notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_5 security on this many watch lists=30 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 1.1_5Version of this port present on the latest quarterly branch.
Maintainer: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2004-02-12 14:24:23
Last Update: 2021-09-23 01:03:25
Commit Hash: d7110e4
People watching this port, also watch:: gnupg, libxml2, curl, zip, nmap
Also Listed In: textproc
License: BSD2CLAUSE
Description:
SVNWeb : git
pkg-plist: as obtained via: make generate-plist
Expand this list (13 items)
Collapse this list.
  1. /usr/local/share/licenses/vuxml-1.1_5/catalog.mk
  2. /usr/local/share/licenses/vuxml-1.1_5/LICENSE
  3. /usr/local/share/licenses/vuxml-1.1_5/BSD2CLAUSE
  4. @xmlcatmgr share/xml/dtd/vuxml/catalog
  5. @xmlcatmgr share/xml/dtd/vuxml/catalog.xml
  6. share/xml/dtd/vuxml/vuxml-10.dtd
  7. share/xml/dtd/vuxml/vuxml-11.dtd
  8. share/xml/dtd/vuxml/vuxml-model-10.mod
  9. share/xml/dtd/vuxml/vuxml-model-11.mod
  10. share/xml/dtd/vuxml/xml1.dcl
  11. @owner
  12. @group
  13. @mode
Collapse this list.
Dependency lines:
  • vuxml>0:security/vuxml
To install the port: cd /usr/ports/security/vuxml/ && make install clean
To add the package, run one of these commands:
  • pkg install security/vuxml
  • pkg install vuxml
PKGNAME: vuxml
Flavors: there is no flavor information for this port.
distinfo:
Packages (timestamps in pop-ups are UTC):
vuxml
ABIlatestquarterly
FreeBSD:11:aarch641.1_31.1_4
FreeBSD:11:amd641.1_51.1_5
FreeBSD:11:armv61.1_21.1_4
FreeBSD:11:i3861.1_51.1_5
FreeBSD:11:mips--
FreeBSD:11:mips641.1_31.1_4
FreeBSD:12:aarch641.1_31.1_5
FreeBSD:12:amd641.1_51.1_5
FreeBSD:12:armv61.1_31.1_4
FreeBSD:12:armv71.1_31.1_4
FreeBSD:12:i3861.1_51.1_5
FreeBSD:12:mips--
FreeBSD:12:mips641.1_31.1_4
FreeBSD:12:powerpc64-1.1_5
FreeBSD:13:aarch641.1_51.1_5
FreeBSD:13:amd641.1_51.1_5
FreeBSD:13:armv61.1_51.1_5
FreeBSD:13:armv71.1_51.1_5
FreeBSD:13:i3861.1_51.1_5
FreeBSD:13:mips--
FreeBSD:13:mips64--
FreeBSD:13:powerpc641.1_51.1_5
FreeBSD:14:aarch641.1_5-
FreeBSD:14:amd641.1_5-
FreeBSD:14:armv61.1_5-
FreeBSD:14:armv71.1_5-
FreeBSD:14:i3861.1_5-
FreeBSD:14:mips--
FreeBSD:14:mips64--
FreeBSD:14:powerpc641.1_5-
 

Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Runtime dependencies:
  1. xmlcatmgr : textproc/xmlcatmgr
  2. xsltproc : textproc/libxslt
  3. VERSION : textproc/xhtml-modularization
  4. xhtml-basic10.dtd : textproc/xhtml-basic
  5. python3.8 : lang/python38
There are no ports dependent upon this port

Configuration Options:
Options name:

USES:

FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. http://www.vuxml.org/dtd/vuxml-1/
Collapse this list.

Number of commits found: 6419 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
23 Sep 2021 01:03:25
 files touched by this commit commit hash:d7110e4aba0cbc6ebbb59172ae49be1430ea3e6e  1.1_5
leres search for other commits by this committer
security/vuxml: Fix missing <name> field

I wasn't able to see my mistake based on the error "make validate"
gave me:

    Traceback (most recent call last):
      File
"/usr/local/poudriere/ports/current-patched/security/vuxml/files/extra-validation.py",
line 99, in <module>
	if (re_invalid_package_name.search(name.text) is not None):
    TypeError: expected string or bytes-like object
    *** Error code 1

Thanks to Dan for the pointy hat save.

