notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Want a good monitor light? See my photosAll times are UTC
Ukraine
This referral link gives you 10% off a Fastmail.com account and gives me a discount on my Fastmail account.

Get notified when packages are built

A new feature has been added. FreshPorts already tracks package built by the FreeBSD project. This information is displayed on each port page. You can now get an email when FreshPorts notices a new package is available for something on one of your watch lists. However, you must opt into that. Click on Report Subscriptions on the right, and New Package Notification box, and click on Update.

Finally, under Watch Lists, click on ABI Package Subscriptions to select your ABI (e.g. FreeBSD:14:amd64) & package set (latest/quarterly) combination for a given watch list. This is what FreshPorts will look for.

Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_6 security on this many watch lists=31 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 1.1_6Version of this port present on the latest quarterly branch.
Maintainer: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2004-02-12 14:24:23
Last Update: 2024-03-29 07:52:06
Commit Hash: 5f4e773
People watching this port, also watch:: gnupg, curl, libxml2, nmap, vim
Also Listed In: textproc
License: BSD2CLAUSE
WWW:
https://vuxml.freebsd.org/
Description:
VuXML (the Vulnerability and eXposure Markup Language) is an XML application for documenting security bugs and corrections within a software package collection such as the FreeBSD Ports Collection. This port installs the DTDs required for validating VuXML documents.
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (13 items)
Collapse this list.
  1. /usr/local/share/licenses/vuxml-1.1_6/catalog.mk
  2. /usr/local/share/licenses/vuxml-1.1_6/LICENSE
  3. /usr/local/share/licenses/vuxml-1.1_6/BSD2CLAUSE
  4. @xmlcatmgr share/xml/dtd/vuxml/catalog
  5. @xmlcatmgr share/xml/dtd/vuxml/catalog.xml
  6. share/xml/dtd/vuxml/vuxml-10.dtd
  7. share/xml/dtd/vuxml/vuxml-11.dtd
  8. share/xml/dtd/vuxml/vuxml-model-10.mod
  9. share/xml/dtd/vuxml/vuxml-model-11.mod
  10. share/xml/dtd/vuxml/xml1.dcl
  11. @owner
  12. @group
  13. @mode
Collapse this list.
Dependency lines:
  • vuxml>0:security/vuxml
To install the port:
cd /usr/ports/security/vuxml/ && make install clean
To add the package, run one of these commands:
  • pkg install security/vuxml
  • pkg install vuxml
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: vuxml
Flavors: there is no flavor information for this port.
distinfo:
SHA256 (vuxml/vuxml-10.dtd) = 6a635ad2cf45f52361c8c2a29a689157fad4d00519045485bc822d34e04a524e SIZE (vuxml/vuxml-10.dtd) = 2986 SHA256 (vuxml/vuxml-model-10.mod) = 051fed00b52bedde8ee901003fc29f7b95cd904157e31ceef34e6b06f2d1a14a

Expand this list (11 items)

Collapse this list.

SIZE (vuxml/vuxml-model-10.mod) = 10599 SHA256 (vuxml/vuxml-11.dtd) = 12b50061d7bb34cecffede2e08d439e4469324376d55aeb7c73eb6aab0f36af1 SIZE (vuxml/vuxml-11.dtd) = 3063 SHA256 (vuxml/vuxml-model-11.mod) = a40777208625a3029c6f416aeeea733f614802a6a5f26035a4e445a09e61a47c SIZE (vuxml/vuxml-model-11.mod) = 13282 SHA256 (vuxml/xml1.dcl) = 343efa94c4e1302e85e08b2d1791d86e50aac1ecdbc3161daecac100e4726847 SIZE (vuxml/xml1.dcl) = 7372 SHA256 (vuxml/catalog) = 479a69cf02995603443fd1f3b5b33f97811670931f87f53be99a727d664abc66 SIZE (vuxml/catalog) = 549 SHA256 (vuxml/catalog.xml) = 7b2e2850f57264eeba0ccd3d1fc161b9d5ce3071ae0ec51b9da7fa956f2a6509 SIZE (vuxml/catalog.xml) = 2150

Collapse this list.


