FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Port details
vuxml 1.1_2 security on this many watch lists=28 search for ports that depend on this port
Vulnerability and eXposure Markup Language DTD
Maintained by: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 12 Feb 2004 14:24:23
Also Listed In: textproc
License: BSD2CLAUSE


VuXML (the Vulnerability and eXposure Markup Language) is an XML
application for documenting security bugs and corrections within
a software package collection such as the FreeBSD Ports Collection.
This port installs the DTDs required for validating VuXML documents.
SVNWeb : Distfiles Availability : PortsMon

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Required To Run:
  1. textproc/xmlcatmgr
  2. textproc/xhtml-modularization
  3. textproc/xhtml-basic
  4. lang/python27
There are no ports dependent upon this port

To install the port: cd /usr/ports/security/vuxml/ && make install clean
To add the package: pkg install security/vuxml


Configuration Options
     No options to configure

Master Sites:
  1. http://distcache.FreeBSD.org/ports-distfiles/vuxml/
  2. http://www.vuxml.org/dtd/vuxml-1/

Number of commits found: 3401 (showing only 100 on this page)

[First Page]  «  1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
28 Feb 2013 01:46:41
Original commit files touched by this commit  1.1_1
Revision:313076
swills search for other commits by this committer
- Update to 0.9.14 to fix CVE-2013-1756

Security:	aa7764af-0b5e-4ddc-bc65-38ad697a484f
27 Feb 2013 13:40:47
Original commit files touched by this commit  1.1_1
Revision:313052
eadler search for other commits by this committer
Update to 11.2r202.273

Security:	http://www.vuxml.org/freebsd/dbdac023-80e1-11e2-9a29-001060e06fd4.html
26 Feb 2013 17:27:07
Original commit files touched by this commit  1.1_1
Revision:313001
sunpoet search for other commits by this committer
- Update affected ettercap versions: CVE-2012-0722 was fixed in
0.7.5.2-Assimilation
26 Feb 2013 01:38:58
Original commit files touched by this commit  1.1_1
Revision:312948
bdrewery search for other commits by this committer
- Document 3 OTRS vulnerabilities from 2012
 - CVE-2012-4751
 - CVE-2012-4600
 - CVE-2012-2582
24 Feb 2013 18:21:03
Original commit files touched by this commit  1.1_1
Revision:312887
swills search for other commits by this committer
- Document Ruby REXML DoS
24 Feb 2013 17:51:49
Original commit files touched by this commit  1.1_1
Revision:312886
swills search for other commits by this committer
- Document rubygem-ruby_parser issue
24 Feb 2013 14:23:46
Original commit files touched by this commit  1.1_1
Revision:312867
pclin search for other commits by this committer
- Document Django 2013-02-21 vulnerabilty

Approved by:	araujo (mentor)
22 Feb 2013 23:49:45
Original commit files touched by this commit  1.1_1
Revision:312793
rene search for other commits by this committer
Document vulnerabilities in www/chromium < 25.0.1364.97

Obtained from:	http://googlechromereleases.blogspot.nl/search/Stable%20Updates
22 Feb 2013 20:28:22
Original commit files touched by this commit  1.1_1
Revision:312789
cy search for other commits by this committer
Document security/krb5 1.11 and prior null pointer dereference in the
KDC PKINIT code [CVE-2013-1415].

Security:	CVE-2013-1415
22 Feb 2013 08:07:27
Original commit files touched by this commit  1.1_1
Revision:312753
remko (src,doc committer) search for other commits by this committer
Convert the ! back into a 1.

Noticed by:	crees
21 Feb 2013 21:38:16
Original commit files touched by this commit  1.1_1
Revision:312742
remko (src,doc committer) search for other commits by this committer
Add the latest two FreeBSD Security Advisories.
21 Feb 2013 07:11:50
Original commit files touched by this commit  1.1_1
Revision:312707
flo search for other commits by this committer
Document drupal7 Denial of service
20 Feb 2013 13:58:20
Original commit files touched by this commit  1.1_1
Revision:312626
rm search for other commits by this committer
- add an entry for net/nss-pam-ldapd stack-based buffer overflow

According to advisory, vulnerability exists in nss-pam-ldapd < 0.8.11,
but since we never had this version in the ports tree, mark everything
< 0.8.12 as vulnerable.