Reported by:	Dan Langille
22 Sep 2021 22:09:30
 files touched by this commit commit hash:1d63728bf1f6d2710841f5d6bee89a7905fbc7a8  1.1_5
leres search for other commits by this committer
security/vuxml: Mark zeek < 4.0.4 as vulnerable as per:

    https://github.com/zeek/zeek/releases/tag/v4.0.4

 - Paths from log stream make it into system() unchecked, potentially
   leading to commands being run on the system unintentionally.
   This requires either bad scripting or a malicious package to be
   installed, and is considered low severity.

 - Fix potential unbounded state growth in the PIA analyzer when
   receiving a connection with either a large number of zero-length
   packets, or one which continues ack-ing unseen segments. It is
   possible to run Zeek out of memory in these instances and cause
   it to crash. Due to the possibility of this happening with packets
   received from the network, this is a potential DoS vulnerability.
22 Sep 2021 08:59:34
 files touched by this commit commit hash:bfdfd97b034e6db49daf76b2a5c78eac91cf3071  1.1_5
brnrd search for other commits by this committer
security/vuxml: Document mod_auth_mellon vulnerability
21 Sep 2021 20:27:13
 files touched by this commit commit hash:ba1131a59aadec6c066c0933159602dd7d036b5a  1.1_5
bhughes search for other commits by this committer
security/vuxml: document Node.js August 2021 Security Releases (2)

https://nodejs.org/en/blog/vulnerability/aug-2021-security-releases2/

Sponsored by:	Miles AS
21 Sep 2021 20:26:42
 files touched by this commit commit hash:25745a72b6b91dfe9aea29ef8e57aceadb8fed21  1.1_5
bhughes search for other commits by this committer
security/vuxml: document Node.js August 2021 Security Releases

https://nodejs.org/en/blog/vulnerability/aug-2021-security-releases/

Sponsored by:	Miles AS
21 Sep 2021 20:26:41
 files touched by this commit commit hash:f7e492c3bc8b1e084af81c288458d774334764ad  1.1_5
bhughes search for other commits by this committer
security/vuxml: document Node.js July 2021 Security Releases (2)

https://nodejs.org/en/blog/vulnerability/july-2021-security-releases-2/

Sponsored by:	Miles AS
21 Sep 2021 20:26:35
 files touched by this commit commit hash:8c3ca5e4b36800a563559fc60bd6bcca0339b5cb  1.1_5
bhughes search for other commits by this committer
security/vuxml: document Node.js July 2021 Security Releases

https://nodejs.org/en/blog/vulnerability/july-2021-security-releases/

Sponsored by:	Miles AS
21 Sep 2021 20:17:35
 files touched by this commit commit hash:8170e64e0eb549bdfe91ef605e3a4e6d022e3e7e  1.1_5
rene search for other commits by this committer
security/vuxml: add chromium < 94.0.4606.54

Obtained
from:	https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_21.html
21 Sep 2021 03:47:26
 files touched by this commit commit hash:0e3bea17bd07912565978ca2d526bb483c15b70d  1.1_5
sunpoet search for other commits by this committer
security/vuxml: Document libssh vulnerability
20 Sep 2021 06:26:06
 files touched by this commit commit hash:8917d9a116c8ee08984a2951e8a415f6e06afc76  1.1_5
diizzy search for other commits by this committer
security/vuxml: Add entry for libpano13 < 2.9.20

PR:		258354
Approved by:	tcberner
Differential Revision:	https://reviews.freebsd.org/D31980
17 Sep 2021 21:37:59
 files touched by this commit commit hash:f07b3de4630f5062f4de92232b6a5f5902ad21c8  1.1_5
jbeich search for other commits by this committer
security/vuxml: update seatd 0.6.{0,1} entry

- Discovered 1 day before announcement
- Assigned CVE-2021-41387
17 Sep 2021 19:15:56
 files touched by this commit commit hash:0727cd2415ff009027751d9da066c0bb97ec0cf3  1.1_5
eugen search for other commits by this committer
security/vuxml: fix range in vid f55921aa-10c9-11ec-8647-00e0670f2660

Fix ranges for latest net/mpd5 vulnerability.

