notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)Want a good monitor light? See my photosAll times are UTC		 Ukraine

Bot filter coming soon

To deter bots pegging the database CPU to 100%, a bot testing filter to be added to the website. This should not affect newsfeeds etc. Anubis seems light-weight - it is already in use within the FreeBSD Project. This notice is just a heads up in case you see something odd. This notice will be updated after Anubis is installed.

Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_6 security on this many watch lists=33 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 1.1_6Version of this port present on the latest quarterly branch.
Maintainer: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2004-02-12 14:24:23
Last Update: 2025-06-06 18:01:08
Commit Hash: c4ba83b
People watching this port, also watch:: gnupg, curl, libxml2, nmap, vim
Also Listed In: textproc
License: BSD2CLAUSE
WWW:
https://vuxml.freebsd.org/
Description:
VuXML (the Vulnerability and eXposure Markup Language) is an XML application for documenting security bugs and corrections within a software package collection such as the FreeBSD Ports Collection. This port installs the DTDs required for validating VuXML documents.
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (13 items)
Collapse this list.
  1. /usr/local/share/licenses/vuxml-1.1_6/catalog.mk
  2. /usr/local/share/licenses/vuxml-1.1_6/LICENSE
  3. /usr/local/share/licenses/vuxml-1.1_6/BSD2CLAUSE
  4. @xmlcatmgr share/xml/dtd/vuxml/catalog
  5. @xmlcatmgr share/xml/dtd/vuxml/catalog.xml
  6. share/xml/dtd/vuxml/vuxml-10.dtd
  7. share/xml/dtd/vuxml/vuxml-11.dtd
  8. share/xml/dtd/vuxml/vuxml-model-10.mod
  9. share/xml/dtd/vuxml/vuxml-model-11.mod
  10. share/xml/dtd/vuxml/xml1.dcl
  11. @owner
  12. @group
  13. @mode
Collapse this list.
Dependency lines:
  • vuxml>0:security/vuxml
To install the port:
cd /usr/ports/security/vuxml/ && make install clean
To add the package, run one of these commands:
  • pkg install security/vuxml
  • pkg install vuxml
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: vuxml
Flavors: there is no flavor information for this port.
distinfo:
SHA256 (vuxml/vuxml-10.dtd) = 6a635ad2cf45f52361c8c2a29a689157fad4d00519045485bc822d34e04a524e SIZE (vuxml/vuxml-10.dtd) = 2986 SHA256 (vuxml/vuxml-model-10.mod) = 051fed00b52bedde8ee901003fc29f7b95cd904157e31ceef34e6b06f2d1a14a

Expand this list (11 items)

Collapse this list.

SIZE (vuxml/vuxml-model-10.mod) = 10599 SHA256 (vuxml/vuxml-11.dtd) = 12b50061d7bb34cecffede2e08d439e4469324376d55aeb7c73eb6aab0f36af1 SIZE (vuxml/vuxml-11.dtd) = 3063 SHA256 (vuxml/vuxml-model-11.mod) = a40777208625a3029c6f416aeeea733f614802a6a5f26035a4e445a09e61a47c SIZE (vuxml/vuxml-model-11.mod) = 13282 SHA256 (vuxml/xml1.dcl) = 343efa94c4e1302e85e08b2d1791d86e50aac1ecdbc3161daecac100e4726847 SIZE (vuxml/xml1.dcl) = 7372 SHA256 (vuxml/catalog) = 479a69cf02995603443fd1f3b5b33f97811670931f87f53be99a727d664abc66 SIZE (vuxml/catalog) = 549 SHA256 (vuxml/catalog.xml) = 7b2e2850f57264eeba0ccd3d1fc161b9d5ce3071ae0ec51b9da7fa956f2a6509 SIZE (vuxml/catalog.xml) = 2150

Collapse this list.

Packages (timestamps in pop-ups are UTC):
vuxml
ABIaarch64amd64armv6armv7i386powerpcpowerpc64powerpc64le
FreeBSD:13:latest1.1_61.1_61.1_51.1_61.1_6-1.1_5-
FreeBSD:13:quarterly1.1_61.1_61.1_61.1_61.1_61.1_61.1_61.1_6
FreeBSD:14:latest1.1_61.1_61.1_61.1_61.1_61.1_6-1.1_6
FreeBSD:14:quarterly1.1_61.1_6-1.1_61.1_61.1_61.1_61.1_6
FreeBSD:15:latest1.1_61.1_6n/a1.1_6n/a1.1_61.1_61.1_6
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Runtime dependencies:
  1. xmlcatmgr : textproc/xmlcatmgr
  2. xsltproc : textproc/libxslt
  3. VERSION : textproc/xhtml-modularization
  4. xhtml-basic10.dtd : textproc/xhtml-basic
  5. python3.11 : lang/python311
There are no ports dependent upon this port
Configuration Options:
No options to configure
Options name:
security_vuxml
USES:
python:run
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. http://www.vuxml.org/dtd/vuxml-1/
Collapse this list.

