FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  375358
Date:      2014-12-23
Time:      21:24:55Z
Committer: rea

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
0bf376b7-cc6b-11e2-a424-14dae938ec40net/openafs -- buffer overflow

Nickolai Zeldovich reports:

An attacker with the ability to manipulate AFS directory ACLs may crash the fileserver hosting that volume. In addition, once a corrupt ACL is placed on a fileserver, its existence may crash client utilities manipulating ACLs on that server.


Discovery 2013-02-27
Entry 2013-06-03
openafs
lt 1.6.2.*

http://www.openafs.org/pages/security/OPENAFS-SA-2013-001.txt
CVE-2013-1794
c4d412c8-f4d1-11e2-b86c-000c295229d5openafs -- single-DES cell-wide key brute force vulnerability

OpenAFS Project reports:

The small size of the DES key space permits an attacker to brute force a cell's service key and then forge traffic from any user within the cell. The key space search can be performed in under 1 day at a cost of around $100 using publicly available services.


Discovery 2013-07-24
Entry 2013-07-25
openafs
lt 1.6.5

CVE-2013-4134
http://openafs.org/pages/security/OPENAFS-SA-2013-003.txt
http://openafs.org/pages/security/how-to-rekey.txt
http://openafs.org/pages/security/install-rxkad-k5-1.6.txt