Reported by:	Clive Lin
17 Sep 2021 17:40:47
 files touched by this commit commit hash:83c1b1322d2c51e45ac4495cf66faed8ea25e219  1.1_5
brnrd search for other commits by this committer
security/vuxml: Document Apache httpd vulns
17 Sep 2021 10:52:12
 files touched by this commit commit hash:53dd519f9dd6328ebefdc30588f2e6abb272fabf  1.1_5
brnrd search for other commits by this committer
security/vuxml: Register cURL vulns
16 Sep 2021 01:20:09
 files touched by this commit commit hash:d50ae3e6f89d474eab3f83cd8ba5d1a0f393a2a7  1.1_5
jbeich search for other commits by this committer
security/vuxml: consistently use -- in topic after e0992ef21346
16 Sep 2021 01:15:04
 files touched by this commit commit hash:e0992ef21346e8606efd99b720938d6b9c9dc72b  1.1_5
jbeich search for other commits by this committer
security/vuxml: mark seatd 0.6.{0,1} as vulnerable
14 Sep 2021 16:55:06
 files touched by this commit commit hash:8b8880a9795ae4a092bdc822042755f572062558  1.1_5
rene search for other commits by this committer
security/vuxml: add chromium < 93.0.4577.82

Obtained
from:	https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop.html
13 Sep 2021 18:14:24
 files touched by this commit commit hash:9a40adc2994cb4ff311722936d3eb287d9b04528  1.1_5
ashish search for other commits by this committer
security/vuxml: Document vulnerabilities in Matrix clients

Security:	93eb0e48-14ba-11ec-875e-901b0e9408dc
Security:	CVE-2021-40823
Security:	CVE-2021-40824
11 Sep 2021 00:30:50
 files touched by this commit commit hash:db35d73b130f9c0897e8ecbe2177644a2dad82e3  1.1_5
brd search for other commits by this committer
security/vuxml: document sysutils/consul vulnerability
10 Sep 2021 17:21:33
 files touched by this commit commit hash:07472321defad0cbaa9a244307afca41575560e3  1.1_5
dmgk search for other commits by this committer
security/vuxml: Document lang/go vulnerability
09 Sep 2021 12:11:13
 files touched by this commit commit hash:ef5565c0e1f1f1430099108ec9fa9c7487b2e6d6  1.1_5
wen search for other commits by this committer
security/vuxml: Document multiple vulnerabilities of python38
08 Sep 2021 22:02:51
 files touched by this commit commit hash:2c7d4d50c06ac12410414813427604ee9af673dd  1.1_5
eugen search for other commits by this committer
security/vuxml: add net/mpd5 PPPoE Server remotely exploitable crash

Version 5.9_2 contains security fix for PPPoE servers.
Insufficient validation of incoming PPPoE Discovery request
specially crafted by unauthenticated user might lead to unexpected
termination of the process. The problem affects mpd versions since 5.0.
Installations not using PPPoE server configuration were not affected.

Reported by:	Yannick C at SourceForge
Tested by:	Yannick C at SourceForge, paul at SourceForge
07 Sep 2021 07:12:37
 files touched by this commit commit hash:0659e7ea70d0c9e7067d21e4be7ac052ff1c7c77  1.1_5
wen search for other commits by this committer
security/vuxml: Document multiple vulnerabilities of python36 and python37
05 Sep 2021 11:32:07
 files touched by this commit commit hash:62cdf74dea2759c7ee07ac49a43486110111220d  1.1_5
brnrd search for other commits by this committer
security/vuxml: Document WeeChat vulnerability
02 Sep 2021 14:31:26
 files touched by this commit commit hash:1d034041502f6783f8259b91b23e650c79fc4f6d  1.1_5
ashish search for other commits by this committer
security/vuxml: Document py-matrix-synapse vulnerabilities

PR:		258187
Reported by:	Sascha Biberhofer <ports@skyforge.at>
Security:	a67e358c-0bf6-11ec-875e-901b0e9408dc
Security:	CVE-2021-39163
Security:	CVE-2021-39164
02 Sep 2021 04:48:27
 files touched by this commit commit hash:f47439e258e04ea3b82ef587281cb654cd9c3236  1.1_5
wen search for other commits by this committer
security/vuxml: Document python39 multiple vulnerabilities
02 Sep 2021 03:41:34
 files touched by this commit commit hash:4df3725f5a3e571f478a32f4cd5092c6c6edd87f  1.1_5
ume search for other commits by this committer
security/vuxml: fix range

Reported by:	rene
01 Sep 2021 20:34:29
 files touched by this commit commit hash:d14afe74fa0e9534dbaa33a89aa11480d5d2c6aa  1.1_5
rene search for other commits by this committer
security/vuxml: add www/chromium < 93.0.4577.63

