FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  371350
Date:      2014-10-22
Time:      08:54:58Z
Committer: matthew

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
89ff45e3-1a57-11e4-bebd-000c2980a9f3samba -- remote code execution

Samba developers report:

A malicious browser can send packets that may overwrite the heap of the target nmbd NetBIOS name services daemon. It may be possible to use this to generate a remote code execution vulnerability as the superuser (root).


Discovery 2014-07-31
Entry 2014-08-02
samba4
ge 4.0.0 lt 4.0.21

samba41
ge 4.1.0 lt 4.1.11

CVE-2014-3560
http://www.samba.org/samba/security/CVE-2014-3560
6ad309d9-fb03-11e3-bebd-000c2980a9f3samba -- multiple vulnerabilities

The samba project reports:

A malformed packet can cause the nmbd server to loop the CPU and prevent any further NetBIOS name service.

Valid unicode path names stored on disk can cause smbd to crash if an authenticated client attempts to read them using a non-unicode request.


Discovery 2014-06-23
Entry 2014-06-23
samba36
lt 3.6.24

samba4
lt 4.0.19

samba41
lt 4.1.9

CVE-2014-0244
CVE-2014-3493
https://www.samba.org/samba/security/CVE-2014-0244
https://www.samba.org/samba/security/CVE-2014-3493