PR:		176293
Submitted by:	pluknet
20 Feb 2013 07:16:31
Original commit files touched by this commit  1.1_1
Revision:312612
flo search for other commits by this committer
Fix up the latest gecko update by:
- reapplying the workaround for svn:eol-style and svn:keywords
- fixing version matching in vuln.xml, 17.0.3 is NOT vulnerable
20 Feb 2013 06:16:01
Original commit files touched by this commit  1.1_1
Revision:312611
ohauer search for other commits by this committer
- update bugzilla ports to latest version

  Bugzilla 4.0.10 and 3.6.13 are security updates for the 4.0
  branch and the 3.6 branch, respectively. 4.0.10 contains several
  useful bug fixes and 3.6.13 contains only security fixes.

Security:	CVE-2013-0785
		CVE-2013-0786
19 Feb 2013 23:53:08
Original commit files touched by this commit  1.1_1
Revision:312608
flo search for other commits by this committer
- update firefox to 19.0
- update firefox-esr, thunderbird, linux-firefox, linux-thunderbird to 17.0.3
- update linux-seamonkey to 2.16
- update nspr to 4.9.5
- update nss to 3.14.3
- add DuckDuckGo search plugin to firefox [1]
- mark kompozer deprecated
- clang fixes for www/libxul19 [2]

Security:	http://www.vuxml.org/freebsd/e3f0374a-7ad6-11e2-84cd-d43d7e0c7c02.html
Submitted by:	DuckDuckGo [1], dim [2]
In collaboration with:	Jan Beich <jbeich@tormail.org>
19 Feb 2013 00:19:14
Original commit files touched by this commit  1.1_1
Revision:312537
zi search for other commits by this committer
- Fix version range for recent ruby vulnerabilities
(d3e96508-056b-4259-88ad-50dc8d1978a6 and c79eb109-a754-45d7-b552-a42099eb2265)
due to missing port epoch in package range

Submitted by:	Matthias Andree <mandree@FreeBSD.org>
17 Feb 2013 19:58:29
Original commit files touched by this commit  1.1_1
Revision:312441
eadler search for other commits by this committer
Combine ranges into one entry to prevent false positives
17 Feb 2013 16:47:06
Original commit files touched by this commit  1.1_1
Revision:312428
swills search for other commits by this committer
- Document rubygem-rack issue
17 Feb 2013 16:33:19
Original commit files touched by this commit  1.1_1
Revision:312426
swills search for other commits by this committer
- Document activemodel issue
17 Feb 2013 10:28:54
Original commit files touched by this commit  1.1_1
Revision:312408
lwhsu search for other commits by this committer
Document Jenkins Security Advisory 2013-02-16
16 Feb 2013 17:03:28
Original commit files touched by this commit  1.1_1
Revision:312377
rm search for other commits by this committer
- add entry for dns/poweradmin

PR:		175704
Submitted by:	Edmondas Girkantas <eg@fbsd.lt> (maintainer of dns/poweradmin)
16 Feb 2013 14:41:44
Original commit files touched by this commit  1.1_1
Revision:312355
swills search for other commits by this committer
- Document ruby json issue
16 Feb 2013 04:29:14
Original commit files touched by this commit  1.1_1
Revision:312323
swills search for other commits by this committer
- Document vulnerability in rdoc
08 Feb 2013 19:18:41
Original commit files touched by this commit  1.1_1
Revision:311950
eadler search for other commits by this committer
Update flash to the latest version

PR:		ports/175159
Submitted by:	Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
08 Feb 2013 08:44:15
Original commit files touched by this commit  1.1_1
Revision:311921
miwi search for other commits by this committer
- Fix whitespaces
07 Feb 2013 02:10:29
Original commit files touched by this commit  1.1_1
Revision:311808
eadler search for other commits by this committer
Fix vuxml build
06 Feb 2013 20:06:18
Original commit files touched by this commit  1.1_1
Revision:311791
dinoex search for other commits by this committer
- report openssl vulnerabilities
01 Feb 2013 22:42:55
Original commit files touched by this commit  1.1_1
Revision:311404
flo search for other commits by this committer
- update databases/mariadb-server to 5.3.12 [1]
- update databases/mariadb55-server 5.5.29 [2]

