Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
1.1_5 10 Jun 2022 09:58:15 |
Li-Wen Hsu (lwhsu) |
security/vuxml: Fix version range for 49adfbe5-e7d1-11ec-8fbd-d4c9ef517024
PR: 264589
Reported by: Jordan Ostreff <jordan@ostreff.info> |
1.1_5 09 Jun 2022 20:26:21 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 102.0.5005.115
Obtained
from: https://chromereleases.googleblog.com/2022/06/stable-channel-update-for-desktop.html |
1.1_5 09 Jun 2022 09:05:02 |
Bernard Spil (brnrd) |
security/vuxml: Document Apache httpd vulnerabilities |
1.1_5 07 Jun 2022 12:36:39 |
Dmitri Goutnik (dmgk) |
security/vuxml: Document Go vulnerabilities |
1.1_5 05 Jun 2022 15:22:52 |
Matthias Andree (mandree) |
security/vuxml: add e2fsprogs CVE-2022-1304 < 1.46.5_1
Security: CVE-2022-1304
Security: a58f3fde-e4e0-11ec-8340-2d623369b8b5 |
1.1_5 04 Jun 2022 19:47:56 |
Matthias Fechner (mfechner) |
security/vuxml: Document gitlab vulnerabilities |
1.1_5 03 Jun 2022 17:32:46 |
Craig Leres (leres) |
security/vuxml: Mark zeek < 4.0.7 as vulnerable as per:
https://github.com/zeek/zeek/releases/tag/v4.0.7
- Fix potential hang in the DNS analyzer when receiving a
specially-crafted packet. Due to the possibility of this happening
with packets received from the network, this is a potential DoS
vulnerability.
Reported by: Tim Wojtulewicz |
1.1_5 24 May 2022 19:48:26 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 102.0.5005.61
Obtained
from: https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html |
1.1_5 23 May 2022 20:28:22 |
Bernard Spil (brnrd) |
security/vuxml: Add CVE numbers to latest MySQL vulnerabilities |
1.1_5 23 May 2022 20:17:17 |
Bernard Spil (brnrd) |
security/vuxml: Document MariaDB vulnerabilities |
1.1_5 23 May 2022 10:54:53 |
Yasuhiro Kimura (yasu) |
security/vuxml: Update and fix b2407db1-d79f-11ec-a15f-589cfc0f81b0
* security/clamav-lts is also vulnerable with them
* Fix range of security/clamav |
1.1_5 19 May 2022 18:28:37 |
Florian Smeets (flo) |
security/vuxml: Document ClamAV vulnerabilities |
1.1_5 15 May 2022 12:31:43 |
Dmitri Goutnik (dmgk) |
security/vuxml: Document Go vulnerability
While here, fix package names for the previous Go entry (we also have
go117 now). |
1.1_5 13 May 2022 07:28:17 |
Bernard Spil (brnrd) |
security/vuxml: Document curl vulnerabilities |
1.1_5 12 May 2022 13:40:16 |
Palle Girgensohn (girgen) |
security/vuxml: postgresql??-server vuln CVE-2022-1552 |
1.1_5 10 May 2022 19:45:29 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 101.0.4951.64
Obtained
from: https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html |
1.1_5 06 May 2022 19:34:43 |
Matthew Seaman (matthew) |
security/vuxml: add sysutils/rsyslog8 heap buffer overflow
https://github.com/rsyslog/rsyslog/security/advisories/GHSA-ggw7-xr6h-mmr8 |
1.1_5 05 May 2022 13:04:25 |
Dmitri Goutnik (dmgk) |
security/vuxml: Document devel/gogs vulnerability |
1.1_5 05 May 2022 12:22:22 |
Dmitri Goutnik (dmgk) Author: Stefan Bethke |
security/vuxml: Document www/gitea vulnerability |
1.1_5 05 May 2022 11:50:45 |
Bernard Spil (brnrd) |
security/vuxml: Mark openssl-quictls vulnerable |
1.1_5 04 May 2022 07:22:06 |
Bernard Spil (brnrd) |
security/openssl: Security update to 1.1.1o
Security: fceb2b08-cb76-11ec-a06f-d4c9ef517024
MFH: 2022Q2 |
1.1_5 03 May 2022 10:12:53 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document cross-site-scripting (XSS) vulnerability in RainLoop |
