| Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
| Commit | Credits | Log message |
|---|
1.1_3
20 Mar 2018 22:36:05
   |
sunpoet  |
Document rubygem-loofah vulnerability |
1.1_3
19 Mar 2018 15:14:29
|
sunpoet |
Document py-notebook vulnerability |
1.1_3
19 Mar 2018 07:34:58
|
riggs |
Document zero-day remote vulnerability in mail/squirrelmail
Reported by: Roger Marquis <marquis@roble.com> via e-mail
Security: CVE-2018-8741 |
1.1_3
17 Mar 2018 17:51:52
|
jrm |
security/vuxml: mark slurm-wlm < 17.02.10 as vulnerable
Security: CVE-2018-7033 |
1.1_3
16 Mar 2018 21:07:22
|
jbeich |
security/vuxml: mark libvorbis < 1.3.6 as vulnerable |
1.1_3
16 Mar 2018 13:12:45
|
jbeich |
security/vuxml: bump waterfox version after r464679 |
1.1_3
14 Mar 2018 23:38:36
|
mandree |
Mark e2fsprogs < 1.44.0 vulnerable. |
1.1_3
14 Mar 2018 14:54:54
|
feld |
Initial entry for the speculative execution vulnerability
(FreeBSD-SA-18:03.speculative_execution) |
1.1_3
14 Mar 2018 14:53:22
|
feld |
Update NTP entry to add the FreeBSD SA information (FreeBSD-SA-18:02.ntp) |
1.1_3
14 Mar 2018 14:49:55
|
feld |
Document FreeBSD-SA-18:01.ipsec |
1.1_3
13 Mar 2018 17:25:25
|
jkim |
Document the latest Flash Player vulnerability.
https://helpx.adobe.com/security/products/flash-player/apsb18-05.html |
1.1_3
13 Mar 2018 17:08:05
|
jbeich |
security/vuxml: mark firefox < 59 as vulnerable |
1.1_3
13 Mar 2018 10:51:03
|
timur |
Add an entry for Samba vulnerabilities CVE-2018-1050 and CVE-2018-1057
Security: CVE-2018-1050
CVE-2018-1057 |
1.1_3
10 Mar 2018 19:08:08
|
tijl |
Document mbed TLS Security Advisory 2018-01.
Security: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2018-01
Security: CVE-2018-0487
Security: CVE-2018-0488 |
1.1_3
08 Mar 2018 19:28:06
|
riggs |
Document vulnerabilities in www/chromium before 65.0.3325.146
Submitted by: Tommi Pernila <tommi.pernila@iki.fi> (via e-mail) |
1.1_3
04 Mar 2018 22:40:44
|
cmt |
document vulnerabilities for net/wireshark{,-lite,qt5} and net/tshark{,-lite}
PR: 226355
Obtained from: https://www.wireshark.org/security/ |
1.1_3
02 Mar 2018 17:01:15
|
zi |
- Document vulnerabilities (CVE-2018-5732, CVE-2018-5733) in isc-dhcp ports |
1.1_3
01 Mar 2018 23:52:56
|
jhale |
Document additional vulnerabilities in audio/libsndfile |
1.1_3
01 Mar 2018 15:58:44
|
girgen |
Document PostgreSQL vulnerability
Security: CVE-2018-1058 |
1.1_3
01 Mar 2018 13:48:59
|
garga |
Document strongswan vulnerability
PR: 226043
Submitted by: strongswan@Nanoteq.com
Security: CVE-2018-6459
Sponsored by: Rubicon Communications, LLC (Netgate) |
1.1_3
01 Mar 2018 06:49:19
|
jhale |
Document vulnerability in audio/libsndfile and audio/linux-c[6|7]-libsndfile |
1.1_3
28 Feb 2018 07:35:27
|
delphij |
Document multiple NTP vulnerabilities. |
1.1_3
27 Feb 2018 20:22:56
|
riggs |
Document CVE-2018-6056 in chromium 64.0.3282.167
Reported by: Tommi Pernila <tommi.pernila@iki.fi> (via e-mail) |
1.1_3
27 Feb 2018 20:15:40
|
riggs |
Document multiple vulnerabilities in chromium 64.0.3282.119
Reported by: Tommi Pernila <tommi.pernila@iki.fi> (via e-mail) |
1.1_3
27 Feb 2018 20:03:57
|
riggs |
Document CVE-2018-1304 and CVE-2018-1305 in Apache Tomcat
Submitted by: Roger Marquis <marquis@roble.com> via e-mail |
1.1_3
27 Feb 2018 15:22:33
|
girgen |
Document security problems with shibboleth-sp
Security: CVE-2018-0489 |
1.1_3
25 Feb 2018 19:39:06
|
joneum |
Document multiple vulnerabilities in www/drupal7 and www/drupal8
