| Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
| Commit | Credits | Log message |
|---|
1.1_3
12 Aug 2017 18:58:32
   |
sunpoet  |
Document Mercurial vulnerability |
1.1_3
11 Aug 2017 22:05:23
|
brnrd |
security/vuxml: Update recent MySQL entry
- Changelog reveals MariaDB 10.0.31 and 10.1.25 vulnerable |
1.1_3
11 Aug 2017 16:34:39
|
adamw |
Match both dovecot and dovecot2.
Submitted by: mat |
1.1_3
11 Aug 2017 16:09:26
|
adamw |
Chase dovecot2's rename to dovecot.
Reported by: remko |
1.1_3
11 Aug 2017 13:59:57
|
lev |
Add CVE-2017-9800 for subversion ports.
Security: http://subversion.apache.org/security/CVE-2017-9800-advisory.txt |
1.1_3
11 Aug 2017 08:05:10
|
tz |
Document GitLab vulnerabilities
Security: CVE-2017-12426
Security:
https://vuxml.FreeBSD.org/freebsd/abcc5ad3-7e6a-11e7-93f7-d43d7e971a1b.html |
1.1_3
11 Aug 2017 00:03:39
|
dbaio |
security/vuxml: Consolidate duplicate Apache Commons FileUpload entries
This also remove a wrong entry that marks tomcat 6 as vulnerable
Approved by: ports-secteam (zi)
Differential Revision: https://reviews.freebsd.org/D11941 |
1.1_3
10 Aug 2017 14:11:07
|
girgen |
Add CVE:s fixed in latest PostgreSQL release |
1.1_3
10 Aug 2017 05:54:24
|
jkim |
Document latest Flash Player vulnerabilities.
https://helpx.adobe.com/security/products/flash-player/apsb17-23.html |
1.1_3
09 Aug 2017 07:18:42
|
brnrd |
security/vuxml: Document today's cURL vulnerabilities |
1.1_3
09 Aug 2017 00:27:45
|
dbaio |
security/vuxml: Document axis2 vulnerability
Security: CVE-2016-1000031 |
1.1_3
08 Aug 2017 17:25:43
|
jbeich |
security/vuxml: mark firefox < 55 as vulnerable |
1.1_3
08 Aug 2017 16:48:21
|
feld |
Update sqlite3 vuxml entry
The lower bound was incorrect. It has existed much longer than 3.17.0. |
1.1_3
08 Aug 2017 13:29:43
|
feld |
Document sqlite3 vulnerability
Security: CVE-2017-10989 |
1.1_3
05 Aug 2017 03:37:00
|
feld |
Fix Strongswan entries
PR: 220874 |
1.1_3
02 Aug 2017 18:43:23
|
feld |
Document varnish vulnerability
Security: https://varnish-cache.org/security/VSV00001.html |
1.1_3
02 Aug 2017 00:28:29
|
cpm |
Document new vulnerabilities in www/chromium < 60.0.3112.78
Obtained
from: https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html |
1.1_3
29 Jul 2017 14:45:29
|
dbaio |
security/vuxml: Document vulnerability in cacti v1.1.13
Security: CVE-2017-11691 |
1.1_3
27 Jul 2017 09:55:29
|
mm |
security/vuxml: fix indent in last entry |
1.1_3
27 Jul 2017 09:53:52
|
mm |
security/vuxml: Add proftpd chroot secape vulnerability
Security: CVE-2017-7418 |
1.1_3
26 Jul 2017 15:06:28
|
mm |
security/vuxml: Add jabberd vulnerability
PR: 221014
Security: CVE-2017-10807 |
1.1_3
25 Jul 2017 18:17:21
|
kwm |
Document webkit2-gtk3 CVE's |
1.1_3
25 Jul 2017 12:27:58
|
swills |
Document gsoap vulnerability |
1.1_3
23 Jul 2017 18:19:06
|
brnrd |
security/vuxml: Add Percona to recent MySQL vulns
Security: cda2f3c2-6c8b-11e7-867f-b499baebfeaf |
1.1_3
23 Jul 2017 14:19:04
|
brnrd |
security/vuxml: Correct MySQL versions
Security: cda2f3c2-6c8b-11e7-867f-b499baebfeaf |
1.1_3
21 Jul 2017 14:38:40
|
olivier |
Fix collectd5's range version
Reported by: romain |
1.1_3
20 Jul 2017 08:45:11
|
tz |
Document GitLab vulnerabilities |
1.1_3
19 Jul 2017 14:45:31
|
brnrd |
security/vuxml: Document MySQL vulnerabilities |
1.1_3
19 Jul 2017 10:38:09
|
olivier |
Fix vuxmlbuild by replacing lower case by upper case in cvename
Reported by: bz |
1.1_3
19 Jul 2017 10:13:45
|
olivier |
Document vulnerability in collectd5
PR: 220797
Reported by: luca.pizzamiglio@gmail.com
Security: CVE-2017-7401 |
1.1_3
19 Jul 2017 09:43:30
|
olivier |
Document vulnerability in strongswan
PR: 220823
Reported by: i.dani@outlook.com
Security: CVE-2017-9022
Security: CVE-2017-9023 |
1.1_3
17 Jul 2017 14:22:07
|
dbaio |
security/vuxml: Document vulnerability in cacti
Security: CVE-2017-10970
Approved by: garga (mentor)
Differential Revision: https://reviews.freebsd.org/D11611 |
1.1_3
13 Jul 2017 18:45:06
|
brnrd |
security/vuxml: Document vulnerability in apache24 |
1.1_3
13 Jul 2017 17:42:14
|
jkim |
Document latest Flash Player vulnerabilities.
