FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  371418
Date:      2014-10-24
Time:      01:58:13Z
Committer: zi

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
f6447303-9ec9-11da-b410-000e0c2e438aheartbeat -- insecure temporary file creation vulnerability

Eric Romang reports a temporary file creation vulnerability within heartbeat. The vulnerability is caused by hardcoded temporary file usage. This can cause an attacker to create an arbitrary symlink causing the application to overwrite the symlinked file with the permissions of the user executing the application.


Discovery 2005-07-12
Entry 2006-02-16
Modified 2006-04-16
heartbeat
lt 1.2.4

CAN-2005-2231
http://www.zataz.net/adviso/heartbeat-06272005.txt
f6447303-9ec9-11da-b410-000e0c2e438aheartbeat -- insecure temporary file creation vulnerability

Eric Romang reports a temporary file creation vulnerability within heartbeat. The vulnerability is caused by hardcoded temporary file usage. This can cause an attacker to create an arbitrary symlink causing the application to overwrite the symlinked file with the permissions of the user executing the application.


Discovery 2005-07-12
Entry 2006-02-16
Modified 2006-04-16
heartbeat
lt 1.2.4

CAN-2005-2231
http://www.zataz.net/adviso/heartbeat-06272005.txt