Number of commits found: 7640 (showing only 100 on this page)

[First Page]  «  30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40  »  [Last Page]

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
1.1_2
13 May 2016 12:43:03
Revision:415104Original commit files touched by this commit		 kwm search for other commits by this committer 
Add basic imagemagick entry.
1.1_2
12 May 2016 03:45:24
Revision:415045Original commit files touched by this commit		 lwhsu search for other commits by this committer 
Fix affected versions
1.1_2
12 May 2016 03:44:24
Revision:415044Original commit files touched by this commit		 lwhsu search for other commits by this committer 
Document Jenkins Security Advisory 2016-05-11
1.1_2
10 May 2016 03:00:14
Revision:414913Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Perl taint protection bypass vulnerability

PR:		208879
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-2381
Security:	https://vuxml.FreeBSD.org/freebsd/d9f99491-1656-11e6-94fa-002590263bf5.html
1.1_2
10 May 2016 01:49:25
Revision:414902Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Wordpress vulnerabilities fixed in 4.5.2

PR:		209409
PR:		209378 [1]
Reported by:	Mihail Timofeev <9267096@gmail.com> [1]
Security:	CVE-2016-4566
Security:	CVE-2016-4567
Security:	https://vuxml.FreeBSD.org/freebsd/3686917b-164d-11e6-94fa-002590263bf5.html
1.1_2
10 May 2016 00:22:27
Revision:414896Original commit files touched by this commit		 junovitch search for other commits by this committer 
Fix version range for libarchive entry. [1]

While here, add CVE and wrap lines at <80

PR:		209404 [1]
Reported by:	dereks@lifeofadishwasher.com [1]
Security:	CVE-2016-1541
Security:	https://vuxml.FreeBSD.org/freebsd/2b4c8e1f-1609-11e6-b55e-b499baebfeaf.html
1.1_2
09 May 2016 19:31:37
Revision:414889Original commit files touched by this commit		 brnrd search for other commits by this committer 
security/vuxml: Add entry for libarchive

  - Vulnerable < 2.3.0

Reviewed by:	feld (mentor)
Approved by:	feld (mentor, ports-secteam)
Security:	CVE-2016-1541
1.1_2
09 May 2016 15:24:48
Revision:414860Original commit files touched by this commit		 matthew search for other commits by this committer 
Update recent squid, squid-devel entry to add CVE Numbers
1.1_2
07 May 2016 11:56:27
Revision:414774Original commit files touched by this commit		 matthew search for other commits by this committer 
Document three security advisories for the squid and squid-devel
ports.  CVE numbers are not yet available.

PR:		209334
Submitted by:	timp87@gmail.com (maintainer)
1.1_2
07 May 2016 07:30:31
Revision:414760Original commit files touched by this commit		 kwm search for other commits by this committer 
Add forgotten portepoch to the ImageMagick 6.x version.

PR:		209241
Reported by:	Ben Woods, Jason Unovitch
1.1_2
06 May 2016 15:27:49
Revision:414710Original commit files touched by this commit		 kwm search for other commits by this committer 
Document ImageMagick vulnabilities.

PR:		209241
Submitted by:	Ben Woods
1.1_2
04 May 2016 06:25:52
Revision:414587Original commit files touched by this commit		 vanilla search for other commits by this committer 
Add entry of devel/jansson

PR:		209219
Submitted by:	junovitch@
1.1_2
03 May 2016 23:57:03
Revision:414566Original commit files touched by this commit		 junovitch search for other commits by this committer 
Fix <url> -> <cvename> tags in OpenSSL entry plus spacing fixes.