PR:		ports/175764 [1]
PR:		ports/175767 [2]
Submitted by:	Geoffroy Desvernay <dgeo@centrale-marseille.fr> (maintainer) [1]
Submitted by:	Alexandr Kovalenko <never@nevermind.kiev.ua> (maintainer) [2]
Security:	8c773d7f-6cbb-11e2-b242-c8600054b392
01 Feb 2013 08:50:40
Original commit files touched by this commit  1.1_1
Revision:311359
dinoex search for other commits by this committer
- report opera 12.12 vulnerabilities
30 Jan 2013 18:34:03
Original commit files touched by this commit  1.1_1
Revision:311253
pawel search for other commits by this committer
Document devel/upnp vulnerabilities
29 Jan 2013 20:02:38
Original commit files touched by this commit  1.1_1
Revision:311185
delphij search for other commits by this committer
Document wordpress multiple vulnerabilities.
25 Jan 2013 09:37:56
Original commit files touched by this commit  1.1_1
Revision:310972
cs search for other commits by this committer
Fix last entry: version 2.3.4 is also affected
25 Jan 2013 02:08:57
Original commit files touched by this commit  1.1_1
Revision:310957
wxs search for other commits by this committer
Fix whitespace in previous commit.
25 Jan 2013 01:26:37
Original commit files touched by this commit  1.1_1
Revision:310956
cs search for other commits by this committer
XSS vulnerability in py-django-cms
23 Jan 2013 12:52:49
Original commit files touched by this commit  1.1_1
Revision:310862
rene search for other commits by this committer
Document vulnerabilities in www/chromium < 24.0.1312.56

Obtained
from:	http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
20 Jan 2013 20:58:13
Original commit files touched by this commit  1.1_1
Revision:310718
flo search for other commits by this committer
- update www/drupal6 to 6.28
- update www/drupal7 to 7.19

Security:	http://www.vuxml.org/freebsd/1827f213-633e-11e2-8d93-c8600054b392.html
Approved by:	portmgr (beat)
16 Jan 2013 19:16:10
Original commit files touched by this commit  1.1_1
Revision:310514
rea search for other commits by this committer
VuXML: add newly-allocated CVE for SQUID-2012:1

New CVE was allocated for the underfixed DoS and added possible
infinite loop in Squid 3.2 and 3.1.
16 Jan 2013 19:13:32
Original commit files touched by this commit  1.1_1
Revision:310513
rea search for other commits by this committer
VuXML: document buffer overflow in ettercap (CVE-2013-0722)
Reviewed by:	simon@
16 Jan 2013 19:11:43
Original commit files touched by this commit  1.1_1
Revision:310512
rea search for other commits by this committer
VuXML: document recent security manager bypass in Java 7.x
Reviewed by:	glewis@, simon@
16 Jan 2013 07:39:28
Original commit files touched by this commit  1.1_1
Revision:310476
delphij search for other commits by this committer
Properly limit the match for PHP 5.3.x and 5.2.x versions.

Noticed by:	remko
15 Jan 2013 22:06:19
Original commit files touched by this commit  1.1_1
Revision:310468
delphij search for other commits by this committer
Apply version ranges of php53 and php52 to php5 as well.
11 Jan 2013 14:11:28
Original commit files touched by this commit  1.1_1
Revision:310235
zi search for other commits by this committer
- Fix discovery date on nagios vulnerability  	(CVE-2012-6096)
11 Jan 2013 09:53:42
Original commit files touched by this commit  1.1_1
Revision:310225
rea search for other commits by this committer
www/squid3x: upgrade to 3.1.23 and 3.2.6

Squid 3.1.23 is effectively Squid 3.1.22_2 with the final fix for
CVE-2012-5643 applied.

Squid 3.2.6 also received that abovementioned fix, but in comparison
with 3.2.5 from ports it has another change that fixes handling the
"tcp_outgoing_tos" directive for BSD-like systems, including FreeBSD,
  http://bugs.squid-cache.org/show_bug.cgi?id=3731

VuXML entry for SQUID:2012-1 (aka CVE-2012-5643) was also updated to
reflect the proper version specifications from the updated advisory,
  http://www.squid-cache.org/Advisories/SQUID-2012_1.txt

Approved by:	Thomas-Martin Seck <tmseck@web.de>
Security:	http://portaudit.freebsd.org/c37de843-488e-11e2-a5c9-0019996bc1f7.html
QA page:	http://codelabs.ru/fbsd/ports/qa/www/squid31/3.1.23
QA page:	http://codelabs.ru/fbsd/ports/qa/www/squid32/3.2.6
11 Jan 2013 01:16:14
Original commit files touched by this commit  1.1_1
Revision:310216
zi search for other commits by this committer
- Document vulnerability in net-mgmt/nagios (CVE-2012-6096)
11 Jan 2013 00:32:48
Original commit files touched by this commit  1.1_1
Revision:310212
rene search for other commits by this committer
Document vulnerabilities in www/chromium < 24.0.1312.52