Packages (timestamps in pop-ups are UTC):
vuxml
ABIaarch64amd64armv6armv7i386powerpcpowerpc64powerpc64le
FreeBSD:13:latest1.1_61.1_61.1_51.1_61.1_6-1.1_5-
FreeBSD:13:quarterly1.1_61.1_61.1_61.1_61.1_61.1_61.1_61.1_6
FreeBSD:14:latest1.1_61.1_61.1_61.1_61.1_61.1_6-1.1_6
FreeBSD:14:quarterly1.1_61.1_6-1.1_61.1_61.1_61.1_61.1_6
FreeBSD:15:latest1.1_61.1_6n/a1.1_6n/a1.1_61.1_61.1_6
FreeBSD:15:quarterly--n/a-n/a---
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Runtime dependencies:
  1. xmlcatmgr : textproc/xmlcatmgr
  2. xsltproc : textproc/libxslt
  3. VERSION : textproc/xhtml-modularization
  4. xhtml-basic10.dtd : textproc/xhtml-basic
  5. python3.9 : lang/python39
There are no ports dependent upon this port

Configuration Options:
No options to configure
Options name:
security_vuxml
USES:
python:run
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. http://www.vuxml.org/dtd/vuxml-1/
Collapse this list.

Number of commits found: 7212 (showing only 100 on this page)

[First Page]  «  21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31  »  [Last Page]

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
1.1_3
04 Apr 2017 02:27:15
Revision:437678Original commit files touched by this commit
danfe search for other commits by this committer
- Document recent NVIDIA GPU display driver vulnerabilities
- Spell "NVIDIA UNIX driver" consistently throughout the file

PR:	217341
1.1_3
30 Mar 2017 21:43:45
Revision:437335Original commit files touched by this commit
cpm search for other commits by this committer
Document new vulnerabilities in www/chromium < 57.0.2987.133

Obtained
from:	https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop_29.html
1.1_3
30 Mar 2017 01:58:06
Revision:437266Original commit files touched by this commit
junovitch search for other commits by this committer
Document Xen Security Advisory (XSA 206)

CVE lists none (yet) assigned

While here, fix a typo on my last Xen entry

Security:	https://vuxml.FreeBSD.org/freebsd/47873d72-14eb-11e7-970f-002590263bf5.html
1.1_3
30 Mar 2017 01:47:42
Revision:437264Original commit files touched by this commit
junovitch search for other commits by this committer
Actually, let's refer to the original entries for these hostapd CVEs

Reflect CVE-2016-4476 / VID 967b852b-1e28-11e6-8dd3-002590263bf5 in cancelled

CVE-2015-5314 is in VID 976567f6-05c5-11e6-94fa-002590263bf5

PR:		217906
Security:	https://vuxml.FreeBSD.org/freebsd/976567f6-05c5-11e6-94fa-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/967b852b-1e28-11e6-8dd3-002590263bf5.html
1.1_3
29 Mar 2017 16:47:40
Revision:437212Original commit files touched by this commit
matthew search for other commits by this committer
phpMyAdmin: document PMASA-2017-8 -- bypass restrictions on 'no
password' accounts.
1.1_3
28 Mar 2017 23:19:48
Revision:437174Original commit files touched by this commit
feld search for other commits by this committer
Document hostapd vulnerabilities

PR:		217906
1.1_3
25 Mar 2017 00:01:54
Revision:436864Original commit files touched by this commit
timur search for other commits by this committer
Add entry about Samba vulnerability CVE-2017-2619

Security:	CVE-2017-2619
1.1_3
23 Mar 2017 01:51:39
Revision:436750Original commit files touched by this commit
junovitch search for other commits by this committer
Document Xen Security Advisory (XSA 211)

Security:	CVE-2016-9603
Security:	https://vuxml.FreeBSD.org/freebsd/af19ecd0-0f6a-11e7-970f-002590263bf5.html
1.1_3
22 Mar 2017 19:14:32
Revision:436719Original commit files touched by this commit
riggs search for other commits by this committer
Add CVE ID for recent irssi vulnerability

PR:		217878
Submitted by:	dor.bsd@xm0.uk (irssi mainainer)
1.1_3
22 Mar 2017 03:01:06
Revision:436674Original commit files touched by this commit
junovitch search for other commits by this committer
Update hostapd on two older entries.

Fixes were not backported prior. Recent update is v2.6 as noted in advisory.

