:		209219
Submitted by:	junovitch@
03 May 2016 23:57:03
Original commit files touched by this commit  1.1_2
Revision:414566
junovitch search for other commits by this committer
Fix <url> -> <cvename> tags in OpenSSL entry plus spacing fixes.

While here, combine both entries as they both refer to the same CVEs and
we've typically done these as combined entries in the past.
03 May 2016 17:56:24
Original commit files touched by this commit  1.1_2
Revision:414544
brnrd search for other commits by this committer
security/vuxml: Document LibreSSL vulnerabilities

Reviewed by:	swills
MFH:		2016Q3
03 May 2016 17:50:20
Original commit files touched by this commit  1.1_2
Revision:414543
brnrd search for other commits by this committer
security/vuxml: Document OpenSSL 1.0.2g vulnerabilities

Reviewed by:	swills
MFH:		2016Q2
03 May 2016 13:27:45
Original commit files touched by this commit  1.1_2
Revision:414530
junovitch search for other commits by this committer
Document gitlab privilege escalation via "impersonate" feature

PR:		209225
Reported by:	Torsten Zuehlsdorff <ports@toco-domains.de>
Security:	CVE-2016-4340
Security:	https://vuxml.FreeBSD.org/freebsd/be72e773-1131-11e6-94fa-002590263bf5.html
03 May 2016 03:05:31
Original commit files touched by this commit  1.1_2
Revision:414508
junovitch search for other commits by this committer
Document php multiple vulnerabilities

PR:		209145
Reported by	Christian Schwarz <me@cschwarz.com>
Security:	CVE-2016-3074
Security:	https://vuxml.FreeBSD.org/freebsd/5764c634-10d2-11e6-94fa-002590263bf5.html
03 May 2016 00:40:04
Original commit files touched by this commit  1.1_2
Revision:414498
junovitch search for other commits by this committer
Document libksba local denial of service vulnerabilities

Security:	CVE-2016-4353
Security:	CVE-2016-4354
Security:	CVE-2016-4355
Security:	CVE-2016-4356
Security:	https://vuxml.FreeBSD.org/freebsd/a1134048-10c6-11e6-94fa-002590263bf5.html
02 May 2016 23:58:59
Original commit files touched by this commit  1.1_2
Revision:414494
junovitch search for other commits by this committer
Document denial of service advisories from Wireshark's recent release

Security:	https://vuxml.FreeBSD.org/freebsd/7e36c369-10c0-11e6-94fa-002590263bf5.html
01 May 2016 21:15:35
Original commit files touched by this commit  1.1_2
Revision:414427
olivierd search for other commits by this committer
Document arbitrary code execution vulnerability in Mercurial

Security:	CVE-2016-3105
01 May 2016 07:33:16
Original commit files touched by this commit  1.1_2
Revision:414389
brnrd search for other commits by this committer
security/vuxml: Add entry for MySQL/MariaDB/Percona April Critical Patch Update

  - Add entry for 31 security fixes for Oracle MySQL
  - Add also affected MariaDB packages
  - Add also affected Percona packages

Reviewed by:	junovitch (ports-secteam)
Approved by:	junovitch (ports-secteam)
Differential Revision:	D6159
28 Apr 2016 20:17:30
Original commit files touched by this commit  1.1_2
Revision:414236
matthew search for other commits by this committer
Logstash password disclosure vulnerability.
28 Apr 2016 15:15:38
Original commit files touched by this commit  1.1_2
Revision:414180
lev search for other commits by this committer
  Add two CVEs for subversion:

   http://subversion.apache.org/security/CVE-2016-2167-advisory.txt
   http://subversion.apache.org/security/CVE-2016-2168-advisory.txt
27 Apr 2016 04:43:31
Original commit files touched by this commit  1.1_2
Revision:414086
delphij search for other commits by this committer
Document NTP multiple vulnerabilities.
26 Apr 2016 20:24:35
Original commit files touched by this commit  1.1_2
Revision:414068
jbeich search for other commits by this committer
Document recent Firefox vulnerabilities
23 Apr 2016 11:40:45
Original commit files touched by this commit  1.1_2
Revision:413863
flo search for other commits by this committer
Document phpmyfaq vulnerability

Security:	https://vuxml.freebsd.org/freebsd/f87a9376-0943-11e6-8fc4-00a0986f28c4.html
Security:	http://www.phpmyfaq.de/security/advisory-2016-04-11
Sponsored by:	Essen Linuxhotel Hackathon 2016
21 Apr 2016 02:16:32
Original commit files touched by this commit  1.1_2
Revision:413711
junovitch search for other commits by this committer
Document libtasn1 denial of service via parsing malicious DER certificates

Security:	CVE-2016-4008
Security:	https://vuxml.FreeBSD.org/freebsd/1b0d2938-0766-11e6-94fa-002590263bf5.html
21 Apr 2016 02:01:29
Original commit files touched by this commit  1.1_2
Revision:413710
junovitch search for other commits by this committer
Document squid -- multiple vulnerabilities

