FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  369565
Date:      2014-09-29
Time:      23:34:30Z
Committer: bdrewery

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
cb252f01-7c43-11e3-b0a6-005056a37f68bind -- denial of service vulnerability

ISC reports:

Because of a defect in handling queries for NSEC3-signed zones, BIND can crash with an "INSIST" failure in name.c when processing queries possessing certain properties. By exploiting this defect an attacker deliberately constructing a query with the right properties could achieve denial of service against an authoritative nameserver serving NSEC3-signed zones.


Discovery 2014-01-08
Entry 2014-01-13
Modified 2014-04-30
bind99
lt 9.9.4.2

bind99-base
lt 9.9.4.2

bind98
lt 9.8.6.2

bind98-base
lt 9.8.6.2

bind96
lt 9.6.3.2.ESV.R10.2

bind96-base
lt 9.6.3.2.ESV.R10.2

FreeBSD
gt 9.2 lt 9.2_3

gt 9.1 lt 9.1_10

gt 8.4 lt 8.4_7

gt 8.3 lt 8.3_14

CVE-2014-0591
SA-13:07.bind
https://kb.isc.org/article/AA-01078/74/
7943e521-f648-11e2-8607-3c970e169bc2bind -- denial of service vulnerability

ISC reports:

A specially crafted query that includes malformed rdata can cause named to terminate with an assertion failure while rejecting the malformed query.


Discovery 2013-07-26
Entry 2013-07-26
Modified 2013-07-27
bind99
gt 9.9.3 lt 9.9.3.2

bind99-base
gt 9.9.3 lt 9.9.3.2

bind98
gt 9.8.5 lt 9.8.5.2

bind98-base
gt 9.8.5 lt 9.8.5.2

FreeBSD
gt 9.0 lt 9.1_5

gt 8.4 lt 8.4_2

CVE-2013-4854
SA-13:07.bind
https://kb.isc.org/article/AA-01015/0