FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
9d15355b-ce7c-11e4-9db0-d050992ecde8	OpenSSL -- multiple vulnerabilities OpenSSL project reports: Reclassified: RSA silently downgrades to EXPORT_RSA [Client] (CVE-2015-0204). OpenSSL only. Segmentation fault in ASN1_TYPE_cmp (CVE-2015-0286) ASN.1 structure reuse memory corruption (CVE-2015-0287) PKCS#7 NULL pointer dereferences (CVE-2015-0289) Base64 decode (CVE-2015-0292). OpenSSL only. DoS via reachable assert in SSLv2 servers (CVE-2015-0293). OpenSSL only. Use After Free following d2i_ECPrivatekey error (CVE-2015-0209) X509_to_X509_REQ NULL pointer deref (CVE-2015-0288) Discovery 2015-03-19 Entry 2015-03-19 Modified 2016-08-09 openssl ge 1.0.1 lt 1.0.1_19 mingw32-openssl ge 1.0.1 lt 1.0.1m linux-c6-openssl < 1.0.1e_4 libressl le 2.1.5_1 FreeBSD ge 10.1 lt 10.1_8 ge 9.3 lt 9.3_12 ge 8.4 lt 8.4_26 SA-15:06.openssl ports/198681 CVE-2015-0204 CVE-2015-0286 CVE-2015-0287 CVE-2015-0289 CVE-2015-0292 CVE-2015-0293 CVE-2015-0209 CVE-2015-0288 https://www.openssl.org/news/secadv_20150319.txt

VuXML ID

Description

9d15355b-ce7c-11e4-9db0-d050992ecde8

OpenSSL -- multiple vulnerabilities

OpenSSL project reports:

Reclassified: RSA silently downgrades to EXPORT_RSA [Client] (CVE-2015-0204). OpenSSL only.

Segmentation fault in ASN1_TYPE_cmp (CVE-2015-0286)

ASN.1 structure reuse memory corruption (CVE-2015-0287)

PKCS#7 NULL pointer dereferences (CVE-2015-0289)

Base64 decode (CVE-2015-0292). OpenSSL only.

DoS via reachable assert in SSLv2 servers (CVE-2015-0293). OpenSSL only.

Use After Free following d2i_ECPrivatekey error (CVE-2015-0209)

X509_to_X509_REQ NULL pointer deref (CVE-2015-0288)

Discovery 2015-03-19
Entry 2015-03-19
Modified 2016-08-09
openssl

ge 1.0.1 lt 1.0.1_19

mingw32-openssl

ge 1.0.1 lt 1.0.1m

linux-c6-openssl

< 1.0.1e_4

libressl

le 2.1.5_1

FreeBSD

ge 10.1 lt 10.1_8

ge 9.3 lt 9.3_12

ge 8.4 lt 8.4_26

SA-15:06.openssl
ports/198681
CVE-2015-0204
CVE-2015-0286
CVE-2015-0287
CVE-2015-0289
CVE-2015-0292
CVE-2015-0293
CVE-2015-0209
CVE-2015-0288
https://www.openssl.org/news/secadv_20150319.txt