PR:		208939
Reported by:	Pavel Timofeev <timp87@gmail.com>
Security:	CVE-2016-4054
Security:	CVE-2016-4053
Security:	CVE-2016-4052
Security:	CVE-2016-4051
Security:	https://vuxml.FreeBSD.org/freebsd/e05bfc92-0763-11e6-94fa-002590263bf5.html
20 Apr 2016 12:33:44
Original commit files touched by this commit  1.1_2
Revision:413686
matthew search for other commits by this committer
CVE-2016-3096 -- ansible and ansible1 vulnerability due to using
predictable temporary file names when managing LXC containers.
20 Apr 2016 11:46:34
Original commit files touched by this commit  1.1_2
Revision:413680
mm search for other commits by this committer
Document security vulnerability in proftpd mod_tls.

PR:		208876
Security:	CVE-2016-3125
19 Apr 2016 20:14:53
Original commit files touched by this commit  1.1_2
Revision:413661
rene search for other commits by this committer
Doument new vulnerabilities in www/chromium < 50.0.2661.75

Obtained
from:	http://googlechromereleases.blogspot.nl/2016/04/stable-channel-update_13.html
19 Apr 2016 00:36:18
Original commit files touched by this commit  1.1_2
Revision:413617
junovitch search for other commits by this committer
Document wpa_supplicant security advisories

PR:		208482
Security:	CVE-2015-5310
Security:	CVE-2015-5315
Security:	CVE-2015-5316
Security:	https://vuxml.FreeBSD.org/freebsd/976567f6-05c5-11e6-94fa-002590263bf5.html
17 Apr 2016 20:07:36
Original commit files touched by this commit  1.1_2
Revision:413540
junovitch search for other commits by this committer
Document earlier dhcpcd security issue that has been fixed in an earlier
version before the security implications were reported.

PR:		208840
Submitted by:	Ben Woods <woodsb02@gmail.com>
Submitted by:	Roy Marples <roy@marples.name>
Security:	CVE-2014-7912
Security:	https://vuxml.FreeBSD.org/freebsd/092156c9-04d7-11e6-b1ce-002590263bf5.html
17 Apr 2016 01:16:22
Original commit files touched by this commit  1.1_2
Revision:413486
junovitch search for other commits by this committer
Document dhcpcd security remote execution/denial of service

PR:		208840
Submitted by:	Ben Woods <woodsb02@gmail.com>
Security:	CVE-2014-7913
Security:	https://vuxml.FreeBSD.org/freebsd/6ec9f210-0404-11e6-9aee-bc5ff4fb5ea1.html
15 Apr 2016 15:12:45
Original commit files touched by this commit  1.1_2
Revision:413349
madpilot search for other commits by this committer
Document Asterisk and PJsip vulnerabilities.
14 Apr 2016 02:07:44
Original commit files touched by this commit  1.1_2
Revision:413239
junovitch search for other commits by this committer
Document go remote denial of service

Security:	CVE-2016-3959
Security:	https://vuxml.FreeBSD.org/freebsd/f2217cdf-01e4-11e6-b1ce-002590263bf5.html
13 Apr 2016 18:59:29
Original commit files touched by this commit  1.1_2
Revision:413229
feld search for other commits by this committer
Document linux-c6-nspr which was overlooked in previous vuxml entry
12 Apr 2016 18:49:29
Original commit files touched by this commit  1.1_2
Revision:413154
timur search for other commits by this committer
Multiple vulnerabilities in Samba.
[CVE-2015-5370] Errors in Samba DCE-RPC code can lead to denial of service
(crashes and high cpu consumption) and man in the middle attacks.
[CVE-2016-2110] The feature negotiation of NTLMSSP is not downgrade protected. A
man in the middle is able to clear even required flags,
    especially NTLMSSP_NEGOTIATE_SIGN and NTLMSSP_NEGOTIATE_SEAL.
[CVE-2016-2111] When Samba is configured as Domain Controller it allows remote
attackers to spoof the computer name of a secure channel's endpoints,
    and obtain sensitive session information, by running a crafted application
and leveraging the ability to sniff network traffic.
[CVE-2016-2112] A man in the middle is able to downgrade LDAP connections to no
integrity protection.
[CVE-2016-2113] Man in the middle attacks are possible for client triggered LDAP
connections (with ldaps://) and ncacn_http connections (with https://).
[CVE-2016-2114] Due to a bug Samba doesn't enforce required smb signing, even if
explicitly configured.
[CVE-2016-2115] The protection of DCERPC communication over ncacn_np (which is
the default for most the file server related protocols) is inherited
    from the underlying SMB connection.
[CVE-2016-2118] a.k.a. BADLOCK. A man in the middle can intercept any DCERPC
traffic between a client and a server in order to impersonate the client
    and get the same privileges as the authenticated user account. This is most
problematic against active directory domain controllers.
Security:	CVE-2015-5370
		CVE-2016-2110
		CVE-2016-2111
		CVE-2016-2112
		CVE-2016-2113
		CVE-2016-2114
		CVE-2016-2115
		CVE-2016-2118
Sponsored by:	Micro$oft
03 Apr 2016 14:19:01
Original commit files touched by this commit  1.1_2
Revision:412474
junovitch search for other commits by this committer
Document multiple vulnerabilities from the 31 Mar 16 PHP releases