Obtained
from:	http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
09 Jan 2013 23:28:20
Original commit files touched by this commit  1.1_1
Revision:310165
flo search for other commits by this committer
- update firefox, thunderbird, linux-firefox and linux-thunderbird to 17.0.2
- update firefox-esr, thunderbird-esr and libxul to 10.0.12
- update linux-seamonkey to 2.15

Security:	http://www.vuxml.org/freebsd/a4ed6632-5aa9-11e2-8fcb-c8600054b392.html
09 Jan 2013 15:03:02
Original commit files touched by this commit  1.1_1
Revision:310149
sem search for other commits by this committer
Fix <topic> style: common dash style, remove softvare versions
09 Jan 2013 03:53:16
Original commit files touched by this commit  1.1_1
Revision:310121
swills search for other commits by this committer
- Update rubygem-rails to 3.2.11
- Update ports require by rubygem-rails
- Add vuxml entry for rails security issues

Security:	ca5d3272-59e3-11e2-853b-00262d5ed8ee
Security:	b4051b52-58fa-11e2-853b-00262d5ed8ee
08 Jan 2013 23:46:02
Original commit files touched by this commit  1.1_1
Revision:310114
zi search for other commits by this committer
- Properly copy namespace attributes/resolve make validate issues

Reviewed by:	simon@, eadler@
Approved by:	zi (with ports-secteam hat)
08 Jan 2013 05:18:15
Original commit files touched by this commit  1.1_1
Revision:310068
lwhsu search for other commits by this committer
Document Jenkins 2013-01-04 Security Advisory
06 Jan 2013 20:37:24
Original commit files touched by this commit  1.1_1
Revision:310013
rea search for other commits by this committer
VuXML: extend entry for MoinMoin vulnerabilities fixed in 1.9.6

Use more verbose descriptions from CVE entries and trim citation
from CHANGES to the relevant parts.
06 Jan 2013 18:14:24
Original commit files touched by this commit  1.1_1
Revision:310004
lwhsu search for other commits by this committer
Document Django 2012-12-10 vulnerabilty
06 Jan 2013 13:24:39
Original commit files touched by this commit  1.1_1
Revision:309984
rea search for other commits by this committer
VuXML: fix r309982

Use proper tags for CVE identifiers.  I should run 'make validate'
_every_ time before committing.
Pointyhat to:	rea
06 Jan 2013 13:10:10
Original commit files touched by this commit  1.1_1
Revision:309982
rea search for other commits by this committer
VuXML for MoinMoin issues: add CVE references
05 Jan 2013 12:54:28
Original commit files touched by this commit  1.1_1
Revision:309958
crees search for other commits by this committer
Freetype 2.4.8 vulnerabilities were already documented.

While here, correct pkgname

Noticed by:	kwm
05 Jan 2013 11:29:01
Original commit files touched by this commit  1.1_1
Revision:309954
crees search for other commits by this committer
Mark moinmoin vulnerable

Security:	http://www.debian.org/security/2012/dsa-2593

document freetype vulnerabilities

Security:	CVE-2012-(1126-1144)
04 Jan 2013 07:30:10
Original commit files touched by this commit  1.1_1
Revision:309917
erwin search for other commits by this committer
Bump copyright to 2013.
03 Jan 2013 19:46:51
Original commit files touched by this commit  1.1_1
Revision:309904
flo search for other commits by this committer
Add correct version numbers to the recent asterisk entry

Pointy hat to:	flo
03 Jan 2013 19:41:31
Original commit files touched by this commit  1.1_1
Revision:309903
flo search for other commits by this committer
- update net/asterisk to 1.8.19.1
- update net/asterisk10 to 10.11.1
- update net/asterisk11 to 10.1.2
- add vuln.xml entry

Security:	f7c87a8a-55d5-11e2-a255-c8600054b392
02 Jan 2013 12:28:47
Original commit files touched by this commit  1.1_1
Revision:309813
crees search for other commits by this committer
Note charybdis and ircd-ratbox vulnerabilities

PR:		ports/174878
Security:	http://www.ratbox.org/ASA-2012-12-31.txt
30 Dec 2012 23:13:04
Original commit files touched by this commit  1.1_1
Revision:309700
anders search for other commits by this committer
Separate entries for Puppet 2.6 and 2.7.
30 Dec 2012 20:10:42
Original commit files touched by this commit  1.1_1
Revision:309688
cs search for other commits by this committer
Add OTRS vulnerabilities
29 Dec 2012 19:53:47
Original commit files touched by this commit  1.1_1
Revision:309629
rea search for other commits by this committer
VuXML entries for Tomcat: split into three distinct ones

They affect different Tomcat versions from 7.x branch, so don't let
users of VuXML be fooled on the affected software for each vulnerability.

