FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  371418
Date:      2014-10-24
Time:      01:58:13Z
Committer: zi

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
296ecb59-0f6b-11df-8bab-0019996bc1f7squid -- Denial of Service vulnerability in DNS handling

Squid security advisory 2010:1 reports:

Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted DNS packets.

This problem allows any trusted client or external server who can determine the squid receiving port to perform a short-term denial of service attack on the Squid service.


Discovery 2010-01-14
Entry 2010-02-01
Modified 2010-05-02
squid
ge 2.7.1 lt 2.7.7_3

ge 3.0.1 lt 3.0.23

ge 3.1.0.1 lt 3.1.0.15_2

CVE-2010-0308
http://www.squid-cache.org/Advisories/SQUID-2010_1.txt
296ecb59-0f6b-11df-8bab-0019996bc1f7squid -- Denial of Service vulnerability in DNS handling

Squid security advisory 2010:1 reports:

Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted DNS packets.

This problem allows any trusted client or external server who can determine the squid receiving port to perform a short-term denial of service attack on the Squid service.


Discovery 2010-01-14
Entry 2010-02-01
Modified 2010-05-02
squid
ge 2.7.1 lt 2.7.7_3

ge 3.0.1 lt 3.0.23

ge 3.1.0.1 lt 3.1.0.15_2

CVE-2010-0308
http://www.squid-cache.org/Advisories/SQUID-2010_1.txt
e4dac715-c818-11df-a92c-0015587e2cc1squid -- Denial of service vulnerability in request handling

Squid security advisory 2010:3 reports:

Due to an internal error in string handling Squid is vulnerable to a denial of service attack when processing specially crafted requests.

This problem allows any trusted client to perform a denial of service attack on the Squid service.


Discovery 2010-08-30
Entry 2010-09-24
squid
ge 3.0.1 lt 3.0.25_3

ge 3.1.0.1 lt 3.1.8

CVE-2010-3072
http://www.squid-cache.org/Advisories/SQUID-2010_3.txt
e1156e90-7ad6-11de-b26a-0048543d60cesquid -- several remote denial of service vulnerabilities

Squid security advisory 2009:2 reports:

Due to incorrect buffer limits and related bound checks Squid is vulnerable to a denial of service attack when processing specially crafted requests or responses.

Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted responses.

These problems allow any trusted client or external server to perform a denial of service attack on the Squid service.

Squid-2.x releases are not affected.


Discovery 2009-07-27
Entry 2009-07-27
Modified 2009-08-06
squid
ge 3.0.1 lt 3.0.17

ge 3.1.0.1 lt 3.1.0.12

CVE-2009-2621
CVE-2009-2622
http://www.squid-cache.org/Advisories/SQUID-2009_2.txt
e1156e90-7ad6-11de-b26a-0048543d60cesquid -- several remote denial of service vulnerabilities

Squid security advisory 2009:2 reports:

Due to incorrect buffer limits and related bound checks Squid is vulnerable to a denial of service attack when processing specially crafted requests or responses.

Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted responses.

These problems allow any trusted client or external server to perform a denial of service attack on the Squid service.

Squid-2.x releases are not affected.


Discovery 2009-07-27
Entry 2009-07-27
Modified 2009-08-06
squid
ge 3.0.1 lt 3.0.17

ge 3.1.0.1 lt 3.1.0.12

CVE-2009-2621
CVE-2009-2622
http://www.squid-cache.org/Advisories/SQUID-2009_2.txt
e4dac715-c818-11df-a92c-0015587e2cc1squid -- Denial of service vulnerability in request handling

Squid security advisory 2010:3 reports:

Due to an internal error in string handling Squid is vulnerable to a denial of service attack when processing specially crafted requests.

This problem allows any trusted client to perform a denial of service attack on the Squid service.


Discovery 2010-08-30
Entry 2010-09-24
squid
ge 3.0.1 lt 3.0.25_3

ge 3.1.0.1 lt 3.1.8

CVE-2010-3072
http://www.squid-cache.org/Advisories/SQUID-2010_3.txt