Obtained
from:	https://chromereleases.googleblog.com/2021/08/stable-channel-update-for-desktop_31.html
01 Sep 2021 13:22:35
 files touched by this commit commit hash:e15f422dd6a8326d8c9cbf8927b4a8c5315ac001  1.1_5
ume search for other commits by this committer
security/vuxml: Document cyrus-imapd vulnerability.
31 Aug 2021 21:20:14
 files touched by this commit commit hash:3e9e0373d4e7c3a5c491809499c49b6300bd8db5  1.1_5
mfechner search for other commits by this committer
security/vuxml: Document gitlab vulnerabilities
26 Aug 2021 23:09:48
 files touched by this commit commit hash:c5670115baaf3725deaf0ed3aa493ad7f63842c7  1.1_5
mandree search for other commits by this committer
security/vuxml: document fetchmail TLS vulns

URL:		https://www.fetchmail.info/fetchmail-SA-2021-02.txt
Security:	CVE-2021-39272
Security:	1d6410e8-06c1-11ec-a35d-03ca114d16d6
25 Aug 2021 06:14:17
 files touched by this commit commit hash:f937bef3965948bfeba49ab8f2097b3afc76eb40  1.1_5
philip search for other commits by this committer
security/vuxml: add FreeBSD SA-21:17.openssl

Reference FreeBSD SA-21:17.openssl in the 16 February 2021
OpenSSL entry and note the fixed patch releases.
25 Aug 2021 06:14:16
 files touched by this commit commit hash:b3d2ea9f92d2765236c5936dbfe3bb437d14670c  1.1_5
philip search for other commits by this committer
security/vuxml: add FreeBSD SA-21:16.openssl

Reference FreeBSD SA-21:16.openssl in the 24 August 2021
OpenSSL entry and note the fixed patch releases.
25 Aug 2021 06:14:16
 files touched by this commit commit hash:b9c92c0d055e07eadf46b0ae4ef18023183b1208  1.1_5
philip search for other commits by this committer
security/vuxml: add FreeBSD SA-21:15.libfetch
25 Aug 2021 06:14:16
 files touched by this commit commit hash:9d7f0b3ad8d708068e3c325d47aaec45d1f208a2  1.1_5
philip search for other commits by this committer
security/vuxml: add FreeBSD SA-21:14.ggatec
25 Aug 2021 06:14:15
 files touched by this commit commit hash:7f941a9b8816f83d3975a29da316a5b75c3400a2  1.1_5
philip search for other commits by this committer
security/vuxml: add FreeBSD SA-21:13.bhyve
24 Aug 2021 15:13:24
 files touched by this commit commit hash:707b576b84fbd794ca9a43babaf4b9feaf37d386  1.1_5
brnrd search for other commits by this committer
security/vuxml: Fix openssl-devel version
24 Aug 2021 15:10:04
 files touched by this commit commit hash:56b6825a17ca94f19e273692e622538f7c40d4fb  1.1_5
brnrd search for other commits by this committer
security/vuxml: Document OpenSSL vulnerabilities
22 Aug 2021 15:28:16
 files touched by this commit commit hash:5557d0cea1e8b38f7f96b0a99195fc503e03d87b  1.1_5
adamw search for other commits by this committer
vuxml: Add entry for gitea < 1.15.0

PR:		257994
20 Aug 2021 18:37:03
 files touched by this commit commit hash:e8c2081891484d2cca601ae5b6643f4911ffd2ae  1.1_5
adamw search for other commits by this committer
vuxml: Add entry for gitea < 1.14.6
20 Aug 2021 03:40:09
 files touched by this commit commit hash:c03169b92e91aaacc83fa3a8e72b1338a9cf37f0  1.1_5
kevans search for other commits by this committer
security/vuxml: Document vulnerabilities in java/bouncycastle15

MFH:	2021Q3
Sponsored by:	Modirum MDPay
Sponsored by:	Klara, Inc.
18 Aug 2021 06:10:16
 files touched by this commit commit hash:2a99b5e684733568e6e532c434c0b43767168d3e  1.1_5
fernape search for other commits by this committer
security/vuxml: Excessive memory consumption vulnerability in binutils

Fixed in main a0e752df8013 and in 2021Q3 in 9c4ee12.