Security:	CVE-2015-5310
Security:	CVE-2015-5315
Security:	CVE-2015-5316
Security:	CVE-2016-4476
Security:	CVE-2016-4477
Security:	https://vuxml.FreeBSD.org/freebsd/967b852b-1e28-11e6-8dd3-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/976567f6-05c5-11e6-94fa-002590263bf5.html
1.1_3
18 Mar 2017 13:57:40
Revision:436409Original commit files touched by this commit
riggs search for other commits by this committer
Document use-after-free vulnerability in irc/irssi

PR:		217878
1.1_3
18 Mar 2017 11:00:07
Revision:436391Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Add DoS vuln for mysql-client

 - Fix typo in 5f453b69-abab-4e76-b6e5-2ed0bafcaee3 while here
1.1_3
18 Mar 2017 09:40:22
Revision:436388Original commit files touched by this commit
jbeich search for other commits by this committer
security/vuxml: mark firefox < 52.0.1 as vulnerable

Note, sandboxing isn't implemented on FreeBSD.
1.1_3
18 Mar 2017 02:15:27
Revision:436376Original commit files touched by this commit
junovitch search for other commits by this committer
Document Moodle security advisories from January (MSA-17-0001 - MSF-17-0004)
and March releases (details not yet released).

Security:	CVE-2017-2576
Security:	CVE-2017-2578
Security:	CVE-2016-10045
Security:	https://vuxml.FreeBSD.org/freebsd/f72d98d1-0b7e-11e7-970f-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/df45b4bd-0b7f-11e7-970f-002590263bf5.html
1.1_3
18 Mar 2017 01:47:28
Revision:436374Original commit files touched by this commit
junovitch search for other commits by this committer
Fix incorrect PKGNAME in www/tomcat6 entries. It's been tomcat since r238618.

Pointy hat to:	junovitch (for most of them)
1.1_3
17 Mar 2017 15:34:34
Revision:436342Original commit files touched by this commit
acm search for other commits by this committer
- Document multiple vulnerabilities in www/drupal8

Security:	CVE-2017-6377
Security:	CVE-2017-6379
Security:	CVE-2017-6381
Security:	2730c668-0b1c-11e7-8d52-6cf0497db129
1.1_3
16 Mar 2017 23:00:08
Revision:436311Original commit files touched by this commit
mandree search for other commits by this committer
Document PuTTY < 0.68 agent forwarding vuln.

Security:	CVE-2017-6542
Security:	9b973e97-0a99-11e7-ace7-080027ef73ec
1.1_3
16 Mar 2017 11:37:14
Revision:436271Original commit files touched by this commit
tijl search for other commits by this committer
Document latest Flash Player vulnerabilities.

Security:	https://helpx.adobe.com/security/products/flash-player/apsb17-07.html
1.1_3
14 Mar 2017 19:47:38
Revision:436172Original commit files touched by this commit
gjb search for other commits by this committer
Attempt to fix vuxml build.

Sponsored by:	The FreeBSD Foundation
1.1_3
14 Mar 2017 19:43:17
Revision:436170Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: modify most recent mariadb entries

 - ChangeLog of 10.0.30 and 10.1.22 refer to CVE-2017-3313

Security:	4d2f9d09-ddb7-11e6-a9a5-b499baebfeaf
Security:	CVE-2017-3313
1.1_3
12 Mar 2017 21:49:19
Revision:436030Original commit files touched by this commit
tijl search for other commits by this committer
Document mbed TLS Security Advisory 2017-01

Security:	https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2017-01
1.1_3
12 Mar 2017 20:18:59
Revision:436024Original commit files touched by this commit
cpm search for other commits by this committer
Document new vulnerabilities in www/chromium < 57.0.2987.98

Obtained
from:	https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html
1.1_3
11 Mar 2017 23:24:14
Revision:435970Original commit files touched by this commit
eugen search for other commits by this committer
Document several security defects in the Bouncy Castle Crypto APIs

PR:		215507
Approved by:    vsevolod (mentor)
Obtained from:  https://www.bouncycastle.org/releasenotes.html
Security:      
https://vuxml.FreeBSD.org/freebsd/89cf8cd2-0698-11e7-aa3f-001b216d295b
1.1_3
11 Mar 2017 21:42:07
Revision:435965Original commit files touched by this commit
rakuco search for other commits by this committer
Add entry for CVE-2016-7787 in x11/kde4-runtime.

Security announcement:
https://www.kde.org/info/security/advisory-20160621-1.txt
1.1_3
11 Mar 2017 21:09:58
Revision:435959Original commit files touched by this commit
rakuco search for other commits by this committer
Add entry for KTNEF directory traversal issue in deskutils/kdepimlibs4.

There is no CVE assigned at the moment.
More information: https://www.kde.org/info/security/advisory-20170227-1.txt
1.1_3
11 Mar 2017 10:28:22
Revision:435895Original commit files touched by this commit
tcberner search for other commits by this committer
Adress CVE-2017-6410 in devel/kf5-kio and x11/kdelibs4

Using a malicious PAC file, and then using exfiltration methods in the PAC
function FindProxyForURL() enables the attacker to expose full https URLs.

