FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  374986
Date:      2014-12-20
Time:      00:21:30Z
Committer: delphij

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
7ba65bfd-2a40-11e1-b96e-00215af774f0unbound -- denial of service vulnerabilities from nonstandard redirection and denial of existence

Unbound developer reports:

Unbound crashes when confronted with a non-standard response from a server for a domain. This domain produces duplicate RRs from a certain type and is DNSSEC signed. Unbound also crashes when confronted with a query that eventually, and under specific circumstances, resolves to a domain that misses expected NSEC3 records.


Discovery 2011-12-19
Entry 2011-12-19
unbound
lt 1.4.14

CVE-2011-4528
http://unbound.nlnetlabs.nl/downloads/CVE-2011-4528.txt
dc96ac1f-86b1-11e0-9e85-00215af774f0Unbound -- an empty error packet handling assertion failure

Unbound developer reports:

NLnet Labs was notified of an error in Unbound's code-path for error replies which is triggered under special conditions. The error causes the program to abort.


Discovery 2011-05-25
Entry 2011-05-25
unbound
lt 1.4.10

CVE-2011-1922
http://unbound.nlnetlabs.nl/downloads/CVE-2011-1922.txt
dc96ac1f-86b1-11e0-9e85-00215af774f0Unbound -- an empty error packet handling assertion failure

Unbound developer reports:

NLnet Labs was notified of an error in Unbound's code-path for error replies which is triggered under special conditions. The error causes the program to abort.


Discovery 2011-05-25
Entry 2011-05-25
unbound
lt 1.4.10

CVE-2011-1922
http://unbound.nlnetlabs.nl/downloads/CVE-2011-1922.txt
7ba65bfd-2a40-11e1-b96e-00215af774f0unbound -- denial of service vulnerabilities from nonstandard redirection and denial of existence

Unbound developer reports:

Unbound crashes when confronted with a non-standard response from a server for a domain. This domain produces duplicate RRs from a certain type and is DNSSEC signed. Unbound also crashes when confronted with a query that eventually, and under specific circumstances, resolves to a domain that misses expected NSEC3 records.


Discovery 2011-12-19
Entry 2011-12-19
unbound
lt 1.4.14

CVE-2011-4528
http://unbound.nlnetlabs.nl/downloads/CVE-2011-4528.txt