FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  371418
Date:      2014-10-24
Time:      01:58:13Z
Committer: zi

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
68222076-010b-11da-bc08-0001020eed82tiff -- buffer overflow vulnerability

A Gentoo Linux Security Advisory reports:

Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a stack based buffer overflow in the libTIFF library when reading a TIFF image with a malformed BitsPerSample tag.

Successful exploitation would require the victim to open a specially crafted TIFF image, resulting in the execution of arbitrary code.


Discovery 2005-05-10
Entry 2005-07-30
Modified 2006-06-08
tiff
lt 3.7.3

linux-tiff
lt 3.6.1_3

pdflib
pdflib-perl
lt 6.0.1_2

gdal
lt 1.2.1_2

ivtools
lt 1.2.3

paraview
lt 2.4.3

fractorama
lt 1.6.7_1

iv
ja-iv
ja-libimg
gt 0

CVE-2005-1544
http://bugzilla.remotesensing.org/show_bug.cgi?id=843
http://www.gentoo.org/security/en/glsa/glsa-200505-07.xml
http://www.remotesensing.org/libtiff/v3.7.3.html
68222076-010b-11da-bc08-0001020eed82tiff -- buffer overflow vulnerability

A Gentoo Linux Security Advisory reports:

Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a stack based buffer overflow in the libTIFF library when reading a TIFF image with a malformed BitsPerSample tag.

Successful exploitation would require the victim to open a specially crafted TIFF image, resulting in the execution of arbitrary code.


Discovery 2005-05-10
Entry 2005-07-30
Modified 2006-06-08
tiff
lt 3.7.3

linux-tiff
lt 3.6.1_3

pdflib
pdflib-perl
lt 6.0.1_2

gdal
lt 1.2.1_2

ivtools
lt 1.2.3

paraview
lt 2.4.3

fractorama
lt 1.6.7_1

iv
ja-iv
ja-libimg
gt 0

CVE-2005-1544
http://bugzilla.remotesensing.org/show_bug.cgi?id=843
http://www.gentoo.org/security/en/glsa/glsa-200505-07.xml
http://www.remotesensing.org/libtiff/v3.7.3.html