This is a security issue since https URLs may contain sensitive
information in the URL authentication part (user:password@host), and in the
path and the query (e.g. access tokens).

This attack can be carried out remotely (over the LAN) since proxy settings
allow ``Detect Proxy Configuration Automatically''
This setting uses WPAD to retrieve the PAC file, and an attacker who has access
to the victim's LAN can interfere with the WPAD protocols (DHCP/DNS+HTTP)
and inject his/her own malicious PAC instead of the legitimate one.

Reviewed by:	mat, rakuco
Approved by:	rakuco (mentor), mat (mentor)
Obtained from:	https://marc.info/?l=kde-announce&m=148831226706885&w=2
MFH:		2017Q1
Security:	CVE-2017-6410
Differential Revision:	https://reviews.freebsd.org/D9908
1.1_3
08 Mar 2017 13:19:21
Revision:435685Original commit files touched by this commit
tz search for other commits by this committer
Document wordpress security issues

PR:       217608, 217598
Security:
https://vuxml.FreeBSD.org/freebsd/82752070-0349-11e7-b48d-00e04c1ea73d.html
1.1_3
07 Mar 2017 18:13:23
Revision:435627Original commit files touched by this commit
jbeich search for other commits by this committer
security/vuxml: mark firefox < 52 as vulnerable
1.1_3
05 Mar 2017 16:39:13
Revision:435488Original commit files touched by this commit
junovitch search for other commits by this committer
Document security issues fixed in CodeIgniter 3.1.3

Security:	https://vuxml.FreeBSD.org/freebsd/71ebbc50-01c1-11e7-ae1b-002590263bf5.html
1.1_3
05 Mar 2017 16:15:40
Revision:435484Original commit files touched by this commit
junovitch search for other commits by this committer
Fix PORTEPOCH on Chicken VuXML entry; also additional CVE affecting Chicken

PR:		216661
Reported by:	sevan, Vitaly Magerya
Security:	CVE-2016-9954
Security:	https://vuxml.FreeBSD.org/freebsd/c6932dd4-eaff-11e6-9ac1-a4badb2f4699.html
1.1_3
05 Mar 2017 03:25:10
Revision:435446Original commit files touched by this commit
junovitch search for other commits by this committer
Add missing reference to last commit for ikiwiki vulnerabilities

PR:		216665
Reported by:	sevan
Security:	CVE-2016-9646
Security:	https://vuxml.FreeBSD.org/freebsd/5ed094a0-0150-11e7-ae1b-002590263bf5.html
1.1_3
05 Mar 2017 03:18:05
Revision:435444Original commit files touched by this commit
junovitch search for other commits by this committer
Document ikiwiki vulnerabilities

PR:		216665
Reported by:	sevan
Security:	CVE-2016-9645
Security:	CVE-2016-10026
Security:	CVE-2017-0356
Security:	https://vuxml.FreeBSD.org/freebsd/5ed094a0-0150-11e7-ae1b-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/7b35a77a-0151-11e7-ae1b-002590263bf5.html
1.1_3
28 Feb 2017 18:35:34
Revision:435076Original commit files touched by this commit
olivierd search for other commits by this committer
Document multiple memory failure in potrace

PR:		217347
Reported by:	lightside
1.1_3
26 Feb 2017 08:41:24
Revision:434849Original commit files touched by this commit
riggs search for other commits by this committer
Document buffer overflows in audio/musicpd http output module
1.1_3
22 Feb 2017 16:34:26
Revision:434594Original commit files touched by this commit
tijl search for other commits by this committer
Add linux-*-openssl to recent openssl vulnerabilities.

Security:	https://rhn.redhat.com/errata/RHSA-2017-0286.html
1.1_3
22 Feb 2017 11:21:27
Revision:434578Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: curl only vulnerable >= 7.52.0
1.1_3
22 Feb 2017 11:09:11
Revision:434577Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Document cURL vulnerability
1.1_3
22 Feb 2017 04:48:12
Revision:434566Original commit files touched by this commit
junovitch search for other commits by this committer
Document Xen Security Advisory (XSA 209)

Reported by:	royger
Security:	CVE-2017-2620
Security:	https://vuxml.FreeBSD.org/freebsd/8cbd9c08-f8b9-11e6-ae1b-002590263bf5.html
1.1_3
21 Feb 2017 11:18:11
Revision:434520Original commit files touched by this commit
amdmi3 search for other commits by this committer
Document information disclosure vulnerability on fbsdmon