PR:	256133
Reviewed by:	fluffy@, koobs@
Security:	CVE-2021-3487
17 Aug 2021 12:35:20
 files touched by this commit commit hash:edc64acb158c7cf96a031f8918493502b7903138  1.1_5
rene search for other commits by this committer
security/vuxml: add www/chromium < 92.0.4515.159

Obtained
from:	https://chromereleases.googleblog.com/2021/08/stable-channel-update-for-desktop.html
15 Aug 2021 07:11:46
 files touched by this commit commit hash:2950800c21c69fe7e14a28d195d591bfe51662d8  1.1_5
cs search for other commits by this committer
security/vuxml: Update release number for fixed lynx vulnerability

Security:	e9200f8e-fd34-11eb-afb1-c85b76ce9b5a
14 Aug 2021 19:41:58
 files touched by this commit commit hash:bbbc5396ce2d85b6566aa76854670ce6f23a2574  1.1_5
cs search for other commits by this committer
security/vuxml: Document credential leakage vulnerability

Security:	e9200f8e-fd34-11eb-afb1-c85b76ce9b5a
12 Aug 2021 16:22:50
 files touched by this commit commit hash:7cc11a5f1ca54e8809a8f4dae5f91295bae56fbf  1.1_5
girgen search for other commits by this committer
security/vuxml: postgresql??-server vuln CVE-2021-3677
10 Aug 2021 00:42:24
 files touched by this commit commit hash:96369e83b3a657bf0eaeec5377f4f12032c88406  1.1_5
romain search for other commits by this committer
security/vuxml: document xtrlock CVE-2016-10894
09 Aug 2021 20:15:04
 files touched by this commit commit hash:ea46c60b62e15e7370387bcb7b472905a269a566  1.1_5
cy search for other commits by this committer
security/vuxml: Document x11/cde local privilege escalation

Security:	CVE-2020-2696, VU#308289
05 Aug 2021 23:00:59
 files touched by this commit commit hash:55557952f337a67676d2ff171bcf0610a5dc1e55  1.1_5
dmgk search for other commits by this committer
security/vuxml: Document lang/go vulnerability
04 Aug 2021 08:29:40
 files touched by this commit commit hash:f6761022ee19a5ce944ebf29ae8aa21799acfe94  1.1_5
mfechner search for other commits by this committer
security/vuxml: Security vulnerabilities for gitlab-ce
04 Aug 2021 08:10:56
 files touched by this commit commit hash:7583b9a0d9d0445f225d5f511fdd3f83db0e6f51  1.1_5
brnrd search for other commits by this committer
security/vuxml: Mark MariaDB vulnerable
03 Aug 2021 18:22:00
 files touched by this commit commit hash:bfc6a3ee044d51a7989cb9d51b1a66c8b9efe84f  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Add net-im/prosody CVE-2021-37601

PR:		257597
03 Aug 2021 18:19:14
 files touched by this commit commit hash:b956528b42f11820ce690c51e452bf745084fd5e  1.1_5
mandree search for other commits by this committer
security/vuxml: update fetchmail CVE-2021-36386 vuln

this vuln was a reintroduction of CVE-2008-2711 which got fixed in
fetchmail 6.3.9, when 6.3.17 refactored code.

- restrict range (>= 6.3.9 < 6.3.17 unaffected)
- add reference to old CVE-2008-2711

URL:		https://www.fetchmail.info/fetchmail-SA-2021-01.txt
Security:	cbfd1874-efea-11eb-8fe9-036bd763ff35
Security:	CVE-2021-36386
Security:	CVE-2008-2711
03 Aug 2021 17:17:22
 files touched by this commit commit hash:0f1e5bf4459318309f40d5499216d9405b988753  1.1_5
rene search for other commits by this committer
security/vuxml: add www/chromium < 92.0.4515.131

Obtained
from:	https://chromereleases.googleblog.com/search/label/Stable%20updates
02 Aug 2021 09:52:36
 files touched by this commit commit hash:27cdbd277ce350b6f3ea12cc428a34469bf4787d  1.1_5
dch search for other commits by this committer
security/vuxml: document net/rabbitmq CVE-2021-22116

https://tanzu.vmware.com/security/cve-2021-22116
01 Aug 2021 21:57:10
 files touched by this commit commit hash:515969d6d65fd8c492a84fcb31cfae377ef2dd5e  1.1_5
kbowling search for other commits by this committer
security/vuxml: document tomcat CVE-2021-33037

PR:		257153
01 Aug 2021 21:52:40
 files touched by this commit commit hash:9c1924450f57ec143cd6f72aa1c9a48f30f755ee  1.1_5
kbowling search for other commits by this committer
security/vuxml: document tomcat CVE-2021-30640

