FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  374986
Date:      2014-12-20
Time:      00:21:30Z
Committer: delphij

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
012b495c-9d51-11de-8d20-001bd3385381cyrus-imapd -- Potential buffer overflow in Sieve

The Cyrus IMAP Server ChangeLog states:

Fixed CERT VU#336053 - Potential buffer overflow in Sieve.


Discovery 2009-09-02
Entry 2009-09-09
Modified 2009-09-14
cyrus-imapd
gt 2.2.0 lt 2.2.13_6

gt 2.3.0 lt 2.3.14_2

CVE-2009-2632
36296
http://www.kb.cert.org/vuls/id/336053
http://www.debian.org/security/2009/dsa-1881
b2d248ad-88f6-11d9-aa18-0001020eed82cyrus-imapd -- multiple buffer overflow vulnerabilities

The Cyrus IMAP Server ChangeLog states:

  • Fix possible single byte overflow in mailbox handling code.
  • Fix possible single byte overflows in the imapd annotate extension.
  • Fix stack buffer overflows in fetchnews (exploitable by peer news server), backend (exploitable by admin), and in imapd (exploitable by users though only on platforms where a filename may be larger than a mailbox name).

The 2.1.X series are reportedly only affected by the second issue.

These issues may lead to execution of arbitrary code with the permissions of the user running the Cyrus IMAP Server.


Discovery 2005-02-14
Entry 2005-02-27
Modified 2005-04-05
cyrus-imapd
lt 2.1.18

gt 2.2.* lt 2.2.11

12636
CVE-2005-0546
http://asg.web.cmu.edu/cyrus/download/imapd/changes.html
012b495c-9d51-11de-8d20-001bd3385381cyrus-imapd -- Potential buffer overflow in Sieve

The Cyrus IMAP Server ChangeLog states:

Fixed CERT VU#336053 - Potential buffer overflow in Sieve.


Discovery 2009-09-02
Entry 2009-09-09
Modified 2009-09-14
cyrus-imapd
gt 2.2.0 lt 2.2.13_6

gt 2.3.0 lt 2.3.14_2

CVE-2009-2632
36296
http://www.kb.cert.org/vuls/id/336053
http://www.debian.org/security/2009/dsa-1881
b2d248ad-88f6-11d9-aa18-0001020eed82cyrus-imapd -- multiple buffer overflow vulnerabilities

The Cyrus IMAP Server ChangeLog states:

  • Fix possible single byte overflow in mailbox handling code.
  • Fix possible single byte overflows in the imapd annotate extension.
  • Fix stack buffer overflows in fetchnews (exploitable by peer news server), backend (exploitable by admin), and in imapd (exploitable by users though only on platforms where a filename may be larger than a mailbox name).

The 2.1.X series are reportedly only affected by the second issue.

These issues may lead to execution of arbitrary code with the permissions of the user running the Cyrus IMAP Server.


Discovery 2005-02-14
Entry 2005-02-27
Modified 2005-04-05
cyrus-imapd
lt 2.1.18

gt 2.2.* lt 2.2.11

12636
CVE-2005-0546
http://asg.web.cmu.edu/cyrus/download/imapd/changes.html