Security: CVE-2017-6927
Security: CVE-2017-6928
Security: CVE-2017-6929
Security: CVE-2017-6930
Security: CVE-2017-6931
Security: CVE-2017-6932 |
1.1_3
25 Feb 2018 10:44:31
|
tota |
- Fix range for ja-mailman in CVE-2018-5950 |
1.1_3
24 Feb 2018 09:14:43
|
riggs |
Document ssh injection vulnerability in devel/cvs
PR: 226088
Reported by: fk@fabiankeil.de
Security: CVE-2017-12836 |
1.1_3
23 Feb 2018 22:00:38
|
dbaio |
security/vuxml: Document vulnerability in editors/libreoffice
Security: CVE-2018-6871
PR: 225797
Submitted by: Vladimir Krstulja <vlad-fbsd@acheronmedia.com> |
1.1_3
23 Feb 2018 13:25:10
|
dbaio |
security/vuxml: Document vulnerabilities in www/squid
Security: CVE-2018-1000024
Security: CVE-2018-1000027
PR: 226138
Submitted by: Yasuhiro KIMURA <yasu@utahime.org> |
1.1_3
22 Feb 2018 19:42:21
|
dbaio |
security/vuxml: Fix freebsdpr entry (r462310) |
1.1_3
22 Feb 2018 10:16:57
|
madpilot |
Document new asterisk and pjsip vulnerabilities. |
1.1_3
22 Feb 2018 07:15:40
|
matthew |
Document the latest phpMyAdmin security advisory PMASA-2018-1 |
1.1_3
21 Feb 2018 09:12:34
|
tz |
Document GitLab Vulnerability
Security:
https://vuxml.FreeBSD.org/freebsd/86291013-16e6-11e8-ae9f-d43d7e971a1b.html |
1.1_3
19 Feb 2018 12:24:51
|
dbaio |
security/vuxml: Document multiple vulnerabilities in irc/irssi
Security: CVE-2018-7054
Security: CVE-2018-7053
Security: CVE-2018-7052
Security: CVE-2018-7051
Security: CVE-2018-7050
PR: 226001
Reported by: tj@mrsk.me (email)
Reported by: David O'Rourke <dor.bsd@xm0.uk> |
1.1_3
17 Feb 2018 19:09:56
|
adamw |
Add Mojolicious vulnerability, for which there is very little
information about the actual issue. |
1.1_3
17 Feb 2018 09:42:12
|
ohauer |
- document bugzilla44 and bugzilla50 CVE issue |
1.1_3
16 Feb 2018 16:56:07
|
leres |
Mark bro < 2.5.3 as vulnerable as per:
http://blog.bro.org/2018/02/bro-253-released-security-update.html
Reviewed by: matthew (mentor)
Approved by: matthew (mentor)
Differential Revision: https://reviews.freebsd.org/D14395 |
1.1_3
16 Feb 2018 15:43:37
|
sunpoet |
Fix typo |
1.1_3
16 Feb 2018 03:38:13
|
swills |
Document consul issue |
1.1_3
16 Feb 2018 01:02:03
|
leres |
Mark bro < 2.5.2 as vulnerable as per:
http://blog.bro.org/2017/10/bro-252-242-release-security-update.html
Reviewed by: ler (mentor)
Approved by: ler (mentor)
Security: CVE-2017-1000458
Differential Revision: https://reviews.freebsd.org/D14394 |
1.1_3
15 Feb 2018 22:20:07
|
pi |
security/vuxml: 4 CVEs for net/quagga |
1.1_3
15 Feb 2018 17:42:17
|
jhale |
Document vulnerabilities in graphics/libraw |
1.1_3
14 Feb 2018 21:02:34
|
yuri |
VulnXML: Bitmessage vulnerability
No CVE is available. CVE is requested.
The bitmessage port will be updated shortly.
Approved by: tcberner |
1.1_3
14 Feb 2018 17:42:41
|
swills |
Document Jenkins vulnerability |
1.1_3
13 Feb 2018 23:40:29
|
yuri |
VulnXML records for vulnerabilities of sysutils/bchunk fixed in the upcoming
update to 1.2.2 (bug#225772)
Approved by: tcberner (mentor, implicit) |
1.1_3
13 Feb 2018 09:23:13
|
vsevolod |
- Document www/uwsgi vulnerability |
1.1_3
13 Feb 2018 09:16:52
|
vsevolod |
- Fix URL in blockquote
Reported by: remko via private email |
1.1_3
11 Feb 2018 22:03:26
|
cpm |
Correct affected version of Mpv |
1.1_3
11 Feb 2018 16:52:31
|
sunpoet |
Document python vulnerability |
1.1_3
11 Feb 2018 11:00:36
|
ehaupt |
Document vulnerability in finance/electrum and finance/electrum2.