1.1_5 02 May 2022 12:08:16 |
Dmitri Goutnik (dmgk) |
security/vuxml: Document lang/go vulnerabilities |
1.1_5 01 May 2022 02:14:08 |
Yasuhiro Kimura (yasu) |
security/vuxml: Add databases/redis-devel to
cc42db1c-c65f-11ec-ad96-0800270512f4
The port is also vulnerable with it. |
1.1_5 30 Apr 2022 16:01:41 |
Po-Chuan Hsieh (sunpoet) |
security/vuxml: Document rails vulnerability |
1.1_5 29 Apr 2022 19:35:59 |
Jimmy Olgeni (olgeni) |
security/vuxml: document vulnerability in databases/hiredis
PR: 263648
Reported by: Sascha Biberhofer |
1.1_5 28 Apr 2022 08:52:53 |
Bernard Spil (brnrd) |
security/vuxml: Document cURL 7.82 vulns |
1.1_5 28 Apr 2022 07:45:56 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 101.0.4951.41
Obtained
from: https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_26.html |
1.1_5 28 Apr 2022 02:18:21 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document multiple vulnerabilities in redis |
1.1_5 26 Apr 2022 16:21:10 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document buffer overrun vulnerability in japanese/eb |
1.1_5 26 Apr 2022 10:01:09 |
Yasuhiro Kimura (yasu) |
security/vuxml: Fix range of ruby27 in 06ed6a49-bad4-11ec-9cfe-0800270512f4
Reported by: John Hein |
1.1_5 21 Apr 2022 22:43:25 |
Craig Leres (leres) |
security/vuxml: Mark zeek < 4.0.6 as vulnerable as per:
https://github.com/zeek/zeek/releases/tag/v4.0.6
- Fix potential unbounded state growth in the FTP analyzer when
receiving a specially-crafted stream of commands. This may lead
to a buffer overflow and cause Zeek to crash. Due to the possibility
of this happening with packets received from the network, this
is a potential DoS vulnerabilty.
Reported by: Tim Wojtulewicz |
1.1_5 19 Apr 2022 14:56:44 |
Fernando ApesteguÃa (fernape) |
security/vuxml: Add gzip's CVE-2022-1271
Arbitrary file write vulnerability.
Security: CVE-2022-1271 |
1.1_5 17 Apr 2022 12:09:54 |
Bernard Spil (brnrd) |
www/nextcloud-calendar: Document command injection vuln |
1.1_5 17 Apr 2022 04:07:49 |
Yasuhiro Kimura (yasu) |
security/vuxml: Add lang/ruby32 to the entries of recent Ruby vulnerabilities
Both 06ed6a49-bad4-11ec-9cfe-0800270512f4 and
f22144d7-bad1-11ec-9cfe-0800270512f4 affect lang/ruby32. So add it to
them. |
1.1_5 16 Apr 2022 11:21:53 |
Bernard Spil (brnrd) |
security/vuxml: Add 2022-04 MySQL vulnerabilities |
1.1_5 15 Apr 2022 19:47:03 |
Rene Ladan (rene) |
security/vuxml: pet 'make validate'
This commit contains space/tab changes only. |
1.1_5 15 Apr 2022 18:59:24 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 100.0.4896.127
Obtained
from: https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_14.html |
1.1_5 15 Apr 2022 17:06:04 |
Fernando ApesteguÃa (fernape) Author: Derek Schrock |
security/vuxml: Add CVE-2022-1328 mail/mutt < 2.2.3
ChangeLog: https://gitlab.com/muttmua/mutt/-/issues/404
PR: 263247
Reported by: dereks@lifeofadishwasher.com |
1.1_5 14 Apr 2022 23:27:44 |
Guido Falsi (madpilot) |
security/vuxml: Report new asterisk vulnerabilities. |
1.1_5 13 Apr 2022 18:55:47 |
Guido Falsi (madpilot) |
security/vuxml: Document new PHP composer vulnerability |
1.1_5 13 Apr 2022 13:05:36 |
Lev A. Serebryakov (lev) |
security/vuxml: Document several subversion vulnerabilities |
1.1_5 13 Apr 2022 03:04:10 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document buffer overrun vulnerability in Ruby |