While here, combine both entries as they both refer to the same CVEs and
we've typically done these as combined entries in the past.
1.1_2
03 May 2016 17:56:24
Revision:414544Original commit files touched by this commit		 brnrd search for other commits by this committer 
security/vuxml: Document LibreSSL vulnerabilities

Reviewed by:	swills
MFH:		2016Q3
1.1_2
03 May 2016 17:50:20
Revision:414543Original commit files touched by this commit		 brnrd search for other commits by this committer 
security/vuxml: Document OpenSSL 1.0.2g vulnerabilities

Reviewed by:	swills
MFH:		2016Q2
1.1_2
03 May 2016 13:27:45
Revision:414530Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document gitlab privilege escalation via "impersonate" feature

PR:		209225
Reported by:	Torsten Zuehlsdorff <ports@toco-domains.de>
Security:	CVE-2016-4340
Security:	https://vuxml.FreeBSD.org/freebsd/be72e773-1131-11e6-94fa-002590263bf5.html
1.1_2
03 May 2016 03:05:31
Revision:414508Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document php multiple vulnerabilities

PR:		209145
Reported by	Christian Schwarz <me@cschwarz.com>
Security:	CVE-2016-3074
Security:	https://vuxml.FreeBSD.org/freebsd/5764c634-10d2-11e6-94fa-002590263bf5.html
1.1_2
03 May 2016 00:40:04
Revision:414498Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document libksba local denial of service vulnerabilities

Security:	CVE-2016-4353
Security:	CVE-2016-4354
Security:	CVE-2016-4355
Security:	CVE-2016-4356
Security:	https://vuxml.FreeBSD.org/freebsd/a1134048-10c6-11e6-94fa-002590263bf5.html
1.1_2
02 May 2016 23:58:59
Revision:414494Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document denial of service advisories from Wireshark's recent release

Security:	https://vuxml.FreeBSD.org/freebsd/7e36c369-10c0-11e6-94fa-002590263bf5.html
1.1_2
01 May 2016 21:15:35
Revision:414427Original commit files touched by this commit		 olivierd search for other commits by this committer 
Document arbitrary code execution vulnerability in Mercurial

Security:	CVE-2016-3105
1.1_2
01 May 2016 07:33:16
Revision:414389Original commit files touched by this commit		 brnrd search for other commits by this committer 
security/vuxml: Add entry for MySQL/MariaDB/Percona April Critical Patch Update

  - Add entry for 31 security fixes for Oracle MySQL
  - Add also affected MariaDB packages
  - Add also affected Percona packages

Reviewed by:	junovitch (ports-secteam)
Approved by:	junovitch (ports-secteam)
Differential Revision:	D6159
1.1_2
28 Apr 2016 20:17:30
Revision:414236Original commit files touched by this commit		 matthew search for other commits by this committer 
Logstash password disclosure vulnerability.
1.1_2
28 Apr 2016 15:15:38
Revision:414180Original commit files touched by this commit		 lev search for other commits by this committer 
  Add two CVEs for subversion:

   http://subversion.apache.org/security/CVE-2016-2167-advisory.txt
   http://subversion.apache.org/security/CVE-2016-2168-advisory.txt
1.1_2
27 Apr 2016 04:43:31
Revision:414086Original commit files touched by this commit		 delphij search for other commits by this committer 
Document NTP multiple vulnerabilities.
1.1_2
26 Apr 2016 20:24:35
Revision:414068Original commit files touched by this commit		 jbeich search for other commits by this committer 
Document recent Firefox vulnerabilities
1.1_2
23 Apr 2016 11:40:45
Revision:413863Original commit files touched by this commit		 flo search for other commits by this committer 
Document phpmyfaq vulnerability

Security:	https://vuxml.freebsd.org/freebsd/f87a9376-0943-11e6-8fc4-00a0986f28c4.html
Security:	http://www.phpmyfaq.de/security/advisory-2016-04-11
Sponsored by:	Essen Linuxhotel Hackathon 2016
1.1_2
21 Apr 2016 02:16:32
Revision:413711Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document libtasn1 denial of service via parsing malicious DER certificates

Security:	CVE-2016-4008
Security:	https://vuxml.FreeBSD.org/freebsd/1b0d2938-0766-11e6-94fa-002590263bf5.html
1.1_2
21 Apr 2016 02:01:29
Revision:413710Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document squid -- multiple vulnerabilities

PR:		208939
Reported by:	Pavel Timofeev <timp87@gmail.com>
Security:	CVE-2016-4054
Security:	CVE-2016-4053
Security:	CVE-2016-4052
Security:	CVE-2016-4051
Security:	https://vuxml.FreeBSD.org/freebsd/e05bfc92-0763-11e6-94fa-002590263bf5.html
1.1_2
20 Apr 2016 12:33:44
Revision:413686Original commit files touched by this commit		 matthew search for other commits by this committer 
CVE-2016-3096 -- ansible and ansible1 vulnerability due to using
predictable temporary file names when managing LXC containers.
1.1_2
20 Apr 2016 11:46:34
Revision:413680Original commit files touched by this commit		 mm search for other commits by this committer 
Document security vulnerability in proftpd mod_tls.

