FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  374986
Date:      2014-12-20
Time:      00:21:30Z
Committer: delphij

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
1e8031be-4258-11de-b67a-0030843d3802php -- ini database truncation inside dba_replace() function

securityfocus research reports:

A bug that leads to the emptying of the INI file contents if the database key was not found exists in PHP dba extension in versions 5.2.6, 4.4.9 and earlier.

Function dba_replace() are not filtering strings key and value. There is a possibility for the destruction of the file.


Discovery 2008-11-28
Entry 2009-05-16
Modified 2013-06-16
php4-dba
lt 4.4.9_1

php5-dba
lt 5.2.7

CVE-2008-7068
http://www.securityfocus.com/archive/1/498746/30/0/threaded
http://securityreason.com/achievement_securityalert/58
1e8031be-4258-11de-b67a-0030843d3802php -- ini database truncation inside dba_replace() function

securityfocus research reports:

A bug that leads to the emptying of the INI file contents if the database key was not found exists in PHP dba extension in versions 5.2.6, 4.4.9 and earlier.

Function dba_replace() are not filtering strings key and value. There is a possibility for the destruction of the file.


Discovery 2008-11-28
Entry 2009-05-16
Modified 2013-06-16
php4-dba
lt 4.4.9_1

php5-dba
lt 5.2.7

CVE-2008-7068
http://www.securityfocus.com/archive/1/498746/30/0/threaded
http://securityreason.com/achievement_securityalert/58