PR:             217099
Submitted by:   asomers
1.1_3
20 Feb 2017 02:58:24
Revision:434428Original commit files touched by this commit
jbeich search for other commits by this committer
security/vuxml: chase r434427

$ svn ci -F libevent-rename.msg
[...]
svn: E165001: Commit failed (details follow):
svn: E165001: Commit blocked by pre-commit hook (exit code 1) with output:
Commit to security/vuxml/vuln.xml first, and then other files

PR:		216777
1.1_3
18 Feb 2017 15:00:23
Revision:434357Original commit files touched by this commit
riggs search for other commits by this committer
Document multiple vulnerabilities in audio/wavpack

PR:		216847
Submitted by:	pkubaj@anongoth.pl
1.1_3
16 Feb 2017 21:40:34
Revision:434256Original commit files touched by this commit
madpilot search for other commits by this committer
Document multiple vulnerabilities in optipng.

PR:		216955
Submitted by:   Thomas Hurst <tom@hur.st> (affected port maintainer)
1.1_3
16 Feb 2017 12:51:20
Revision:434210Original commit files touched by this commit
sunpoet search for other commits by this committer
Complete PKGNAMEPREFIX of py-diffoscope
1.1_3
16 Feb 2017 12:42:51
Revision:434209Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Document openssl-devel vulnerability

 - While here fix whitespace on 077bbadf-f2f4-11e6-92a7-902b34361349
1.1_3
15 Feb 2017 18:38:34
Revision:434188Original commit files touched by this commit
emaste search for other commits by this committer
Document arbitrary file write in diffoscope < 76

Reported by:	koobs (via Debian bug report)
Reviewed by:	delphij
Approved by:	delphij
Sponsored by:	The FreeBSD Foundation
Differential Revision:	https://reviews.freebsd.org/D9598
1.1_3
12 Feb 2017 12:19:36
Revision:433939Original commit files touched by this commit
riggs search for other commits by this committer
Document heap overflow in multimedia/ffmpeg < 3.2.4
1.1_3
11 Feb 2017 11:09:12
Revision:433852Original commit files touched by this commit
kwm search for other commits by this committer
Document gtk-vnc bounds checking vulnabilities

Security:	CVE-2017-5884, CVE-2017-5885
1.1_3
11 Feb 2017 02:10:57
Revision:433833Original commit files touched by this commit
junovitch search for other commits by this committer
Document Xen Security Advisory (XSA 208)

Reported by:	royger
Security:	CVE-2017-2615
Security:	https://vuxml.FreeBSD.org/freebsd/a73aba9a-effe-11e6-ae1b-002590263bf5.html
1.1_3
07 Feb 2017 11:43:10
Revision:433542Original commit files touched by this commit
tijl search for other commits by this committer
List all linux package names in latest libtiff vulnerability.
1.1_3
06 Feb 2017 18:13:40
Revision:433506Original commit files touched by this commit
tijl search for other commits by this committer
Undocument a linux-*-curl vulnerability that has low impact and Red Hat
"will not fix".

Security:	https://access.redhat.com/security/cve/CVE-2016-0755
1.1_3
06 Feb 2017 18:09:29
Revision:433505Original commit files touched by this commit
tijl search for other commits by this committer
Document libtiff vulnerabilities.

Security:	http://simplesystems.org/libtiff/v4.0.7.html
1.1_3
04 Feb 2017 18:08:47
Revision:433333Original commit files touched by this commit
feld search for other commits by this committer
Document mantis vulnerability

PR:		216662
Security:	CVE-2016-6837
1.1_3
04 Feb 2017 17:53:21
Revision:433331Original commit files touched by this commit
feld search for other commits by this committer
Document vulnerabilities in guile2

PR:		216663
Security:	CVE-2016-8605 CVE-2016-8606
1.1_3
04 Feb 2017 17:39:45
Revision:433330Original commit files touched by this commit
feld search for other commits by this committer
Document vulnerabilities in chicken

PR:		216661
Security:	CVE-2016-6830 CVE-2016-6831
1.1_3
04 Feb 2017 17:31:21
Revision:433329Original commit files touched by this commit
feld search for other commits by this committer
Document libebml vulnerabilities

PR:		216659
Security:	CVE-2015-8789
Security:	CVE-2015-8790
Security:	CVE-2015-8791
1.1_3
04 Feb 2017 17:21:09
Revision:433327Original commit files touched by this commit
feld search for other commits by this committer
Document freeimage vulnerability

PR:		216657
Security:	CVE-2016-5684
1.1_3
02 Feb 2017 22:48:50
Revision:433182Original commit files touched by this commit
woodsb02 search for other commits by this committer
Add additional vulnerability for wordpress 4.7.1 that was initially kept
quiet by the wordpress team [1].