PR:		208876
Security:	CVE-2016-3125
1.1_2
19 Apr 2016 20:14:53
Revision:413661Original commit files touched by this commit		 rene search for other commits by this committer 
Doument new vulnerabilities in www/chromium < 50.0.2661.75

Obtained
from:	http://googlechromereleases.blogspot.nl/2016/04/stable-channel-update_13.html
1.1_2
19 Apr 2016 00:36:18
Revision:413617Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document wpa_supplicant security advisories

PR:		208482
Security:	CVE-2015-5310
Security:	CVE-2015-5315
Security:	CVE-2015-5316
Security:	https://vuxml.FreeBSD.org/freebsd/976567f6-05c5-11e6-94fa-002590263bf5.html
1.1_2
17 Apr 2016 20:07:36
Revision:413540Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document earlier dhcpcd security issue that has been fixed in an earlier
version before the security implications were reported.

PR:		208840
Submitted by:	Ben Woods <woodsb02@gmail.com>
Submitted by:	Roy Marples <roy@marples.name>
Security:	CVE-2014-7912
Security:	https://vuxml.FreeBSD.org/freebsd/092156c9-04d7-11e6-b1ce-002590263bf5.html
1.1_2
17 Apr 2016 01:16:22
Revision:413486Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document dhcpcd security remote execution/denial of service

PR:		208840
Submitted by:	Ben Woods <woodsb02@gmail.com>
Security:	CVE-2014-7913
Security:	https://vuxml.FreeBSD.org/freebsd/6ec9f210-0404-11e6-9aee-bc5ff4fb5ea1.html
1.1_2
15 Apr 2016 15:12:45
Revision:413349Original commit files touched by this commit		 madpilot search for other commits by this committer 
Document Asterisk and PJsip vulnerabilities.
1.1_2
14 Apr 2016 02:07:44
Revision:413239Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document go remote denial of service

Security:	CVE-2016-3959
Security:	https://vuxml.FreeBSD.org/freebsd/f2217cdf-01e4-11e6-b1ce-002590263bf5.html
1.1_2
13 Apr 2016 18:59:29
Revision:413229Original commit files touched by this commit		 feld search for other commits by this committer 
Document linux-c6-nspr which was overlooked in previous vuxml entry
1.1_2
12 Apr 2016 18:49:29
Revision:413154Original commit files touched by this commit		 timur search for other commits by this committer 
Multiple vulnerabilities in Samba.
[CVE-2015-5370] Errors in Samba DCE-RPC code can lead to denial of service
(crashes and high cpu consumption) and man in the middle attacks.
[CVE-2016-2110] The feature negotiation of NTLMSSP is not downgrade protected. A
man in the middle is able to clear even required flags,
    especially NTLMSSP_NEGOTIATE_SIGN and NTLMSSP_NEGOTIATE_SEAL.
[CVE-2016-2111] When Samba is configured as Domain Controller it allows remote
attackers to spoof the computer name of a secure channel's endpoints,
    and obtain sensitive session information, by running a crafted application
and leveraging the ability to sniff network traffic.
[CVE-2016-2112] A man in the middle is able to downgrade LDAP connections to no
integrity protection.
[CVE-2016-2113] Man in the middle attacks are possible for client triggered LDAP
connections (with ldaps://) and ncacn_http connections (with https://).
[CVE-2016-2114] Due to a bug Samba doesn't enforce required smb signing, even if
explicitly configured.
[CVE-2016-2115] The protection of DCERPC communication over ncacn_np (which is
the default for most the file server related protocols) is inherited
    from the underlying SMB connection.
[CVE-2016-2118] a.k.a. BADLOCK. A man in the middle can intercept any DCERPC
traffic between a client and a server in order to impersonate the client
    and get the same privileges as the authenticated user account. This is most
problematic against active directory domain controllers.
Security:	CVE-2015-5370
		CVE-2016-2110
		CVE-2016-2111
		CVE-2016-2112
		CVE-2016-2113
		CVE-2016-2114
		CVE-2016-2115
		CVE-2016-2118
Sponsored by:	Micro$oft
1.1_2
03 Apr 2016 14:19:01
Revision:412474Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document multiple vulnerabilities from the 31 Mar 16 PHP releases