Feature safe:	yes
28 Dec 2012 18:17:22
Original commit files touched by this commit  1.1_1
Revision:309576
rea search for other commits by this committer
VuXML: add entry for DoS in Squid's cachemgr.cgi

Feature safe:	yes
Submitted by:	Thomas-Martin Seck <tmseck@web.de>
18 Dec 2012 16:34:14
Original commit files touched by this commit  1.1_1
Revision:309196
bdrewery search for other commits by this committer
Remove invalid entry
18 Dec 2012 16:28:57
Original commit files touched by this commit  1.1_1
Revision:309195
dinoex search for other commits by this committer
- add entry for opera 12.11
14 Dec 2012 09:09:16
Original commit files touched by this commit  1.1_1
Revision:308891
delphij search for other commits by this committer
Fix typo.

Noticed by:	mandree
14 Dec 2012 03:51:08
Original commit files touched by this commit  1.1_1
Revision:308880
jgh search for other commits by this committer
- add url block in references for 1657a3e6-4585-11e2-a396-10bf48230856
14 Dec 2012 00:41:42
Original commit files touched by this commit  1.1_1
Revision:308874
delphij search for other commits by this committer
Update linux-f10-flashpulgin11 to 11.2r202.258 to address multiple
vulnerabilities that could cause a crash and potentially allow an
attacker to take control of the affected system.

Submitted by:	Tsurutani Naoki <turutani scphys kyoto-u ac jp>
12 Dec 2012 11:33:17
Original commit files touched by this commit  1.1_1
Revision:308757
rene search for other commits by this committer
Document vulnerabilities in www/chromium < 23.0.1271.97

Obtained
from:	http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
05 Dec 2012 23:52:36
Original commit files touched by this commit  1.1_1
Revision:308355
zi search for other commits by this committer
- Fix recent vulnerability entry for www/tomcat[67]

Reported by:	Victor Balada Diaz <victor@bsdes.net>
Feature safe:	yes
05 Dec 2012 18:47:24
Original commit files touched by this commit  1.1_1
Revision:308343
zi search for other commits by this committer
- Document recent vulnerabilities in www/tomcat6 and www/tomcat7

Requested by:	Victor Balada Diaz <victor@bsdes.net>
Feature safe:	yes
05 Dec 2012 07:46:03
Original commit files touched by this commit  1.1_1
Revision:308317
erwin search for other commits by this committer
Update to the latest patch level from ISC:

  BIND 9 nameservers using the DNS64 IPv6 transition mechanism are
  vulnerable to a software defect that allows a crafted query to
  crash the server with a REQUIRE assertion failure.  Remote
  exploitation of this defect can be achieved without extensive
  effort, resulting in a denial-of-service (DoS) vector against
  affected servers.

Security:	2892a8e2-3d68-11e2-8e01-0800273fe665
		CVE-2012-5688
Feature safe:	yes
03 Dec 2012 22:49:43
Original commit files touched by this commit  1.1_1
Revision:308178
mandree search for other commits by this committer
Add URL for recent bogofilter heap vuln', CVE-2012-5468, aka. vuln vid=
f524d8e0-3d83-11e2-807a-080027ef73ec

Feature safe: yes
03 Dec 2012 20:16:21
Original commit files touched by this commit  1.1_1
Revision:308171
mandree search for other commits by this committer
Update bogofilter to new upstream release 1.2.3.
Security update to fix a heap corruption bug with invalid base64 input,
reported and fixed by Julius Plenz, FU Berlin, Germany.