1.1_5 13 Apr 2022 03:04:08 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document double free vulnerability in Ruby |
1.1_5 12 Apr 2022 10:32:39 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 100.0.4896.88
Obtained
from: https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_11.html |
1.1_5 12 Apr 2022 00:56:59 |
Wen Heping (wen) |
security/vuxml: Document Django multiple vulnerabilities |
1.1_5 07 Apr 2022 03:05:55 |
Philip Paeps (philip) |
security/vuxml: add FreeBSD SA-22:08.zlib |
1.1_5 07 Apr 2022 03:05:55 |
Philip Paeps (philip) |
security/vuxml: add FreeBSD SA-22:07.wifi_meshid |
1.1_5 07 Apr 2022 03:05:55 |
Philip Paeps (philip) |
security/vuxml: add FreeBSD SA-22:06.ioctl |
1.1_5 07 Apr 2022 03:05:55 |
Philip Paeps (philip) |
security/vuxml: add FreeBSD SA-22:05.bhyve |
1.1_5 07 Apr 2022 03:05:54 |
Philip Paeps (philip) |
security/vuxml: add FreeBSD SA-22:04.netmap |
1.1_5 06 Apr 2022 10:37:56 |
Fernando ApesteguÃa (fernape) |
dns/powerdns*: document CVE-2022-27227
Related commits:
79872ab6096b3bfc3edbd2ec845698316260bd0d
56b664aa3d2cd0e8dbf48d26d0839d0b1aa5998f
PR: 262879
Reported by: Ralf van der Enden <tremere@cainites.net> (maintainer) |
1.1_5 05 Apr 2022 10:28:45 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 100.0.4896.75
Obtained
from: https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop.html |
1.1_5 04 Apr 2022 15:00:13 |
Matthias Fechner (mfechner) |
security/vuxml: Document gitlab vulnerabilities |
1.1_5 04 Apr 2022 12:11:25 |
Wen Heping (wen) |
security/vuxml: Document mediawiki multiple vulnerabilities |
1.1_5 03 Apr 2022 11:15:57 |
Matthias Andree (mandree) |
security/vuxml: add dnsmasq DHCPv6 vuln <= 2.86
Security: 3f321a5a-b33b-11ec-80c2-1bb2c6a00592
Security: CVE-2022-0934 |
1.1_5 02 Apr 2022 15:40:16 |
Juraj Lutter (otis) Author: Boris Korzun |
security/vuxml: Document nodejs vulnerabilities
PR: 261789 |
1.1_5 29 Mar 2022 20:59:57 |
Florian Smeets (flo) Author: fsbruva@yahoo.com |
security/vuxml: Add www/gitea vulnerabilities
PR: 262898 |
1.1_5 29 Mar 2022 20:44:56 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 100.0.4896.60
Obtained
from: https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_29.html |
1.1_5 25 Mar 2022 19:13:27 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 99.0.4844.84
Obtained
from: https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_25.html |
1.1_5 25 Mar 2022 07:06:39 |
Tobias C. Berner (tcberner) |
security/vuxml: Document graphics/p5-Image-ExifTool vulnerability
Security: CVE-2021-22204
PR: 260590 |
1.1_5 22 Mar 2022 17:40:36 |
Sofian Brabez (sbz) |
security/vuxml: Document net/tcpslice CVE-2021-41043 vulnerability |
1.1_5 19 Mar 2022 22:34:44 |
Guangyuan Yang (ygy) |
security/vuxml: Document lang/go vulnerabilities |
1.1_5 17 Mar 2022 22:27:50 |
Matthias Andree (mandree) |
security/vuxml: add OpenVPN < 2.5.6 deferred auth plugin vuln
Security: CVE-2022-0547 |
1.1_5 16 Mar 2022 20:19:48 |
Jochen Neumeister (joneum) |
security/vuxml: Add entry for wordpress |
1.1_5 16 Mar 2022 19:59:58 |
Bernard Spil (brnrd) |
security/vuxml: Weechat vulnerability |
1.1_5 16 Mar 2022 19:18:56 |
Bernard Spil (brnrd) |
security/vuxml: Add LibreSSL and QuicTLS to latest OpenSSL vuln |
1.1_5 16 Mar 2022 08:28:48 |
Philip Paeps (philip) |
security/vuxml: remove duplicate gpli entries
These entries, introduced in 8d55457d6e333a68173be8f6ec18d1f6bb6644cf,
were already added to vuxml in 6fdeda4e86c4109ef9be89a0a21d2a15baae3b5b.