[1]
https://make.wordpress.org/core/2017/02/01/disclosure-of-additional-security-fix-in-wordpress-4-7-2/

Security:	https://vuxml.FreeBSD.org/freebsd/54e50cd9-c1a8-11e6-ae1b-002590263bf5.html
1.1_3
01 Feb 2017 17:05:28
Revision:433054Original commit files touched by this commit
cmt search for other commits by this committer
document shotwell vulnerability
1.1_3
01 Feb 2017 16:54:03
Revision:433049Original commit files touched by this commit
lwhsu search for other commits by this committer
Document Jenkins Security Advisory 2017-02-01
1.1_3
30 Jan 2017 14:27:04
Revision:432846Original commit files touched by this commit
feld search for other commits by this committer
Fix openssl vuxml entry

PR:		216524
1.1_3
29 Jan 2017 03:13:21
Revision:432696Original commit files touched by this commit
woodsb02 search for other commits by this committer
Document Wordpress security issues in 4.7.1.

PR:		216540
PR:		216515
Reported by:	Jochen Neumeister <joneum@bsdproject.de>
Reported by:	Mikhail Timofeev <9267096@gmail.com>
Security:	CVE-2017-5610
Security:	CVE-2017-5611
Security:	CVE-2017-5612
Security:	https://vuxml.FreeBSD.org/freebsd/14ea4458-e5cd-11e6-b56d-38d547003487.html
1.1_3
27 Jan 2017 22:58:11
Revision:432599Original commit files touched by this commit
feld search for other commits by this committer
Document vulnerability in net-mgmt/nfsen
1.1_3
26 Jan 2017 17:44:29
Revision:432522Original commit files touched by this commit
cpm search for other commits by this committer
Document new vulnerabilities in www/chromium < 56.0.2924.76

Obtained
from:	https://chromereleases.googleblog.com/2017/01/stable-channel-update-for-desktop.html
1.1_3
26 Jan 2017 14:44:18
Revision:432511Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Document new OpenSSL vulnerabilities
1.1_3
24 Jan 2017 22:50:18
Revision:432403Original commit files touched by this commit
jbeich search for other commits by this committer
security/vuxml: mark Gecko < 51.0/45.7esr as vulnerable
1.1_3
24 Jan 2017 08:28:53
Revision:432314Original commit files touched by this commit
matthew search for other commits by this committer
Document security vulnerabilities fixed in phpMyAdmin 4.6.6
1.1_3
23 Jan 2017 17:53:02
Revision:432260Original commit files touched by this commit
swills search for other commits by this committer
Document nvmupdate security issue

Submitted by:	kozlov.sergey.404@gmail.com (maintainer)
Reviewed by:	sbruno
Sponsored by:	Intel
Differential Revision:	https://reviews.freebsd.org/D9121
1.1_3
23 Jan 2017 02:36:50
Revision:432189Original commit files touched by this commit
junovitch search for other commits by this committer
Update OpenSSL impacted version

The reference cites 1.0.1u and prior as impacted. security/openssl would
have resolved in r381789. security/openssl-devel would have not have been
impacted as that port had been the newer 1.1.x branch since inception.

Reported by:	Thomas Schemme (via email)
Security:	CVE-2016-7056
Security:	https://vuxml.FreeBSD.org/freebsd/7caebe30-d7f1-11e6-a9a5-b499baebfeaf.html
1.1_3
20 Jan 2017 02:41:31
Revision:431926Original commit files touched by this commit
junovitch search for other commits by this committer
Include php56 in today's PHP vulnerability

Security:	https://vuxml.FreeBSD.org/freebsd/709e025a-de8b-11e6-a9a5-b499baebfeaf.html
1.1_3
19 Jan 2017 21:14:52
Revision:431918Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Document PHP vulnerabilities
1.1_3
19 Jan 2017 04:08:50
Revision:431837Original commit files touched by this commit
jhale search for other commits by this committer
Document graphics/icoutils vulnerabilities
1.1_3
18 Jan 2017 20:04:21
Revision:431823Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Document mysql vulnerabilities