PR:		208465
Reported by	Christian Schwarz <me@cschwarz.com>
Security:	https://vuxml.FreeBSD.org/freebsd/482d40cb-f9a3-11e5-92ce-002590263bf5.html
1.1_2
03 Apr 2016 13:43:13
Revision:412471Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document PCRE heap overflow vulnerability

PR:		208260
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-1283
Security:	https://vuxml.FreeBSD.org/freebsd/497b82e0-f9a0-11e5-92ce-002590263bf5.html
1.1_2
03 Apr 2016 02:27:46
Revision:412444Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document djblets vulnerability from the 0.9.2 release notes

Security:	https://vuxml.FreeBSD.org/freebsd/df328fac-f942-11e5-92ce-002590263bf5.html
1.1_2
03 Apr 2016 02:11:52
Revision:412441Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document multiple security advisories for Moodle

Security:	CVE-2016-2151
Security:	CVE-2016-2152
Security:	CVE-2016-2153
Security:	CVE-2016-2154
Security:	CVE-2016-2155
Security:	CVE-2016-2156
Security:	CVE-2016-2157
Security:	CVE-2016-2158
Security:	CVE-2016-2159
Security:	CVE-2016-2190
Security:	https://vuxml.FreeBSD.org/freebsd/a430e15d-f93f-11e5-92ce-002590263bf5.html
1.1_2
03 Apr 2016 00:48:25
Revision:412440Original commit files touched by this commit		 junovitch search for other commits by this committer 
Add additional reference URL for Kamailio entry from r411376

Security:	CVE-2016-2385
Security:	https://vuxml.FreeBSD.org/freebsd/c428de09-ed69-11e5-92ce-002590263bf5.html
1.1_2
03 Apr 2016 00:00:27
Revision:412436Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document squid multiple vulnerabilities

PR:		208463
Security:	CVE-2016-3947
Security:	CVE-2016-3948
Security:	https://vuxml.FreeBSD.org/freebsd/297117ba-f92d-11e5-92ce-002590263bf5.html
1.1_2
01 Apr 2016 14:25:18
Revision:412349Original commit files touched by this commit		 mat search for other commits by this committer 
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight
1.1_2
31 Mar 2016 14:52:39
Revision:412228Original commit files touched by this commit		 girgen search for other commits by this committer 
This CVE is actually for the -contrib module:

Security: CVE-2016-3065
1.1_2
31 Mar 2016 14:43:29
Revision:412225Original commit files touched by this commit		 girgen search for other commits by this committer 
Add vuxml entries for "Security Fixes for RLS, BRIN"
in PostgreSQL 9.5

Security:	CVE-2016-2193
Security:	CVE-2016-3065
1.1_2
31 Mar 2016 12:25:46
Revision:412217Original commit files touched by this commit		 tijl search for other commits by this committer 
Document latest batch of flash plugin vulnerabilities.
1.1_2
31 Mar 2016 08:01:09
Revision:412209Original commit files touched by this commit		 madpilot search for other commits by this committer 
Document mutiple Botan vulnerabilities.

PR:		208393
Submitted by:	Lapo Luchini <lapo at lapo.it>
Security:	CVE-2015-5726
Security:	CVE-2015-5727
Security:	CVE-2016-2194
Security:	CVE-2016-2195
1.1_2
29 Mar 2016 22:15:23
Revision:412139Original commit files touched by this commit		 olivierd search for other commits by this committer 
Document multiple Mercurial vulnerabilities

Security:	CVE-2016-3630
Security:	CVE-2016-3068
Security:	CVE-2016-3069
1.1_2
29 Mar 2016 20:08:03
Revision:412133Original commit files touched by this commit		 cmt search for other commits by this committer 
Document chromium vulnerabilities

Approved by:	miwi (mentor), rene (mentor)
1.1_2
28 Mar 2016 01:51:04
Revision:412026Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document BIND security advisories

