FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  374826
Date:      2014-12-16
Time:      22:06:31Z
Committer: cs

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
b5ffaa2a-ee50-4498-af99-61bc1b163c00leafnode -- denial of service vulnerability

Matthias Andree reports:

A vulnerability was found in the fetchnews program (the NNTP client) that may under some circumstances cause a wait for input that never arrives, fetchnews "hangs". [...]

As only one fetchnews program can run at a time, subsequently started fetchnews and texpire programs will terminate. [...]

Upgrade your leafnode package to version 1.11.3.


Discovery 2005-06-08
Entry 2005-06-09
leafnode
lt 1.11.3

CVE-2005-1911
http://leafnode.sourceforge.net/leafnode-SA-2005-02.txt
ports/82056
http://marc.theaimsgroup.com/?l=vulnwatch&m=111827180929063
66dbb2ee-99b8-45b2-bb3e-640caea67a60leafnode -- fetchnews denial-of-service triggered by transmission abort/timeout

When an upstream server aborts the transmission or stops sending data after the fetchnews program has requested an article header or body, fetchnews may crash, without querying further servers that are configured. This can prevent articles from being fetched.


Discovery 2005-05-04
Entry 2005-05-13
leafnode
ge 1.9.48 lt 1.11.2

http://leafnode.sourceforge.net/leafnode-SA-2005-01.txt
CVE-2005-1453
ports/80663
13489
13492
http://sourceforge.net/mailarchive/forum.php?thread_id=7186974&forum_id=10210
http://article.gmane.org/gmane.network.leafnode.announce/52
http://www.dt.e-technik.uni-dortmund.de/pipermail/leafnode-list/2005q2/000900.html
http://www.fredi.de/maillist/msg00111.html
http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0037.html
http://www.frsirt.com/english/advisories/2005/0468
http://secunia.com/advisories/15252
b5ffaa2a-ee50-4498-af99-61bc1b163c00leafnode -- denial of service vulnerability

Matthias Andree reports:

A vulnerability was found in the fetchnews program (the NNTP client) that may under some circumstances cause a wait for input that never arrives, fetchnews "hangs". [...]

As only one fetchnews program can run at a time, subsequently started fetchnews and texpire programs will terminate. [...]

Upgrade your leafnode package to version 1.11.3.


Discovery 2005-06-08
Entry 2005-06-09
leafnode
lt 1.11.3

CVE-2005-1911
http://leafnode.sourceforge.net/leafnode-SA-2005-02.txt
ports/82056
http://marc.theaimsgroup.com/?l=vulnwatch&m=111827180929063
66dbb2ee-99b8-45b2-bb3e-640caea67a60leafnode -- fetchnews denial-of-service triggered by transmission abort/timeout

When an upstream server aborts the transmission or stops sending data after the fetchnews program has requested an article header or body, fetchnews may crash, without querying further servers that are configured. This can prevent articles from being fetched.


Discovery 2005-05-04
Entry 2005-05-13
leafnode
ge 1.9.48 lt 1.11.2

http://leafnode.sourceforge.net/leafnode-SA-2005-01.txt
CVE-2005-1453
ports/80663
13489
13492
http://sourceforge.net/mailarchive/forum.php?thread_id=7186974&forum_id=10210
http://article.gmane.org/gmane.network.leafnode.announce/52
http://www.dt.e-technik.uni-dortmund.de/pipermail/leafnode-list/2005q2/000900.html
http://www.fredi.de/maillist/msg00111.html
http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0037.html
http://www.frsirt.com/english/advisories/2005/0468
http://secunia.com/advisories/15252