FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  374986
Date:      2014-12-20
Time:      00:21:30Z
Committer: delphij

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
66a770b4-e008-11dd-a765-0030843d3802mysql -- empty bit-string literal denial of service

MySQL reports:

The vulnerability is caused due to an error when processing an empty bit-string literal and can be exploited to crash the server via a specially crafted SQL statement.


Discovery 2008-09-11
Entry 2009-01-11
mysql-server
ge 5.0 lt 5.0.66

ge 5.1 lt 5.1.26

ge 6.0 lt 6.0.6

CVE-2008-3963
http://bugs.mysql.com/bug.php?id=35658
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-66.html
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-26.html
http://dev.mysql.com/doc/refman/6.0/en/news-6-0-6.html
http://secunia.com/advisories/31769
738f8f9e-d661-11dd-a765-0030843d3802mysql -- MyISAM table privileges security bypass vulnerability for symlinked paths

MySQL Team reports:

Additional corrections were made for the symlink-related privilege problem originally addressed. The original fix did not correctly handle the data directory pathname if it contained symlinked directories in its path, and the check was made only at table-creation time, not at table-opening time later.


Discovery 2008-07-03
Entry 2008-12-30
mysql-server
ge 4.1 lt 4.1.25

ge 5.0 lt 5.0.75

ge 5.1 lt 5.1.28

ge 6.0 lt 6.0.6

CVE-2008-2079
CVE-2008-4097
CVE-2008-4098
http://bugs.mysql.com/bug.php?id=32167
http://dev.mysql.com/doc/refman/4.1/en/news-4-1-25.html
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-75.html
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-28.html
http://dev.mysql.com/doc/refman/6.0/en/news-6-0-6.html
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480292#25
66a770b4-e008-11dd-a765-0030843d3802mysql -- empty bit-string literal denial of service

MySQL reports:

The vulnerability is caused due to an error when processing an empty bit-string literal and can be exploited to crash the server via a specially crafted SQL statement.


Discovery 2008-09-11
Entry 2009-01-11
mysql-server
ge 5.0 lt 5.0.66

ge 5.1 lt 5.1.26

ge 6.0 lt 6.0.6

CVE-2008-3963
http://bugs.mysql.com/bug.php?id=35658
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-66.html
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-26.html
http://dev.mysql.com/doc/refman/6.0/en/news-6-0-6.html
http://secunia.com/advisories/31769
8c773d7f-6cbb-11e2-b242-c8600054b392mysql/mariadb/percona server -- multiple vulnerabilities

ORACLE reports:

Multiple SQL injection vulnerabilities in the replication code

Stack-based buffer overflow

Heap-based buffer overflow


Discovery 2012-12-01
Entry 2013-02-01
mysql-server
ge 5.1 lt 5.1.67

ge 5.5 lt 5.5.29

mariadb-server
ge 5.3 lt 5.3.12

ge 5.5 lt 5.5.29

percona-server
ge 5.5 lt 5.5.29.29.4

CVE-2012-4414
CVE-2012-5611
CVE-2012-5612
CVE-2012-5615
CVE-2012-5627
https://mariadb.atlassian.net/browse/MDEV-4029
https://mariadb.atlassian.net/browse/MDEV-MDEV-729
https://mariadb.atlassian.net/browse/MDEV-MDEV-729
http://www.mysqlperformanceblog.com/2013/01/23/announcing-percona-server-5-5-29-29-4/
738f8f9e-d661-11dd-a765-0030843d3802mysql -- MyISAM table privileges security bypass vulnerability for symlinked paths

MySQL Team reports:

Additional corrections were made for the symlink-related privilege problem originally addressed. The original fix did not correctly handle the data directory pathname if it contained symlinked directories in its path, and the check was made only at table-creation time, not at table-opening time later.


Discovery 2008-07-03
Entry 2008-12-30
mysql-server
ge 4.1 lt 4.1.25

ge 5.0 lt 5.0.75

ge 5.1 lt 5.1.28

ge 6.0 lt 6.0.6

CVE-2008-2079
CVE-2008-4097
CVE-2008-4098
http://bugs.mysql.com/bug.php?id=32167
http://dev.mysql.com/doc/refman/4.1/en/news-4-1-25.html
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-75.html
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-28.html
http://dev.mysql.com/doc/refman/6.0/en/news-6-0-6.html
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480292#25