PR:		257153
01 Aug 2021 21:42:39
 files touched by this commit commit hash:63c4db72a03aec209d37720f1e0eaaf00e1fd02d  1.1_5
kbowling search for other commits by this committer
security/vuxml: correct tomcat package name/versions

PR:		257153
Fixes:	9462edd84baf
01 Aug 2021 21:35:55
 files touched by this commit commit hash:9462edd84baf7bc7e2716da90f81661080f273e0  1.1_5
kbowling search for other commits by this committer
security/vuxml: document tomcat CVE-2021-30639

PR:		257153
28 Jul 2021 21:36:56
 files touched by this commit commit hash:b913df304c485ba61fc981f7e633b96d4b3ea492  1.1_5
mandree search for other commits by this committer
security/vuxml: add fetchmail < 6.4.20 vuln

Security: cbfd1874-efea-11eb-8fe9-036bd763ff35
Security: CVE-2021-36386
27 Jul 2021 10:24:10
 files touched by this commit commit hash:b40cccda5417dca36863966c90a3d1c7ac6e16e0  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Document integer overflow vulnerability in redis

PR:		257325
27 Jul 2021 09:00:51
 files touched by this commit commit hash:91a5f545e16283e3fcc682676521a40036cc8691  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Document dns/powerdns CVE-2021-36754

PR:		257435
24 Jul 2021 16:59:42
 files touched by this commit commit hash:5baee87529e462e477cd6a1685cf3ad201ce332a  1.1_5
leres search for other commits by this committer
security/vuxml: Mark mosquitto >= 2.0.0, < 2.0.10 vulnerable as per:

   
https://github.com/eclipse/mosquitto/blob/d5ecd9f5aa98d42e7549eea09a71a23eef241f31/ChangeLog.txt

 - If an authenticated client connected with MQTT v5 sent a malformed
   CONNACK message to the broker a NULL pointer dereference occurred,
   most likely resulting in a segfault.

PR:		255229
Reported by:	Daniel Engberg
23 Jul 2021 23:14:14
 files touched by this commit commit hash:651d4068e09a5a714a338e96271fa5c8e95f73b2  1.1_5
madpilot search for other commits by this committer
security/vuxml: Document new pjsip vulnerability
23 Jul 2021 21:21:10
 files touched by this commit commit hash:e7ba102c4b60d3b486697961c43d0281ed440230  1.1_5
madpilot search for other commits by this committer
security/vuxml: Document new asterisk vulnerabilities
21 Jul 2021 14:10:34
 files touched by this commit commit hash:532b411520927209573c2214928011492809485d  1.1_5
rene search for other commits by this committer
security/vuxml: document Chromium < 92.0.4515.107
21 Jul 2021 13:40:45
 files touched by this commit commit hash:4c7dacf67bb63c1df0905f61ddf9ec0683e863e2  1.1_5
rene search for other commits by this committer
security/vuxml: fix `make validate'
21 Jul 2021 10:31:00
 files touched by this commit commit hash:ef33c559bad0b10e9427cf64eee4e7036d420f66  1.1_5
brnrd search for other commits by this committer
security/vuxml: Document cURL 7.77.0 vulnerabilities
20 Jul 2021 08:55:32
 files touched by this commit commit hash:0e38a69358ed2971f8c00a1f9d4ba03d4ead0179  1.1_5
brnrd search for other commits by this committer
security/vuxml: Document MySQL vulnerabilities Jul2021
18 Jul 2021 21:27:11
 files touched by this commit commit hash:eeb94ec5a2b7b8199e78e396d032d0898ddc739e  1.1_5
ygy search for other commits by this committer
security/vuxml: Document vulnerabilities in www/gitea

PR:		257221
Approved by:	lwhsu (mentor)
18 Jul 2021 17:54:30
 files touched by this commit commit hash:88c66b779edb4dd7747115b98600a4ce535f66a0  1.1_5
sunpoet search for other commits by this committer
security/vuxml: Fix make validate after 069e58611c7933431ec82b0b9c119677e8d6cc21

Reported by:	lwhsu
Approved by:	delphij (ports-secteam)
16 Jul 2021 20:31:59
 files touched by this commit commit hash:a9bfed5dc704e5765b8b5d4dee2f8f8cb72bb495  1.1_5
rene search for other commits by this committer
security/vuxml: document chromium < 91.0.4472.164