Feature safe:   yes
Security:       CVE-2012-5468
Security:       f524d8e0-3d83-11e2-807a-080027ef73ec
30 Nov 2012 09:13:32
Original commit files touched by this commit  1.1_1
Revision:308000
rene search for other commits by this committer
Document vulnerabilities in www/chromium < 23.0.1271.95

Obtained
from:	http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
Feature safe:	yes
29 Nov 2012 20:33:20
Original commit files touched by this commit  1.1_1
Revision:307978
ohauer search for other commits by this committer
www/yahoo-ui
 - fix CVE-2012-5881

security/vuxml
 - adjust version (we have only 2.8.2 in the tree)

Feature safe: yes

Approved by:	glarkin (maintainer) explicit
28 Nov 2012 14:37:24
Original commit files touched by this commit  1.1_1
Revision:307907
wxs search for other commits by this committer
Fix date in yahoo-ui entry.

Noticed by:	dvl@
Feature safe:	yes
27 Nov 2012 20:09:35
Original commit files touched by this commit  1.1_1
Revision:307861
ohauer search for other commits by this committer
- document www/yahoo-ui security issue and mark port forbidden [1]
  pet portlint (maintainer is already notified)

- adjust CVE entries for bugzilla (CVE-2012-5475 was rejected) [2]

Feature safe: yes

Security:	CVE-2012-5881 [1][2]
		CVE-2012-5882 [1][2]
		CVE-2012-5883 [2]

Approved by:	glarkin (implicit) [1]
27 Nov 2012 10:02:25
Original commit files touched by this commit  1.1_1
Revision:307828
rene search for other commits by this committer
Describe new vulnerabilities in www/chromium < 23.0.1271.91

Obtained
from:	http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
Feature safe:	yes
25 Nov 2012 15:42:23
Original commit files touched by this commit  1.1_1
Revision:307747
flo search for other commits by this committer
- Update backports patch to 20121114
- Bump PORTREVISION

Changes:
- CVE-2006-7243
PHP before 5.3.4 accepts the \0 character in a pathname, which might allow
context-dependent attackers to bypass intended access restrictions by placing a
safe file extension after this character, as demonstrated by .php\0.jpg at the
end of the argument to the file_exists function

Secuity 3761df02-0f9c-11e0-becc-0022156e8794 fixed by check in fopen functions
for strlen(filename) != filename_len

- CVE-2012-4388
The sapi_header_op function in main/SAPI.c does not properly determine a pointer
(Only the first 15 lines of the commit message are shown above View all of this commit message)
25 Nov 2012 04:02:29
Original commit files touched by this commit  1.1_1
Revision:307733
wxs search for other commits by this committer
Add entries for the following advisories:

FreeBSD-SA-12:08.linux
FreeBSD-SA-12:07.hostapd
FreeBSD-SA-12:06.bind

Feature safe:	yes
22 Nov 2012 20:27:45
Original commit files touched by this commit  1.1_1
Revision:307666
dinoex search for other commits by this committer
- opera -- execution of arbitrary code
Feature safe: yes
21 Nov 2012 14:35:31
Original commit files touched by this commit  1.1_1
Revision:307616
mm search for other commits by this committer
Document new vulnerability in www/lighttpd 1.4.31

Feature safe:	yes
20 Nov 2012 23:01:15
Original commit files touched by this commit  1.1_1
Revision:307606
flo search for other commits by this committer
- Update firefox and thunderbird to 17.0
- Update seamonkey to 2.14
- Update ESR ports and libxul to 10.0.11
- support more h264 codecs when using GSTREAMER with YouTube
- Unbreak firefox-esr, thunderbird-esr and libxul on head >= 1000024 [1]
- Buildsystem is not python 3 aware, use python up to 2.7 [2]

PR:		ports/173679 [1]
Submitted by:	swills [1], demon [2]
In collaboration with:	Jan Beich <jbeich@tormail.org>
Security:	d23119df-335d-11e2-b64c-c8600054b392
Approved by:	portmgr (beat)
Feature safe:	yes
18 Nov 2012 12:51:26
Original commit files touched by this commit  1.1_1
Revision:307535
jase search for other commits by this committer
- Fix copy and paste error in latest weechat entry
  (81826d12-317a-11e2-9186-406186f3d89d)

Feature safe:	yes
18 Nov 2012 12:46:40
Original commit files touched by this commit  1.1_1
Revision:307534
jase search for other commits by this committer
- Document new vulnerability in irc/weechat and irc/weechat-devel

Feature safe:	yes
14 Nov 2012 19:29:42
Original commit files touched by this commit  1.1_1
Revision:307425
ohauer search for other commits by this committer
- bugzilla security updates to version(s)
  3.6.11, 4.0.8, 4.2.4

Summary
=======

The following security issues have been discovered in Bugzilla:

* Confidential product and component names can be disclosed to
  unauthorized users if they are used to control the visibility of
  a custom field.

