This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-24 03:12:49 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
7850a238-680a-11d9-a9e7-0001020eed82 | cups-lpr -- lppasswd multiple vulnerabilities D. J. Bernstein reports that Bartlomiej Sieka has discovered several security vulnerabilities in lppasswd, which is part of CUPS. In the following excerpt from Bernstein's email, CVE names have been added for each issue:
Note: The third issue, CVE-2004-1270, does not affect FreeBSD 4.6-RELEASE or later systems, as these systems ensure that the file descriptors 0, 1, and 2 are always open for set-user-ID and set-group-ID programs. Discovery 2004-12-11 Entry 2005-01-17 cups-lpr fr-cups-lpr < 1.1.23 CVE-2004-1268 CVE-2004-1269 CVE-2004-1270 12007 12004 http://www.cups.org/str.php?L1023 http://tigger.uic.edu/~jlongs2/holes/cups2.txt |