Obtained
from:	https://chromereleases.googleblog.com/2021/07/stable-channel-update-for-desktop.html
14 Jul 2021 17:26:34
 files touched by this commit commit hash:743e73b1836a808e3dcd0ccf1af9a5f1d6955bfc  1.1_5
sunpoet search for other commits by this committer
security/vuxml: Document ruby vulnerability
14 Jul 2021 16:10:51
 files touched by this commit commit hash:069e58611c7933431ec82b0b9c119677e8d6cc21  1.1_5
sunpoet search for other commits by this committer
security/vuxml: Fix make test

- Respect VUXML_FILE and VUXML_FLAT_FILE [1]
  It allows run "make test" on read-only media (e.g. poudriere jail)
- Copy all vuln XML file to the test directory [2]
  Since vuln.xml has been split into multiple XML files, all of them must be
copied to the test directory.

Without [1], the error message is as follows:
===>  Testing for vuxml-1.1_5
xmllint -noent vuln.xml > vuln-flat.xml
/bin/sh: cannot create vuln-flat.xml: Read-only file system
*** Error code 2
Stop.

Without [2], the error message is as follows:
(Only the first 15 lines of the commit message are shown above View all of this commit message)
13 Jul 2021 12:01:52
 files touched by this commit commit hash:ea4ec27ac98d25b0d077fba948a1e900da3f606d  1.1_5
dmgk search for other commits by this committer
security/vuxml: Document lang/go vulnerability
10 Jul 2021 12:51:01
 files touched by this commit commit hash:c57c61c1215a844e149bc064660734de05c1c888  1.1_5
riggs search for other commits by this committer
security/vuxml: Document vulnerabilities in databases/mantis

PR:		257068
Reported by:	Zoltan ALEXANDERSON BESSE <zab@zltech.eu>
08 Jul 2021 06:49:57
 files touched by this commit commit hash:c7ecdccd9607f5d91df72a90eb65e34f83bf6dfc  1.1_5
mfechner search for other commits by this committer
security/vuxml: Document gitlab vulnerability
04 Jul 2021 20:55:52
 files touched by this commit commit hash:0e1cf83190b530cb73a9c086a4a2ca1d30776996  1.1_5
tcberner search for other commits by this committer
security/vuxml: document vulnerabilities in graphics/exiv2

PR:	256803
03 Jul 2021 05:01:44
 files touched by this commit commit hash:4ec25bf2bc66bfb5397f2f811d9046aab1d853d8  1.1_5
mandree search for other commits by this committer
security/vuxml: document openexr < 3.0.5 vulns

Security:	f2596f27-db4c-11eb-8bc6-c556d71493c9
02 Jul 2021 07:34:26
 files touched by this commit commit hash:b659a4b77f207ce6d4c44b66bf34923433e69ca4  1.1_5
mfechner search for other commits by this committer
security/vuxml: Documented gitlab vulnerabilities.
01 Jul 2021 07:30:09
 files touched by this commit commit hash:72458a2a824c29e3f5a1c07208522a9c49573235  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Let vuln-flat.xml depend on all vuln xml files

So it can get rebuilt when any of vuln xml file changed.

Approved by:	ports-secteam (fluffy, implicitly)
01 Jul 2021 07:28:36
 files touched by this commit commit hash:d68a6ab853630dc058f4fd736e05046d4d166b5e  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Document Jenkins Security Advisory 2021-06-30

Sponsored by:	The FreeBSD Foundation
30 Jun 2021 15:39:09
 files touched by this commit commit hash:73672272c088638676090ca6d2ef53bb91d54df3  1.1_5
otis search for other commits by this committer
security/vuxml: Fix dovecot entry

Fix stray ">" character in a CVE URL.
28 Jun 2021 15:01:36
 files touched by this commit commit hash:2c264eb052ae9177293b608fed7cceb9320bc747  1.1_5
dch search for other commits by this committer
security/vuxml: Add net/rabbitmq CVE-2021-22116 DoS vuln

Security:	CVE-2021-22116
Sponsored by:	SkunkWerks, GmbH
28 Jun 2021 15:01:36
 files touched by this commit commit hash:3ad8c34a571920724d5b47b5b5b22108bdc7455d  1.1_5
dch search for other commits by this committer
security/vuxml: Pet rabbitmq-c entry

make clean validate failed after rebased commit
fix package name error and indentation issues
28 Jun 2021 15:01:36
 files touched by this commit commit hash:69c471ebe0077879c98fb2d66ada7d414dbac592  1.1_5
dch search for other commits by this committer
security/vuxml: Pet puppetdb entry

make clean validate reports a missing stanza
25 Jun 2021 20:46:55
 files touched by this commit commit hash:ac3da0e9b9766f2a2e45824519b54f21b9af7112  1.1_5
dch search for other commits by this committer
security/vuxml:  add entry for net/rabbitmq-c