* When calling the 'User.get' WebService method with a 'groups'
  argument, it is possible to check if the given group names exist
  or not.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
13 Nov 2012 18:17:13
Original commit files touched by this commit  1.1_1
Revision:307387
jase search for other commits by this committer
- Update recent weechat entry (e02c572f-2af0-11e2-bb44-003067b2972c)

- Document assigned CVE Identifier
- Document workaround for vulnerable versions

Feature safe:	yes
12 Nov 2012 21:47:27
Original commit files touched by this commit  1.1_1
Revision:307348
rene search for other commits by this committer
Document vulnerabilities in two typo3 components.

Obtained
from:	http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-005/
Feature safe:	yes
12 Nov 2012 13:07:31
Original commit files touched by this commit  1.1_1
Revision:307335
madpilot search for other commits by this committer
Fix typo.

Feature safe:	yes
12 Nov 2012 13:04:37
Original commit files touched by this commit  1.1_1
Revision:307334
madpilot search for other commits by this committer
- Update to 2.7.1
- Convert to new options framework
- Document US-CERT VU#268267
- Trim Makefile headers

PR:		ports/173226
Submitted by:	Hirohisa Yamaguchi <umq@ueo.co.jp> (maintainer)
Feature safe:	yes
10 Nov 2012 15:17:31
Original commit files touched by this commit  1.1_1
Revision:307286
swills search for other commits by this committer
- Improve latest ruby entry slightly

Feature safe:	yes
10 Nov 2012 14:45:55
Original commit files touched by this commit  1.1_1
Revision:307282
jase search for other commits by this committer
- Modify recent e02c572f-2af0-11e2-bb44-003067b2972c entry

- Add constraints to vulnerable versions
- Add additional references
- Improve topic
- Correct description

Feature safe:	yes
10 Nov 2012 04:55:47
Original commit files touched by this commit  1.1_1
Revision:307263
eadler search for other commits by this committer
Apply an upstream patch that fixes a security hole
when receiving a special colored message.

The maintainer was contacted but due to the nature of
the issue apply the patch ASAP.

Approved by:	secteam-ports (swills)
Security:	e02c572f-2af0-11e2-bb44-003067b2972c
Feature safe:	yes
10 Nov 2012 04:00:41
Original commit files touched by this commit  1.1_1
Revision:307261
swills search for other commits by this committer
- Update lang/ruby19 to 1.9.3p327
- Document security issue in earlier versions

Security:	5e647ca3-2aea-11e2-b745-001fd0af1a4c
Feature safe:	yes
09 Nov 2012 23:02:15
Original commit files touched by this commit  1.1_1
Revision:307259
jgh search for other commits by this committer
- clarification that ASF reported issue for:
 - 152e4c7e-2a2e-11e2-99c7-00a0d181e71d
 - 4ca26574-2a2c-11e2-99c7-00a0d181e71d

Feature safe:	yes
09 Nov 2012 19:09:32
Original commit files touched by this commit  1.1_1
Revision:307247
jgh search for other commits by this committer
- document tomcat vulnerabilities

Feature safe:	yes
09 Nov 2012 04:31:14
Original commit files touched by this commit  1.1_1
Revision:307221
eadler search for other commits by this committer
Update latest version and document security issues

PR:	ports/173487
Submitted by:	 Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
Security:	4b8b748e-2a24-11e2-bb44-003067b2972c
Feature safe:	yes

Number of commits found: 3401 (showing only 100 on this page)

[First Page]  «  1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
mcollectiveJul 21
qt4-imageformats*Jul 21
qt5-gui*Jul 21
phpmyadmin*Jul 20
apache24Jul 19
chromiumJul 16
chromiumJul 16
kdelibs4Jul 16
postfixadminJul 13
dbusJul 03
mencoderJun 28
mplayerJun 28
lzo2Jun 26
phpmyadmin*Jun 24
gnupgJun 23

7 vulnerabilities affecting 9 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24467
Broken 194
Deprecated 714
Ignore 527
Forbidden 15
Restricted 263
No CDROM 102
Vulnerable 22
Expired 0
Set to expire 701
Interactive 13
new 24 hours 2
new 48 hours3
new 7 days22
new fortnight53
new month109

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.