  - Documented in Oracle Critical Patch Update
  - MariaDB ChangeLogs refer to the same CVE IDs
1.1_3
18 Jan 2017 11:22:48
Revision:431785Original commit files touched by this commit
junovitch search for other commits by this committer
Document mulitiple PowerDNS vulnerabilities

PR:		216135
PR:		216136
Reported by:	Dani <i.dani@outlook.com>
Security:	CVE-2016-2120
Security:	CVE-2016-7068
Security:	CVE-2016-7072
Security:	CVE-2016-7073
Security:	CVE-2016-7074
Security:	https://vuxml.FreeBSD.org/freebsd/e3200958-dd6c-11e6-ae1b-002590263bf5.html
1.1_3
16 Jan 2017 19:09:08
Revision:431690Original commit files touched by this commit
thierry search for other commits by this committer
Adding www/tt-rss to the phpmailer 5.2.22 vulnerability.
1.1_3
15 Jan 2017 15:08:23
Revision:431567Original commit files touched by this commit
junovitch search for other commits by this committer
Document groovy remote execution of untrusted code/DoS vulnerability

Security:	CVE-2016-6814
Security:	https://vuxml.FreeBSD.org/freebsd/4af92a40-db33-11e6-ae1b-002590263bf5.html
1.1_3
15 Jan 2017 03:03:05
Revision:431513Original commit files touched by this commit
junovitch search for other commits by this committer
Document RabbitMQ Authentication vulnerability

PR:		216026
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-9877
Security:	https://vuxml.FreeBSD.org/freebsd/6aa956fb-d97f-11e6-a071-001e67f15f5a.html
1.1_3
15 Jan 2017 02:48:37
Revision:431512Original commit files touched by this commit
junovitch search for other commits by this committer
Amend Irssi 0.8.21 entry. Another CVE was assigned.

PR:		216020
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:       CVE-2017-5356
Security:      
https://vuxml.FreeBSD.org/freebsd/3d6be69b-d365-11e6-a071-001e67f15f5a.html
1.1_3
15 Jan 2017 02:39:28
Revision:431510Original commit files touched by this commit
junovitch search for other commits by this committer
Follow up on r431476's MySQL documentation; cite a source
1.1_3
15 Jan 2017 02:23:44
Revision:431508Original commit files touched by this commit
junovitch search for other commits by this committer
Mention later OpenSSH VuXML entry supercedes the duplicate
1.1_3
15 Jan 2017 02:16:21
Revision:431506Original commit files touched by this commit
junovitch search for other commits by this committer
Document Wordpress security issues in 4.7.1.

Note per upstream PHPMailer was updated but "No specific issue appears
to affect WordPress or any of the major plugins we investigated". As such
leave the PHPMailer entry as is at this time.

PR:		216059
Reported by:	Jochen Neumeister <joneum@bsdproject.de>
Security:	CVE-2017-5487
Security:	CVE-2017-5488
Security:	CVE-2017-5489
Security:	CVE-2017-5490
Security:	CVE-2017-5491
Security:	CVE-2017-5492
Security:	CVE-2017-5493
Security:	https://vuxml.FreeBSD.org/freebsd/b180d1fb-dac6-11e6-ae1b-002590263bf5.html
1.1_3
14 Jan 2017 17:10:58
Revision:431476Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Document multiple MySQL vulnerabilities
1.1_3
13 Jan 2017 23:47:07
Revision:431449Original commit files touched by this commit
bdrewery search for other commits by this committer
OpenSSH 7.3.p1_4,1 had SCTP on by default by accident. Suggest fixed rev 5.
1.1_3
13 Jan 2017 23:40:16
Revision:431446Original commit files touched by this commit
bdrewery search for other commits by this committer
Fix OpenSSH entry as a patch was missed.
1.1_3
13 Jan 2017 23:25:01
Revision:431439Original commit files touched by this commit
bdrewery search for other commits by this committer
OpenSSH 7.3_2 covers CVE-2016-10009 and CVE-2016-10010
1.1_3
13 Jan 2017 16:49:59
Revision:431401Original commit files touched by this commit
feld search for other commits by this committer
Consolidate duplicate openssh vuxml entries
1.1_3
13 Jan 2017 15:02:29
Revision:431397Original commit files touched by this commit
lifanov search for other commits by this committer
replace wildcard in range with a specific version

Reported by:	matthew
Reviewed by:	matthew
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D9158
1.1_3
12 Jan 2017 23:09:56
Revision:431328Original commit files touched by this commit
lifanov search for other commits by this committer
document ansible vulnerabilities

Reviewed by:	matthew
Approved by:	matthew (mentor)
Security:	CVE-2016-9587
Security:	https://vuxml.FreeBSD.org/freebsd/a93c3287-d8fd-11e6-be5c-001fbc0f280f.html
Differential Revision:	https://reviews.freebsd.org/D9158
1.1_3
12 Jan 2017 11:49:44
Revision:431255Original commit files touched by this commit
tz search for other commits by this committer
Document phpmailer vulnerabilities.