Sponsored by:   SkunkWerks, GmbH
Security:       CVE-2019-18609
Differential Revision: https://reviews.freebsd.org/D30906
25 Jun 2021 20:03:01
 files touched by this commit commit hash:6f1af3996fe5db1d0509eead3c7cb612060fb973  1.1_5
romain search for other commits by this committer
security/vuxml: Document CVE-2021-27021
25 Jun 2021 17:13:18
 files touched by this commit commit hash:83d998b46c103fff8750466bbac773a8b0297b44  1.1_5
0mp search for other commits by this committer
security/vuxml: Add another package for CVE-2021-3583

Also, fix a copy-paste error. py*-ansible-base are listed twice. The
second entry should list py*-ansible instead.
25 Jun 2021 14:27:15
 files touched by this commit commit hash:73c32ab8aecb03224f406a79958ac5e3811790b4  1.1_5
0mp search for other commits by this committer
security/vuxml: Update Ansible's CVE-2021-3583

It turns out that it affects not only ansible-core, but also some other
ports.
24 Jun 2021 18:50:15
 files touched by this commit commit hash:8801eee4e75edcbb9a2e37304d424d0d2b54558c  1.1_5
otis search for other commits by this committer
security/vuxml: Fix mail/dovecot-pigeonhole vulnerable versions

Correct mail/dovecot-pigeonhole vulnerable versions to proper value.
24 Jun 2021 10:30:56
 files touched by this commit commit hash:46119dd553f18833b20a76623029a24dd4948c58  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Fix CVS name for vid e4cd0b38-c9f9-11eb-87e1-08002750c711

This should fix vuxml.org build.

PR:		256789
24 Jun 2021 10:03:43
 files touched by this commit commit hash:9f71f97163833d903bbf94c5e15434c9f3b4ece1  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Update the doc link and the comment of where to add new entry

Approved by:	ports-secteam (implicitly)
24 Jun 2021 09:59:09
 files touched by this commit commit hash:9db99765e3c443cfe7f59a0c5adfdd46a4380804  1.1_5
0mp search for other commits by this committer
security/vuxml: Document sysutils/py-ansible-core vulnerability

Security:	CVE-2021-3583
23 Jun 2021 18:21:56
 files touched by this commit commit hash:21c57a3d9854730f915fe2a45f4e0e5b66e99c94  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Fix `make validate` to use the latest vuxml file

This is a follow up for 6954792fe916862afd25cf6ce961bd7062dfb21f

Approved by:	ports-secteam (fluffy)
23 Jun 2021 14:34:34
 files touched by this commit commit hash:6954792fe916862afd25cf6ce961bd7062dfb21f  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Create 2021 entity

Let's create a new entity in the beginning of each year and append to it,
instead of massive copying in the end of each year.
23 Jun 2021 10:00:10
 files touched by this commit commit hash:f3e4dbcb5ff2fe2a018f78f396a4247f1dd32cc9  1.1_5
lwhsu search for other commits by this committer
security/vuxml: Fix version range of www/py-aiohttp

This also marks 3.7.4.p0 as fixed.

PR:	256219
22 Jun 2021 16:14:41
 files touched by this commit commit hash:a7e91b4a2f898dba97d195a0ed946b7f70240112  1.1_5
otis search for other commits by this committer
security/vuxml: Document mail/dovecot-pigeonhole vulnerability
22 Jun 2021 16:14:41
 files touched by this commit commit hash:235ae8796642ebb88cee237620c61e4f4e911aed  1.1_5
otis search for other commits by this committer
security/vuxml: Document mail/dovecot vulnerabilities
21 Jun 2021 20:34:11
 files touched by this commit commit hash:c2a2f2b35ad4a23486bd9c1b4ccb50bb5eb75bbc  1.1_5
brd search for other commits by this committer
security/vuxml: Fix range for www/nginx CVE-2021-23017

Reviewed by:	garga
Sponsored by:	Rubicon Communications, LLC ("Netgate")

Number of commits found: 6419 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]