FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-27 18:04:16 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
1fbd6db1-a4e4-11e5-b864-14dae9d210b8py-amf -- input sanitization errors

oCERT reports:

A specially crafted AMF payload, containing malicious references to XML external entities, can be used to trigger Denial of Service (DoS) conditions or arbitrarily return the contents of files that are accessible with the running application privileges.


Discovery 2015-12-01
Entry 2015-12-17
py27-amf
py32-amf
py33-amf
py34-amf
< 0.8.0

http://www.ocert.org/advisories/ocert-2015-011.html
CVE-2015-8549