PR:		208034
Reported by:	martin@lispworks.com
Security:	CVE-2016-1285
Security:	CVE-2016-1286
Security:	CVE-2016-2088
Security:	https://vuxml.FreeBSD.org/freebsd/c9075321-f483-11e5-92ce-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/cba246d2-f483-11e5-92ce-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/cd409df7-f483-11e5-92ce-002590263bf5.html
1.1_2
28 Mar 2016 01:50:19
Revision:412025Original commit files touched by this commit		 junovitch search for other commits by this committer 
Syntax fix, drop leading FreeBSD- in <freebsdsa> tags as it caused links with
a FreeBSD-FreeBSD-SA starting the URL.
1.1_2
27 Mar 2016 01:42:42
Revision:411973Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Salt Insecure configuration of PAM external authentication service

PR:		208244
Security:	CVE-2016-3176
Security:	https://vuxml.FreeBSD.org/freebsd/6d25c306-f3bb-11e5-92ce-002590263bf5.html
1.1_2
25 Mar 2016 17:04:02
Revision:411865Original commit files touched by this commit		 tj search for other commits by this committer 
Document multipule activemq vulnerabilities:
	CVE-2016-0782 - ActiveMQ Web Console - Cross-Site Scripting
	CVE-2016-0734 - ActiveMQ Web Console - Clickjacking
	CVE-2015-5254 - Unsafe deserialization in ActiveMQ

PR:		208163
PR:		208193
Security:	CVE-2015-5254
Security:	http://activemq.apache.org/security-advisories.data/CVE-2015-5254-announcement.txt
Security:	CVE-2016-0782
Security:	http://activemq.apache.org/security-advisories.data/CVE-2016-0782-announcement.txt
Security:	CVE-2016-0734
Security:	http://activemq.apache.org/security-advisories.data/CVE-2016-0734-announcement.txt
1.1_2
21 Mar 2016 02:43:57
Revision:411534Original commit files touched by this commit		 feld search for other commits by this committer 
Fix version range for pcre2 vulnerability

PR:		208167
Security:	CVE-2016-3191
1.1_2
21 Mar 2016 02:32:27
Revision:411529Original commit files touched by this commit		 feld search for other commits by this committer 
Document pcre vulnerability

PR:		208167
Security:	CVE-2016-3191
1.1_2
19 Mar 2016 01:22:33
Revision:411376Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document kamailio SEAS Module Heap overflow vulnerability

Security:	CVE-2016-2385
Security:	https://vuxml.FreeBSD.org/freebsd/c428de09-ed69-11e5-92ce-002590263bf5.html
1.1_2
19 Mar 2016 00:24:55
Revision:411375Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document hadoop2 unauthorized disclosure of data vulnerability

Security:	CVE-2015-1776
Security:	https://vuxml.FreeBSD.org/freebsd/5dd39f26-ed68-11e5-92ce-002590263bf5.html
1.1_2
18 Mar 2016 11:22:48
Revision:411338Original commit files touched by this commit		 garga search for other commits by this committer 
Update git packages and versions affected by CVE-2016-2324

MFH:		2016Q1
Sponsored by:	Rubicon Communications (Netgate)
1.1_2
17 Mar 2016 02:45:35
Revision:411251Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document possible code execution and integer overflow issue in git

PR:		208074
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk> (via PR)
Reported by:	Tony Tung <tonytung@merly.org> (via email)
Security:	CVE-2016-2315
Security:	CVE-2016-2324
Security:	https://vuxml.FreeBSD.org/freebsd/93ee802e-ebde-11e5-92ce-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/d2a84feb-ebe0-11e5-92ce-002590263bf5.html
1.1_2
14 Mar 2016 16:46:11
Revision:411103Original commit files touched by this commit		 feld search for other commits by this committer 
Document node vulnerabilities

PR:		207832
Security:	CVE-2016-0702
Security:	CVE-2016-0705
Security:	CVE-2016-0797
1.1_2
14 Mar 2016 14:03:53
Revision:411073Original commit files touched by this commit		 feld search for other commits by this committer 
Document dropbear security vulnerability

PR:		207903
Security:	CVE-2016-3116
1.1_2
14 Mar 2016 13:56:28
Revision:411072Original commit files touched by this commit		 feld search for other commits by this committer 
Document assigned CVE for recent ssh vulnerability

