FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
a7f2e9c6-de20-11e5-8458-6cc21735f730	xerces-c3 -- Parser Crashes on Malformed Input The Apache Software Foundation reports: The Xerces-C XML parser mishandles certain kinds of malformed input documents, resulting in buffer overflows during processing and error reporting. The overflows can manifest as a segmentation fault or as memory corruption during a parse operation. The bugs allow for a denial of service attack in many applications by an unauthenticated attacker, and could conceivably result in remote code execution. Discovery 2016-02-25 Entry 2016-02-28 xerces-c3 < 3.1.3 CVE-2016-0729 http://xerces.apache.org/xerces-c/secadv/CVE-2016-0729.txt

VuXML ID

Description

a7f2e9c6-de20-11e5-8458-6cc21735f730

xerces-c3 -- Parser Crashes on Malformed Input

The Apache Software Foundation reports:

The Xerces-C XML parser mishandles certain kinds of malformed input documents, resulting in buffer overflows during processing and error reporting. The overflows can manifest as a segmentation fault or as memory corruption during a parse operation. The bugs allow for a denial of service attack in many applications by an unauthenticated attacker, and could conceivably result in remote code execution.

Discovery 2016-02-25
Entry 2016-02-28
xerces-c3

< 3.1.3

CVE-2016-0729
http://xerces.apache.org/xerces-c/secadv/CVE-2016-0729.txt