PR:		208465
Reported by	Christian Schwarz <me@cschwarz.com>
Security:	https://vuxml.FreeBSD.org/freebsd/482d40cb-f9a3-11e5-92ce-002590263bf5.html
03 Apr 2016 13:43:13
Original commit files touched by this commit  1.1_2
Revision:412471
junovitch search for other commits by this committer
Document PCRE heap overflow vulnerability

PR:		208260
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-1283
Security:	https://vuxml.FreeBSD.org/freebsd/497b82e0-f9a0-11e5-92ce-002590263bf5.html
03 Apr 2016 02:27:46
Original commit files touched by this commit  1.1_2
Revision:412444
junovitch search for other commits by this committer
Document djblets vulnerability from the 0.9.2 release notes

Security:	https://vuxml.FreeBSD.org/freebsd/df328fac-f942-11e5-92ce-002590263bf5.html
03 Apr 2016 02:11:52
Original commit files touched by this commit  1.1_2
Revision:412441
junovitch search for other commits by this committer
Document multiple security advisories for Moodle

Security:	CVE-2016-2151
Security:	CVE-2016-2152
Security:	CVE-2016-2153
Security:	CVE-2016-2154
Security:	CVE-2016-2155
Security:	CVE-2016-2156
Security:	CVE-2016-2157
Security:	CVE-2016-2158
Security:	CVE-2016-2159
Security:	CVE-2016-2190
Security:	https://vuxml.FreeBSD.org/freebsd/a430e15d-f93f-11e5-92ce-002590263bf5.html
03 Apr 2016 00:48:25
Original commit files touched by this commit  1.1_2
Revision:412440
junovitch search for other commits by this committer
Add additional reference URL for Kamailio entry from r411376

Security:	CVE-2016-2385
Security:	https://vuxml.FreeBSD.org/freebsd/c428de09-ed69-11e5-92ce-002590263bf5.html
03 Apr 2016 00:00:27
Original commit files touched by this commit  1.1_2
Revision:412436
junovitch search for other commits by this committer
Document squid multiple vulnerabilities

PR:		208463
Security:	CVE-2016-3947
Security:	CVE-2016-3948
Security:	https://vuxml.FreeBSD.org/freebsd/297117ba-f92d-11e5-92ce-002590263bf5.html
01 Apr 2016 14:25:18
Original commit files touched by this commit  1.1_2
Revision:412349
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight
31 Mar 2016 14:52:39
Original commit files touched by this commit  1.1_2
Revision:412228
girgen search for other commits by this committer
This CVE is actually for the -contrib module:

Security: CVE-2016-3065
31 Mar 2016 14:43:29
Original commit files touched by this commit  1.1_2
Revision:412225
girgen search for other commits by this committer
Add vuxml entries for "Security Fixes for RLS, BRIN"
in PostgreSQL 9.5

Security:	CVE-2016-2193
Security:	CVE-2016-3065
31 Mar 2016 12:25:46
Original commit files touched by this commit  1.1_2
Revision:412217
tijl search for other commits by this committer
Document latest batch of flash plugin vulnerabilities.
31 Mar 2016 08:01:09
Original commit files touched by this commit  1.1_2
Revision:412209
madpilot search for other commits by this committer
Document mutiple Botan vulnerabilities.

PR:		208393
Submitted by:	Lapo Luchini <lapo at lapo.it>
Security:	CVE-2015-5726
Security:	CVE-2015-5727
Security:	CVE-2016-2194
Security:	CVE-2016-2195

Number of commits found: 4291 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
tomcat7Jun 26
tomcat8Jun 26
php55Jun 25
php55-gdJun 25
php55-mbstringJun 25
php55-wddxJun 25
php55-zipJun 25
php56Jun 25
php56-gdJun 25
php56-mbstringJun 25
php56-pharJun 25
php56-wddxJun 25
php56-zipJun 25
php70Jun 25
php70-gdJun 25

17 vulnerabilities affecting 44 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26148
Broken 281
Deprecated 287
Ignore 545
Forbidden 0
Restricted 202
No CDROM 85
Vulnerable 58
Expired 14
Set to expire 274
Interactive 0
new 24 hours 4
new 48 hours10
new 7 days38
new fortnight55
new month119

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.