This fixes "make validate"
PR: 255948
Pointy hat to: nc |
1.1_5 16 Mar 2022 08:04:46 |
Philip Paeps (philip) |
security/vuxml: add OpenSSL CVE-2022-0778
Also FreeBSD SA-22:03.openssl. |
1.1_5 16 Mar 2022 07:42:27 |
Philip Paeps (philip) |
security/vuxml: add FreeBSD SA-22:02.wifi |
1.1_5 15 Mar 2022 22:45:57 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 99.0.4844.74
Obtained
from: https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_15.html |
1.1_5 15 Mar 2022 14:47:19 |
Bernard Spil (brnrd) |
security/vuxml: Document Apache 2.4.52 vulns |
1.1_5 10 Mar 2022 12:14:19 |
Dmitry Marakasov (amdmi3) |
security/vuxml: document CVE-2021-43518 for games/teeworlds |
1.1_5 10 Mar 2022 12:10:24 |
Dmitry Marakasov (amdmi3) |
security/vuxml: fix syntax broken in 8d55457
PR: 255948 |
1.1_5 09 Mar 2022 10:05:27 |
Matthias Fechner (mfechner) |
security/vuxml: Document gitlab vulnerabilities |
1.1_5 07 Mar 2022 17:23:07 |
Neel Chauhan (nc) Author: Mathias Monnerville |
security/vuxml: add CVE entries related to www/glpi
PR: 255948 |
1.1_5 05 Mar 2022 09:37:17 |
Guido Falsi (madpilot) |
security/vuxml: Report new asterisk vulnerabilities. |
1.1_5 02 Mar 2022 09:30:34 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 99.0.4844.51
Obtained
from: https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop.html |
1.1_5 28 Feb 2022 12:29:37 |
Hajimu UMEMOTO (ume) |
security/vuxml: Document cyrus-sasl -- Fix off by one error |
1.1_5 27 Feb 2022 16:43:37 |
Florian Smeets (flo) |
security/vuxml: Document TYPO3 vulnerabilities
PR: 262196, 262197 |
1.1_5 26 Feb 2022 14:58:47 |
Thomas Zander (riggs) |
security/vuxml: Document grafana vulnerabilities
PR: 261892
Reported by: Boris Korzun <drtr0jan@yandex.ru>
Security: CVE-2022-21702
CVE-2022-21703
CVE-2022-21713 |
1.1_5 25 Feb 2022 01:55:24 |
Jason E. Hale (jhale) |
security/vuxml: Document CVE-2021-40530 for security/cryptopp |
1.1_5 24 Feb 2022 21:05:00 |
Christian Weisgerber (naddy) |
security/vuxml: document CVE-2021-0561 for audio/flac |
1.1_5 23 Feb 2022 02:34:42 |
Hajimu UMEMOTO (ume) |
security/vuxml: cyrus-sasl -- Escape password for SQL insert/update commands |
1.1_5 22 Feb 2022 14:21:52 |
Jan Beich (jbeich) |
security/vuxml: add CVE for seatd 0.6.[0-3] entry |
1.1_5 22 Feb 2022 13:46:41 |
Dmitry Marakasov (amdmi3) |
security/vuxml: py-tuf vulnerability |
1.1_5 21 Feb 2022 22:59:58 |
Jan Beich (jbeich) |
security/vuxml: mark seatd 0.6.[0-3] as vulnerable |
1.1_5 21 Feb 2022 00:25:59 |
Adriaan de Groot (adridg) |
security/vuxml: Qt5 vulnerability |
1.1_5 20 Feb 2022 13:18:29 |
Jason E. Hale (jhale) |
security/vuxml: Document CVE-2021-3756 for audio/libmysofa |
1.1_5 18 Feb 2022 09:36:07 |
Bernard Spil (brnrd) |
security/vuxml: MariaDB vulnerabilities |
1.1_5 18 Feb 2022 06:57:00 |
Guangyuan Yang (ygy) |
security/vuxml: Document lang/go vulnerabilities |
1.1_5 15 Feb 2022 15:35:03 |
Rene Ladan (rene) |
security/vuxml: add www/chromium < 98.0.4758.102
Obtained
from: https://chromereleases.googleblog.com/2022/02/stable-channel-update-for-desktop_14.html |
1.1_5 15 Feb 2022 10:14:55 |
Bernard Spil (brnrd) |
security/vuxml: Add additional vuln for MariaDB |
1.1_5 14 Feb 2022 05:19:49 |
Koichiro Iwao (meta) |
security/vuxml: Fix affected version declaration
and add missing PORTEPOCH.
PR: 261856 |
1.1_5 13 Feb 2022 09:14:32 |
Kai Knoblich (kai) Author: Sascha Biberhofer |
security/vuxml: Document devel/py-twisted vulnerabilities
PR: 261791 |
1.1_5 12 Feb 2022 18:34:20 |
Yasuhiro Kimura (yasu) |
security/vuxml: Document arbitrary command execution vulnerability in Zsh |
1.1_5 10 Feb 2022 16:00:36 |
Li-Wen Hsu (lwhsu) |
security/vuxml: Document Jenkins Security Advisory 2022-02-09
Sponsored by: The FreeBSD Foundation |
1.1_5 10 Feb 2022 07:58:45 |
Bernard Spil (brnrd) |
security/vuxml: Document MariaDB vulnerabilities |
1.1_5 09 Feb 2022 02:32:47 |
Jung-uk Kim (jkim) |
security/vuxml: Add missing PORTEPOCH for x11/libX11
PR: 261804 |
1.1_5 08 Feb 2022 04:17:18 |
Koichiro Iwao (meta) |
security/vuxml: Document xrdp vulnerability
Security: fc2a9541-8893-11ec-9d01-80ee73419af3
Security: CVE-2022-23613
Sponsored by: HAW International |