FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  368515
Date:      2014-09-18
Time:      19:53:09Z
Committer: madpilot

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
7e61a839-b714-11e3-8195-001966155beafile -- out-of-bounds access in search rules with offsets from input file

Aaron Reffett reports:

softmagic.c in file ... and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable.


Discovery 2013-12-20
Entry 2014-03-29
file
lt 5.18

CVE-2014-2270
http://bugs.gw.com/view.php?id=31
815dbcf9-a2d6-11e3-8088-002590860428file -- denial of service

The Fine Free file project reports:

file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.


Discovery 2014-02-16
Entry 2014-03-03
file
lt 5.17

CVE-2014-1943
http://mx.gw.com/pipermail/file/2014/001327.html