FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  373433
Date:      2014-11-25
Time:      21:42:42Z
Committer: naddy

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
1e606080-3293-11da-ac91-020039488e34uim -- privilege escalation vulnerability

The uim developers reports:

Masanari Yamamoto discovered that incorrect use of environment variables in uim. This bug causes privilege escalation if setuid/setgid applications was linked to libuim.

This bug appears in 'immodule for Qt' enabled Qt. (Normal Qt is also safe.) In some distribution, mlterm is also an setuid/setgid application.


Discovery 2005-09-28
Entry 2005-10-01
ja-uim
lt 0.4.9.1

http://lists.freedesktop.org/archives/uim/2005-September/001346.html
1e606080-3293-11da-ac91-020039488e34uim -- privilege escalation vulnerability

The uim developers reports:

Masanari Yamamoto discovered that incorrect use of environment variables in uim. This bug causes privilege escalation if setuid/setgid applications was linked to libuim.

This bug appears in 'immodule for Qt' enabled Qt. (Normal Qt is also safe.) In some distribution, mlterm is also an setuid/setgid application.


Discovery 2005-09-28
Entry 2005-10-01
ja-uim
lt 0.4.9.1

http://lists.freedesktop.org/archives/uim/2005-September/001346.html