https://helpx.adobe.com/security/products/flash-player/apsb17-21.html |
1.1_3
13 Jul 2017 15:05:03
|
timur |
Add an entry for the CVE-2017-11103 in Samba.
Security: CVE-2017-11103 |
1.1_3
13 Jul 2017 10:57:19
|
bhughes |
ecurity/vuxml: add node.js vulnerabilities announced 2017-07-11
The vulnerability in the bundled c-ares dependency is not included,
since the Node.js ports use dns/c-ares as a dependency instead.
Approved by: mat (co-mentor)
MFH: 2017Q3
Security: http://www.vuxml.org/freebsd/3eff66c5-66c9-11e7-aa1d-3d2e663cef42.html
Differential Revision: https://reviews.freebsd.org/D11561 |
1.1_3
12 Jul 2017 00:06:23
|
osa |
Document nginx security advisory (CVE-2017-7529). |
1.1_3
08 Jul 2017 23:44:57
|
junovitch |
Document security issue fixed in CodeIgniter 3.1.5
Security: https://vuxml.FreeBSD.org/freebsd/aaedf196-6436-11e7-8b49-002590263bf5.html |
1.1_3
08 Jul 2017 14:15:24
|
feld |
Document irssi vulnerabilities
PR: 220544
Security: CVE-2017-10965
Security: CVE-2017-10966 |
1.1_3
07 Jul 2017 10:34:52
|
brnrd |
security/vuxml: Fix <url> for latest PHP entry |
1.1_3
07 Jul 2017 07:59:54
|
brnrd |
security/vuxml: Register oniguruma/php-mbstring vulns |
1.1_3
06 Jul 2017 19:26:54
|
acm |
- Add drupal7 to vuxml entry |
1.1_3
06 Jul 2017 18:47:12
|
acm |
- Document new vulnerabilities in www/drupal8 < 8.3.4 |
1.1_3
05 Jul 2017 06:33:07
|
danfe |
Another round of spelling fixes, covering entries of the year 2015. |
1.1_3
04 Jul 2017 19:01:06
|
danfe |
Fix a bunch of noticed typos and spelling mistakes, covering years
2016-2017. Some of those are so common that I've taken liberty to
fix them all over the file. |
1.1_3
03 Jul 2017 19:29:40
|
ultima |
Added vxvml entry for security/dropbear
PR: 220158
Submitted by: Piotr Kubaj <pkubaj@anongoth.pl> (maintainer)
Reviewed by: lifanov (mentor)
Approved by: lifanov (mentor)
MFH: 2017Q3
Security: http://www.vuxml.org/freebsd/60931f98-55a7-11e7-8514-589cfc0654e1.html
Differential Revision: https://reviews.freebsd.org/D11400 |
1.1_3
03 Jul 2017 09:30:03
|
brnrd |
security/vuxml: Document smarty3 shell injection vuln |
1.1_3
30 Jun 2017 13:01:13
|
cpm |
- Document libgcrypt side-channel attack on RSA secret keys
Security: CVE-2017-7526 |
1.1_3
30 Jun 2017 12:25:37
|
tz |
Document GitLab vulnerabilities |
1.1_3
30 Jun 2017 11:05:28
|
amdmi3 |
- Document tor security regression
Security: CVE-2017-0377 |
1.1_3
30 Jun 2017 07:04:38
|
brnrd |
security/vuxml: Correct apache22 version
- vulns fixed in unreleased 2.2.33
Reported by: filis (irc) |
1.1_3
21 Jun 2017 22:24:25
|
vsevolod |
Document Stack Clash vulnerability related to Exim |
1.1_3
21 Jun 2017 20:42:13
|
mm |
Document pear-Horde_Image vulnerabilities.