Security: CVE-2017-5223
Security:
https://vuxml.FreeBSD.org/freebsd/7ae0be99-d8bb-11e6-9b7f-d43d7e971a1b.html
1.1_3
12 Jan 2017 08:15:29
Revision:431231Original commit files touched by this commit
mat search for other commits by this committer
Fixup bind9-devel's version for last vuln.

Sponsored by:	Absolight
1.1_3
12 Jan 2017 07:27:14
Revision:431223Original commit files touched by this commit
delphij search for other commits by this committer
Document BIND multiple vulnerabilities.
1.1_3
11 Jan 2017 17:28:12
Revision:431193Original commit files touched by this commit
feld search for other commits by this committer
Document FreeBSD-SA-17:01.openssh
1.1_3
11 Jan 2017 11:50:02
Revision:431175Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Fix version number of libressl-devel
1.1_3
11 Jan 2017 11:41:08
Revision:431173Original commit files touched by this commit
brnrd search for other commits by this committer
security/vuxml: Document OpenSSL ECDSA P-256 vulnerability

  - Affects libressl as well

Security:	CVE-2016-7056
1.1_3
11 Jan 2017 02:21:58
Revision:431153Original commit files touched by this commit
junovitch search for other commits by this committer
Document Flash vulnerabilities in Adobe Security Bulletin APSB17-02

Security:	CVE-2017-2925
Security:	CVE-2017-2926
Security:	CVE-2017-2927
Security:	CVE-2017-2928
Security:	CVE-2017-2930
Security:	CVE-2017-2931
Security:	CVE-2017-2932
Security:	CVE-2017-2933
Security:	CVE-2017-2934
Security:	CVE-2017-2935
Security:	CVE-2017-2936
Security:	CVE-2017-2937
Security:	CVE-2017-2938
Security:	https://vuxml.FreeBSD.org/freebsd/2a7bdc56-d7a3-11e6-ae1b-002590263bf5.html
1.1_3
10 Jan 2017 03:13:53
Revision:431063Original commit files touched by this commit
junovitch search for other commits by this committer
Mention pcsc-lite CVE (it was in next message in cited URL)

While here, fix spacing

PR:		215834
1.1_3
09 Jan 2017 18:21:40
Revision:430998Original commit files touched by this commit
feld search for other commits by this committer
Document moinmoin vulnerabilities

PR:		214937
Security:	CVE-2016-7146 CVE-2016-7148 CVE-2016-9119
1.1_3
09 Jan 2017 18:12:34
Revision:430996Original commit files touched by this commit
sunpoet search for other commits by this committer
Fix openssh-portable version
1.1_3
09 Jan 2017 17:37:48
Revision:430990Original commit files touched by this commit
feld search for other commits by this committer
Document libvncserver vulnerabilities

PR:		215805
Security:	CVE-2016-9941 CVE-2016-9942
1.1_3
09 Jan 2017 17:32:04
Revision:430987Original commit files touched by this commit
feld search for other commits by this committer
Document libdwarf vulnerabilities

Security:	CVE-2016-5027 CVE-2016-5028 CVE-2016-5029 CVE-2016-5030
Security:	CVE-2016-5031 CVE-2016-5032 CVE-2016-5033 CVE-2016-5035
Security:	CVE-2016-5037 CVE-2016-5040 CVE-2016-5041 CVE-2016-5043
Security:	CVE-2016-5044 CVE-2016-7510 CVE-2016-7511 CVE-2016-8679
Security:	CVE-2016-8680 CVE-2016-8681 CVE-2016-9275 CVE-2016-9276
Security:	CVE-2016-9480 CVE-2016-9558

PR:		215085
1.1_3
09 Jan 2017 17:14:14
Revision:430983Original commit files touched by this commit
feld search for other commits by this committer
Document lynx vulnerabilities

PR:		215464
Security:	CVE-2014-3566
Security:	CVE-2016-9179

Number of commits found: 7212 (showing only 100 on this page)

[First Page]  «  21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31  »  [Last Page]