FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
67a1c3ae-ad69-11df-9be6-0015587e2cc1corkscrew -- buffer overflow vulnerability

The affected corkscrew versions use sscanf calls without proper bounds checking. In the authentication file parsing routine this can cause an exploitable buffer overflow condition. A similar but issue exists in the server response code but appears to be non-exploitable.


Discovery 2010-08-21
Entry 2010-08-21
corkscrew
le 2.0

http://people.freebsd.org/~niels/issues/corkscrew-20100821.txt