Security: CVE-2017-9773
Security: CVE-2017-9774 |
1.1_3
21 Jun 2017 17:20:10
|
mandree |
Document OpenVPN vulnerabilities.
Security: 9f65d382-56a4-11e7-83e3-080027ef73ec
Security: CVE-2017-7508
Security: CVE-2017-7512
Security: CVE-2017-7520
Security: CVE-2017-7521
Security: CVE-2017-7522 |
1.1_3
21 Jun 2017 07:27:28
|
brnrd |
security/vuxml: Fix entry uppercasing
- Introduced in 443943 |
1.1_3
20 Jun 2017 07:05:15
|
brnrd |
security/vuxml: Document Apache httpd vulnerabilities |
1.1_3
16 Jun 2017 10:52:28
|
cpm |
Document new vulnerabilities in www/chromium < 59.0.3071.104
Obtained
from: https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop_15.html |
1.1_3
15 Jun 2017 21:58:23
|
sunpoet |
Document cURL vulnerability |
1.1_3
15 Jun 2017 20:54:28
|
matthew |
Fix the range of vulnerable versions for p5-RT-Authen-ExternalAuth --
BestPractical have released a tarball of patches, but they've also
pushed 0.27 up to CPAN and that has the fixes incorporated. |
1.1_3
15 Jun 2017 20:42:51
|
matthew |
Document multiple vulnerabilities in www/rt42, www/rt44 and
www/p5-RT-Authen-ExternalAuth |
1.1_3
15 Jun 2017 18:26:53
|
jkim |
Document latest Flash Player vulnerabilities.
https://helpx.adobe.com/security/products/flash-player/apsb17-17.html |
1.1_3
13 Jun 2017 19:56:08
|
jbeich |
security/vuxml: mark firefox < 54 as vulnerable |
1.1_3
10 Jun 2017 06:12:55
|
woodsb02 |
Correct vulnerable versions of security/heimdal after the security fix
was backported in 7.1.0_3
PR: 219657
Security: CVE-2017-6594 |
1.1_3
09 Jun 2017 18:20:05
|
feld |
Document roundcube vulnerability
PR: 219789 |
1.1_3
08 Jun 2017 17:08:50
|
tijl |
Document GNUTLS-SA-2017-4.
Security: https://gnutls.org/security.html#GNUTLS-SA-2017-4 |
1.1_3
08 Jun 2017 00:24:48
|
zi |
- Document remote DoS in irc/irssi |
1.1_3
06 Jun 2017 15:05:42
|
cpm |
Document new vulnerabilities in www/chromium < 59.0.3071.86
Obtained
from: https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop.html |
1.1_3
02 Jun 2017 19:46:51
|
lifanov |
Document vulnerability in sysutils/ansible (CVE-2017-7481) |
1.1_3
01 Jun 2017 15:27:43
|
zi |
- Document authentication bypass in security/duo |
1.1_3
01 Jun 2017 13:50:46
|
zi |
- Document vulnerability in net/freeradius3 (CVE-2017-9148) |
1.1_3
31 May 2017 15:30:02
|
feld |
Document heimdal vulnerability
PR: 219657
Security: CVE-2017-6594 |
1.1_3
30 May 2017 13:21:27
|
tz |
Modify GitLab entries:
- wrap long lines
- add missing modfied |
1.1_3
30 May 2017 10:26:22
|
kwm |
Update imagemagick entry
* Fix indention
* Add ranges to the imagemagick 6 version check, to prep for
ImageMagick patch for the branch.
* Add portepoch's to the imagemagick 6 versions.
* Bump imagemagick 6 version. This version fixes at least one of
the mentioned CVE's.
* Change CVE-2017-8365 to CVE-2017-8765. CVE-2017-8365 is a
libsndfile CVE.