Security:	CVE-2016-3115
1.1_2
14 Mar 2016 12:10:29
Revision:411058Original commit files touched by this commit		 jbeich search for other commits by this committer 
Document one more graphite2 vulnerability
1.1_2
13 Mar 2016 16:31:26
Revision:411001Original commit files touched by this commit		 riggs search for other commits by this committer 
Fix copy/paste error from previous commit
1.1_2
13 Mar 2016 16:28:29
Revision:411000Original commit files touched by this commit		 riggs search for other commits by this committer 
Document XSS vulnerability in graphics/jpgraph2 before 3.0.7_1

PR:		207001
Security:	CVE-2009-4422
1.1_2
13 Mar 2016 14:43:31
Revision:410974Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document issues in recent PHP security release

Security:	https://vuxml.FreeBSD.org/freebsd/e991ef79-e920-11e5-92ce-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/5af511e5-e928-11e5-92ce-002590263bf5.html
1.1_2
13 Mar 2016 14:39:51
Revision:410971Original commit files touched by this commit		 junovitch search for other commits by this committer 
Expand February PHP entry with extra CVE and all security bugs on changelog

Security:	CVE-2016-2554
Security:	https://vuxml.FreeBSD.org/freebsd/85eb4e46-cf16-11e5-840f-485d605f4717.html
1.1_2
11 Mar 2016 22:50:09
Revision:410845Original commit files touched by this commit		 bdrewery search for other commits by this committer 
Document OpenSSH 7.2p2 fix for X11Forwarding command injection
1.1_2
10 Mar 2016 23:37:44
Revision:410801Original commit files touched by this commit		 feld search for other commits by this committer 
Document net/quagga vulnerability

Security:	CVE-2016-2342
1.1_2
10 Mar 2016 19:50:28
Revision:410775Original commit files touched by this commit		 feld search for other commits by this committer 
net-im/ricochet: Document vulnerability

PR:		207536
1.1_2
10 Mar 2016 15:03:39
Revision:410756Original commit files touched by this commit		 feld search for other commits by this committer 
Document security/pidgin-otr vulnerability

Security:	CVE-2015-8833
1.1_2
09 Mar 2016 22:58:44
Revision:410735Original commit files touched by this commit		 feld search for other commits by this committer 
Update libotr vulnerability information

Correct description is "integer overflow"

libotr3 has also been added as vulnerable. It appears vulnerable as it
also has datalen defined as unsigned int and identical functions.

Security:	http://www.vuxml.org/freebsd/c2b1652c-e647-11e5-85be-14dae9d210b8.html
1.1_2
09 Mar 2016 22:42:40
Revision:410733Original commit files touched by this commit		 feld search for other commits by this committer 
Document security/libotr vulnerability

It is not clear at this time if security/libotr3 is also affected.

Security:	CVE-2016-2851
1.1_2
09 Mar 2016 01:47:19
Revision:410676Original commit files touched by this commit		 jbeich search for other commits by this committer 
Adjust brotli vulnerability after MFH in r410670
1.1_2
08 Mar 2016 21:16:45
Revision:410665Original commit files touched by this commit		 jbeich search for other commits by this committer 
Adjust brotli vulnerability after r410664
1.1_2
08 Mar 2016 20:41:25
Revision:410659Original commit files touched by this commit		 jbeich search for other commits by this committer 
Move brotli to its own entry
1.1_2
08 Mar 2016 19:45:11
Revision:410651Original commit files touched by this commit		 jbeich search for other commits by this committer 
Document recent Firefox vulnerabilities
1.1_2
08 Mar 2016 01:45:27
Revision:410598Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Django multiple vulnerabilities

Security:	CVE-2016-2512
Security:	CVE-2016-2513
Security:	https://vuxml.FreeBSD.org/freebsd/f9e6c0d1-e4cc-11e5-b2bd-002590263bf5.html
1.1_2
08 Mar 2016 01:09:24
Revision:410594Original commit files touched by this commit		 junovitch search for other commits by this committer 
Wrap long lines.  No content change.
1.1_2
08 Mar 2016 01:00:34
Revision:410592Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document Wordpress multiple vulnerabilities

While here, fix URL reference in last Wordpress entry

Security:	CVE-2016-2221
Security:	CVE-2016-2222
Security:	https://vuxml.FreeBSD.org/freebsd/fef03980-e4c6-11e5-b2bd-002590263bf5.html
1.1_2
07 Mar 2016 15:37:38
Revision:410524Original commit files touched by this commit		 madpilot search for other commits by this committer 
Add CVE Names for old asterisk vulnerabilities.
1.1_2
07 Mar 2016 12:53:01
Revision:410519Original commit files touched by this commit		 mandree search for other commits by this committer 
New: remote buffer overflow in PuTTY < 0.67's scp documented

Security:	CVE-2016-2563
1.1_2
06 Mar 2016 13:22:33
Revision:410458Original commit files touched by this commit		 rakuco search for other commits by this committer 
Add entries for CVE-2013-6892 and CVE-2016-2511 in devel/websvn.

