FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-05-02 10:37:19 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
255bf44c-d298-11ee-9c27-40b034429ecfdns/c-ares -- malformatted file causes application crash

c-ares project reports:

Reading malformatted /etc/resolv.conf, /etc/nsswitch.conf or the HOSTALIASES file could result in a crash.


Discovery 2024-02-23
Entry 2024-02-23
c-ares
< 1.27.0

CVE-2024-25629
https://github.com/c-ares/c-ares/security/advisories/GHSA-mg26-v6qh-x48q
70ae62b0-16b0-11dc-b803-0016179b2dd5c-ares -- DNS Cache Poisoning Vulnerability

Secunia reports:

The vulnerability is caused due to predictable DNS "Transaction ID" field in DNS queries and can be exploited to poison the DNS cache of an application using the library if a valid ID is guessed.


Discovery 2007-06-08
Entry 2007-06-09
Modified 2010-05-12
c-ares
< 1.4.0

CVE-2007-3152
CVE-2007-3153
http://secunia.com/advisories/25579/
http://cool.haxx.se/cvs.cgi/curl/ares/CHANGES?rev=HEAD&content-type=text/vnd.viewcvs-markup