* Add modified tag. |
1.1_3
30 May 2017 08:01:33
|
brnrd |
security/vuxml: Fix latest ImageMagick entry
- Fix case in pkgname
- Add version 7
- add -nox pkgnamesuffix
PR: 219497
Submitted by: Dani <i.dani@outlook.com> |
1.1_3
26 May 2017 12:25:36
|
feld |
Document FreeBSD-SA-17:04.ipfilter |
1.1_3
26 May 2017 12:24:33
|
feld |
Document FreeBSD-SA-17:03.ntp |
1.1_3
26 May 2017 12:23:42
|
feld |
Add missing info for FreeBSD-SA-17:02.openssl |
1.1_3
26 May 2017 07:38:18
|
riggs |
Document remote code execution via subtitles in multimedia/vlc |
1.1_3
25 May 2017 22:12:55
|
mandree |
Document OpenEXR 2.2.0 vulnerabilities
Reported by: Brandon Perry
Security: 803879e9-4195-11e7-9b08-080027ef73ec
Security: CVE-2017-9116
Security: CVE-2017-9115
Security: CVE-2017-9114
Security: CVE-2017-9113
Security: CVE-2017-9112
Security: CVE-2017-9111
Security: CVE-2017-9110 |
1.1_3
25 May 2017 20:51:48
|
brnrd |
security/vuxml: Document ImageMagick vulnerabilities
PR: 219497
Reported by: dani <i.dani@outlook.com> |
1.1_3
24 May 2017 09:31:53
|
brnrd |
security/vuxml: Document samba RCE vulnerability
- Add entry for samba
- Fix tabs/space previous entry
Security: CVE-2017-7494 |
1.1_3
23 May 2017 09:18:05
|
danfe |
Document another round of multiple vulnerabilities found in the kernel
mode layer handler of nVidia GPU display driver.
Security: CVE-2017-0350, CVE-2017-0351, CVE-2017-0352
PR: 219465
Submitted by: Andrew Marks |
1.1_3
22 May 2017 08:58:45
|
dinoex |
- add miniupnpc CVE-2017-8798 |
1.1_3
22 May 2017 08:29:27
|
miwi |
- Fix spelling
Reported by: remko |
1.1_3
22 May 2017 07:16:13
|
joneum |
- Document Wordpress multible vulnerabilities
Approved by: miwi (mentor)
Differential Revision: https://reviews.freebsd.org/D10789 |
1.1_3
19 May 2017 22:59:56
|
madpilot |
Document net/asterisk13 and net/pjsip vulnerabilities. |
1.1_3
18 May 2017 20:08:49
|
ler |
Clean up joomla3 entry.
Submitted by: zi |
1.1_3
18 May 2017 17:21:08
|
ler |
Add cvename |
1.1_3
18 May 2017 17:18:44
|
ler |
Add entry for Joomla3 20170501. |
1.1_3
18 May 2017 10:58:06
|
tz |
Document recent GitLab vulnerabilities.
Security:
https://vuxml.FreeBSD.org/freebsd/9704930c-3bb7-11e7-93f7-d43d7e971a1b.html |
1.1_3
18 May 2017 10:47:25
|
tz |
Fix name of old gitlab-entry, its gitlab instead of rubygem-gitlab |
1.1_3
18 May 2017 10:45:58
|
tz |
Document GitLab vulnerabilities.
Security: CVE-2017-0882
Security:
https://vuxml.FreeBSD.org/freebsd/5d62950f-3bb5-11e7-93f7-d43d7e971a1b.html |
1.1_3
18 May 2017 08:44:08
|
kwm |
Document freetype2 vulnability.
Security: CVE-2017-8105, CVE-2017-8287 |
1.1_3
11 May 2017 20:27:59
|
mandree |
Add openvpn < 2.3.15/< 2.4.2 DoS vuln.
https://community.openvpn.net/openvpn/wiki/QuarkslabAndCryptographyEngineerAudits
Reported by: Samuli Seppanen
Security: 04cc7bd2-3686-11e7-aa64-080027ef73ec
Security: CVE-2017-7478
Security: CVE-2017-7479 |
1.1_3
11 May 2017 14:23:56
|
girgen |
Add information about vulnerabilities in PostgreSQL
Security: CVE-2017-7484 CVE-2017-7485 CVE-2017-7486 |
1.1_3
10 May 2017 12:02:02
|
tcberner |
Document kauth privilege escalation.
Reviewed by: rakuco
Approved by: rakuco (mentor)
Security: CVE-2017-8422
Differential Revision: https://reviews.freebsd.org/D10660 |
1.1_3
09 May 2017 21:45:41
|
pawel |
Document mail/libetpan null dereference vulnerability |
1.1_3
04 May 2017 21:49:07
|
jkim |
CVE-2017-7867 and CVE-2017-7868 were fixed in r440117. |
1.1_3
03 May 2017 22:41:59
|
cpm |
Document new vulnerability in www/chromium < 58.0.3029.96
Obtained
from: https://chromereleases.googleblog.com/2017/05/stable-channel-update-for-desktop.html |
1.1_3
30 Apr 2017 21:36:36
|
ler |
security/vuxml: Document dovecot2 vulnerability
PR: 218671
Approved by: adamw (mentor, implicit), ports-secteam (maintainer timeout)
Security: CVE-2017-2669 |
As an Amazon Associate I earn from qualifying purchases.
