FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  369793
Date:      2014-10-02
Time:      01:06:43Z
Committer: bdrewery

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
eb12ebee-b7af-11e1-b5e0-000c299b62e1clamav -- multiple vulnerabilities

MITRE Advisories report:

The TAR parser allows remote attackers to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence.

The TAR parser allows remote attackers to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size.

The Microsoft CHM file parser allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file.

The TAR file parser allows remote attackers to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry, plus part of the header ofxi the next entry.


Discovery 2012-03-19
Entry 2012-06-16
clamav
lt 0.97.5

clamav-devel
lt 20120612

CVE-2012-1419
CVE-2012-1457
CVE-2012-1458
CVE-2012-1459
eb12ebee-b7af-11e1-b5e0-000c299b62e1clamav -- multiple vulnerabilities

MITRE Advisories report:

The TAR parser allows remote attackers to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence.

The TAR parser allows remote attackers to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size.

The Microsoft CHM file parser allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file.

The TAR file parser allows remote attackers to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry, plus part of the header ofxi the next entry.


Discovery 2012-03-19
Entry 2012-06-16
clamav
lt 0.97.5

clamav-devel
lt 20120612

CVE-2012-1419
CVE-2012-1457
CVE-2012-1458
CVE-2012-1459