FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  366223
Date:      2014-08-26
Time:      16:36:41Z
Committer: rene

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
fb672330-02db-11dd-bd06-0017319806e7suphp -- multiple local privilege escalation vulnerabilities

Multiple local privilege escalation are found in the symlink verification code. An attacker may use it to run a PHP script with the victim's privilege. This attack is a little harder when suphp operates in paranoid mode. For suphp that runs in owner mode which is the default in ports, immediate upgrade to latest version is advised.


Discovery 2008-03-30
Entry 2008-04-05
Modified 2010-05-12
suphp
lt 0.6.3

CVE-2008-1614
28568
http://lists.marsching.biz/pipermail/suphp/2008-March/001750.html
fb672330-02db-11dd-bd06-0017319806e7suphp -- multiple local privilege escalation vulnerabilities

Multiple local privilege escalation are found in the symlink verification code. An attacker may use it to run a PHP script with the victim's privilege. This attack is a little harder when suphp operates in paranoid mode. For suphp that runs in owner mode which is the default in ports, immediate upgrade to latest version is advised.


Discovery 2008-03-30
Entry 2008-04-05
Modified 2010-05-12
suphp
lt 0.6.3

CVE-2008-1614
28568
http://lists.marsching.biz/pipermail/suphp/2008-March/001750.html