FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  374826
Date:      2014-12-16
Time:      22:06:31Z
Committer: cs

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
59b68b1e-9c78-11e1-b5e0-000c299b62e1php -- multiple vulnerabilities

The PHP Development Team reports:

The release of PHP 5.4.13 and 5.4.3 complete a fix for the vulnerability in CGI-based setups as originally described in CVE-2012-1823. (CVE-2012-2311)

Note: mod_php and php-fpm are not vulnerable to this attack.

PHP 5.4.3 fixes a buffer overflow vulnerability in the apache_request_headers() (CVE-2012-2329).


Discovery 2012-05-08
Entry 2012-05-12
php5
gt 5.4 lt 5.4.3

lt 5.3.13

php53
lt 5.3.13

php52
lt 5.2.17_9

CVE-2012-1823
CVE-2012-2311
CVE-2012-2329
60de13d5-95f0-11e1-806a-001143cd36d8php -- vulnerability in certain CGI-based setups

php development team reports:

Security Enhancements and Fixes in PHP 5.3.12:

  • Initial fix for cgi-bin ?-s cmdarg parse issue (CVE-2012-1823)

Discovery 2012-05-03
Entry 2012-05-05
php5
gt 5.4 lt 5.4.2

lt 5.3.12

php53
lt 5.3.12

php4
lt 4.4.10

php52
lt 5.2.17_8

CVE-2012-1823
60de13d5-95f0-11e1-806a-001143cd36d8php -- vulnerability in certain CGI-based setups

php development team reports:

Security Enhancements and Fixes in PHP 5.3.12:

  • Initial fix for cgi-bin ?-s cmdarg parse issue (CVE-2012-1823)

Discovery 2012-05-03
Entry 2012-05-05
php5
gt 5.4 lt 5.4.2

lt 5.3.12

php53
lt 5.3.12

php4
lt 4.4.10

php52
lt 5.2.17_8

CVE-2012-1823
59b68b1e-9c78-11e1-b5e0-000c299b62e1php -- multiple vulnerabilities

The PHP Development Team reports:

The release of PHP 5.4.13 and 5.4.3 complete a fix for the vulnerability in CGI-based setups as originally described in CVE-2012-1823. (CVE-2012-2311)

Note: mod_php and php-fpm are not vulnerable to this attack.

PHP 5.4.3 fixes a buffer overflow vulnerability in the apache_request_headers() (CVE-2012-2329).


Discovery 2012-05-08
Entry 2012-05-12
php5
gt 5.4 lt 5.4.3

lt 5.3.13

php53
lt 5.3.13

php52
lt 5.2.17_9

CVE-2012-1823
CVE-2012-2311
CVE-2012-2329