PR: 225056
Submitted by: pete@nomadlogic.org, vermaden@interia.pl (via mail)
Security: CVE-2018-6353 |
1.1_3
10 Feb 2018 21:45:06
|
dbaio |
security/vuxml: Document vulnerability in net-p2p/libtorrent
PR: 224664
Reported by: Henry David Bartholomew <PopularMoment@protonmail.com> |
1.1_3
10 Feb 2018 19:29:23
|
vsevolod |
- Document CVE-2018-6789 in mail/exim
Security: 316b3c3e-0e98-11e8-8d41-97657151f8c2 |
1.1_3
10 Feb 2018 10:57:07
|
rakuco |
Add entries for CVE-2017-17969 and CVE-2018-5996 in p7zip
Security: CVE-2017-17969
Security: CVE-2018-5996 |
1.1_3
09 Feb 2018 20:03:06
|
cpm |
Document vulnerability in Mpv
PR: 225783
Submitted by: Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Obtained from: https://nvd.nist.gov/vuln/detail/CVE-2018-6360
Security: CVE-2018-6360 |
1.1_3
08 Feb 2018 22:38:14
|
mandree |
Extend mailman CVE-2018-5950 vuln entry to mailman-with-htdig
Security: 3d0eeef8-0cf9-11e8-99b0-d017c2987f9a
Security: CVE-2018-5950 |
1.1_3
08 Feb 2018 22:23:59
|
mandree |
Document Mailman vulnerability
PR: 225767
Submitted by: Vladimir Krstulja
Reviewed by: Matthias Andree
Security: CVE-2018-5950
Security: 3d0eeef8-0cf9-11e8-99b0-d017c2987f9a |
1.1_3
08 Feb 2018 17:32:54
|
girgen |
Add security notice for PostgreSQL
Security: CVE-2018-1052
Security: CVE-2018-1053 |
1.1_3
08 Feb 2018 17:02:01
|
pi |
security/vuxml: Document recent tiff CVEs
PR: 225545
Submitted by: Yasuhiro KIMURA <yasu@utahime.org> |
1.1_3
06 Feb 2018 21:39:10
|
jkim |
Document the latest Flash Player vulnerability.
https://helpx.adobe.com/security/products/flash-player/apsb18-03.html |
1.1_3
06 Feb 2018 01:38:47
|
leres |
Mark mini_httpd < 1.28 and thttpd < 2.28 as vulnerable as per:
http://acme.com/updates/archive/199.html
While we're here, fix whitespace in vuln.xml that "make validate"
flagged.
Reviewed by: ler (mentor)
Approved by: ler (mentor)
Security: CVE-2017-17663
Differential Revision: D14217 |
1.1_3
05 Feb 2018 05:07:25
|
yuri |
Adding VuXML record for vulnerability CVE-2017-15924 in net/shadowsocks-libev.
D14200 (part I).
The next commit will update net/shadowsocks-libev and fix this
vulnerability.
PR: 225442
Submitted by: myself
Approved by: adamw (mentor)
Differential Revision: https://reviews.freebsd.org/D14200 |
1.1_3
03 Feb 2018 18:10:32
|
nobutaka |
Add modification date for the entry of w3m vulnerabilities.
Spotted by: dbaio |
1.1_3
03 Feb 2018 13:35:04
|
nobutaka |
Update entry of w3m vulnerabilities.
PR: 225611
Submitted by: D. Ebdrup <debdrup@gmail.com> |
1.1_3
03 Feb 2018 10:27:05
|
tobik |
Document www/palemoon vulnerabilities
PR: 225644
Security: CVE-2018-5102
Security: CVE-2018-5122 |
1.1_3
02 Feb 2018 19:55:34
|
sunpoet |
Document django vulnerability |
1.1_3
02 Feb 2018 18:20:05
|
brd |
Document vulns in www/w3m.
PR: 225611
Submitted by: D. Ebdrup <debdrup@gmail.com> |
1.1_3
01 Feb 2018 13:26:01
|
zeising |
Update range for dovecot vulnerability. |
1.1_3
31 Jan 2018 21:38:08
|
jbeich |
security/vuxml: mark waterfox < 56.0.3.65 as vulnerable |
1.1_3
30 Jan 2018 17:20:13
|
zeising |
Add modified date, forgotten in r460325 |
1.1_3
30 Jan 2018 00:53:51
|
jbeich |
security/vuxml: mark firefox < 58.0.1 as vulnerable |
1.1_3
30 Jan 2018 00:53:32
|
jbeich |
security/vuxml: bump min waterfox version with FF58 fixes |
1.1_3
29 Jan 2018 21:17:39
|
tijl |
Update range for linux-*-nss.
