FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
77b784bb-3dc6-11e4-b191-f0def16c5c1b	nginx -- inject commands into SSL session vulnerability The nginx project reports: Security: it was possible to reuse SSL sessions in unrelated contexts if a shared SSL session cache or the same TLS session ticket key was used for multiple "server" blocks (CVE-2014-3616). Discovery 2014-09-16 Entry 2014-09-16 nginx ge 0.6.0 lt 1.6.2,2 nginx-devel ge 0.5.6 lt 1.7.5 CVE-2014-3616 http://mailman.nginx.org/pipermail/nginx-announce/2014/000147.html

VuXML ID

Description

77b784bb-3dc6-11e4-b191-f0def16c5c1b

nginx -- inject commands into SSL session vulnerability

The nginx project reports:

Security: it was possible to reuse SSL sessions in unrelated contexts if a shared SSL session cache or the same TLS session ticket key was used for multiple "server" blocks (CVE-2014-3616).

Discovery 2014-09-16
Entry 2014-09-16
nginx

ge 0.6.0 lt 1.6.2,2

nginx-devel

ge 0.5.6 lt 1.7.5

CVE-2014-3616
http://mailman.nginx.org/pipermail/nginx-announce/2014/000147.html