PR: 225541
Submitted by: dbn
Security: https://access.redhat.com/errata/RHSA-2017:2832 |
1.1_3
29 Jan 2018 19:17:49
|
zeising |
FIx range for dovecot
2.2.33.2_2 is vulnerable. |
1.1_3
27 Jan 2018 09:10:41
|
kwm |
Document gcab stack overflow.
Security: CVE-2018-5345 |
1.1_3
26 Jan 2018 14:37:23
|
swills |
Document dovecot issue
Submitted by: Roger Marquis <marquis@roble.com> |
1.1_3
26 Jan 2018 14:28:07
|
swills |
Document curl issue
Submitted by: Roger Marquis <marquis@roble.com> |
1.1_3
26 Jan 2018 13:23:59
|
cmt |
document recent clamav vulnerabilities
See: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html |
1.1_3
26 Jan 2018 09:00:48
|
amdmi3 |
Fix wordpress entries in vuxml
- Fix incorrect package names
- Fix epoch in older entry which makes it incorrectly report fresh ports as
vulnerable
With hat: ports-secteam |
1.1_3
23 Jan 2018 23:07:10
|
jbeich |
security/vuxml: seamonkey 2.49.2 will use firefox-esr 52.6 engine |
1.1_3
23 Jan 2018 18:43:33
|
jbeich |
security/vuxml: mark firefox < 58 as vulnerable |
1.1_3
23 Jan 2018 11:33:33
|
krion |
Fix typo. |
1.1_3
23 Jan 2018 11:23:42
|
krion |
Document new vulnerability in dns/powerdns-recursor < 4.1.1
Obtained
from: https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2018-01.html
Security: CVE-2018-1000003 |
1.1_3
23 Jan 2018 02:05:40
|
cpm |
Document new vulnerabilities in www/chromium < 63.0.3239.108
Obtained
from: https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop_14.html
Security: CVE-2017-15429 |
1.1_3
23 Jan 2018 01:53:49
|
cpm |
Document new vulnerabilities in www/chromium < 63.0.3239.84
Obtained
from: https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.html |
1.1_3
23 Jan 2018 00:39:12
|
cpm |
Document new vulnerability in www/chromium < 62.0.3202.94
Obtained
from: https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop_13.html
Security: CVE-2017-15428 |
1.1_3
22 Jan 2018 23:47:21
|
cpm |
Add missing entry for www/chromium
Security: CVE-2017-15406 |
1.1_3
19 Jan 2018 16:43:36
|
girgen |
Add more information about the recents security notice for shibboleth2-sp |
1.1_3
19 Jan 2018 15:12:47
|
dbaio |
security/vuxml: Document vulnerability in dns/unbound
Security: CVE-2017-15105
PR: 225313
Reported by: jaap@NLnetLabs.nl |
1.1_3
19 Jan 2018 13:01:22
|
joneum |
Document phpbb3 issues
Approved by: tz (mentor)
Differential Revision: https://reviews.freebsd.org/D13983 |
1.1_3
19 Jan 2018 12:45:26
|
brnrd |
security/vuxml: Fix tabs and spaces settings |
1.1_3
19 Jan 2018 12:44:12
|
brnrd |
security/vuxml: Document 2018Q1 Oracle MySQL vulns |
1.1_3
19 Jan 2018 06:15:16
|
joneum |
Document wordpress issues
Approved by: tcberner (mentor)
Differential Revision: https://reviews.freebsd.org/D13954 |
1.1_3
17 Jan 2018 20:50:17
|
swills |
Document GitLab issue |
1.1_3
14 Jan 2018 02:19:47
|
woodsb02 |
Document DNS rebinding vulnerabilities in net-p2p/transmission-daemon
PR: 225150
Security: https://www.vuxml.org/freebsd/3e5b8bd3-0c32-452f-a60e-beab7b762351.html |
1.1_3
12 Jan 2018 17:23:33
|
girgen |
Document vulnerability of devel/xmltooling
security/shibboleth2-sp depends on the xmltooling port
Security: CVE-2018-0486 |
1.1_3
11 Jan 2018 21:18:15
|
adamw |
Add vim-console instead of replacing vim-list.
Reported by: ohauer |
1.1_3
11 Jan 2018 20:36:16
|
adamw |
Chase the vim-lite -> vim-console rename |
1.1_3
09 Jan 2018 21:25:14
|
jkim |
Document the latest Flash Player vulnerability.
https://helpx.adobe.com/security/products/flash-player/apsb18-01.html |
As an Amazon Associate I earn from qualifying purchases.