Security:	CVE-2013-6892
Security:	CVE-2016-2511
1.1_2
06 Mar 2016 06:37:45
Revision:410429Original commit files touched by this commit		 sunpoet search for other commits by this committer 
- Document Ruby on Rails multiple vulnerabilities
1.1_2
05 Mar 2016 20:39:49
Revision:410211Original commit files touched by this commit		 cmt search for other commits by this committer 
Document recent chromium vulnerabilities

Approved by:	miwi (mentor), rene (mentor)
Obtained
from:	http://googlechromereleases.blogspot.de/2016/03/stable-channel-update.html
1.1_2
05 Mar 2016 13:10:35
Revision:410178Original commit files touched by this commit		 rakuco search for other commits by this committer 
Make 7d09b9ee-e0ba-11e5-abc4-6fb07af136d2 pass `make validate'.
1.1_2
05 Mar 2016 13:09:49
Revision:410177Original commit files touched by this commit		 rakuco search for other commits by this committer 
Add entry for security/libssh's CVE-2016-0739.

This was fixed in r409932, but the 2016Q1 branch is still vulnerable.
1.1_2
02 Mar 2016 21:17:13
Revision:409959Original commit files touched by this commit		 vsevolod search for other commits by this committer 
Document the latest exim vulnerability - local privilleges escalation via
insecure environment when using `perl_startup` option and setuid exim.
1.1_2
02 Mar 2016 13:53:05
Revision:409939Original commit files touched by this commit		 feld search for other commits by this committer 
Update graphite vuxml entry to add another relevant URL

PR:		207574
1.1_2
02 Mar 2016 02:28:45
Revision:409906Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document SQL injection and authentication bypass in Cacti

Note CVE-2015-8369/upstream bug 0002646: SQL injection in graph.php
was also fixed in this release but that was backported to 0.8.8f and is
covered in a prior entry.

PR:		207444
Security:	CVE-2015-8377
Security:	CVE-2015-8604
Security:	CVE-2016-2313
Security:	https://vuxml.FreeBSD.org/freebsd/db3301be-e01c-11e5-b2bd-002590263bf5.html
1.1_2
01 Mar 2016 07:30:20
Revision:409851Original commit files touched by this commit		 matthew search for other commits by this committer 
Document the latest round of phpMyAdmin vulnerabilities.  Lots of XSS
problems, and a man-in-the-middle attack on API calls to GitHub.
1.1_2
01 Mar 2016 03:00:41
Revision:409842Original commit files touched by this commit		 junovitch search for other commits by this committer 
Document wireshark multiple vulnerabilities

Security:	CVE-2016-2522
Security:	CVE-2016-2523
Security:	CVE-2016-2524
Security:	CVE-2016-2525
Security:	CVE-2016-2526
Security:	CVE-2016-2527
Security:	CVE-2016-2528
Security:	CVE-2016-2529
Security:	CVE-2016-2530
Security:	CVE-2016-2531
Security:	CVE-2016-2532
Security:	https://vuxml.FreeBSD.org/freebsd/45117749-df55-11e5-b2bd-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/42c2c422-df55-11e5-b2bd-002590263bf5.html
1.1_2
28 Feb 2016 22:50:53
Revision:409781Original commit files touched by this commit		 osa search for other commits by this committer 
Update www/tomcat7 version.
1.1_2
28 Feb 2016 22:10:09
Revision:409773Original commit files touched by this commit		 feld search for other commits by this committer 
Update tomcat vuxml entry

CVE-2015-5346 does not affect Tomcat 6.
1.1_2
28 Feb 2016 21:44:55
Revision:409767Original commit files touched by this commit		 feld search for other commits by this committer 
Document additional tomcat vulnerabilities

Security:	CVE-2015-5346
Security:	CVE-2015-5351
Security:	CVE-2016-0763
1.1_2
28 Feb 2016 21:37:31
Revision:409766Original commit files touched by this commit		 feld search for other commits by this committer 
Update documented tomcat vulnerabiltiies
1.1_2
28 Feb 2016 20:50:20
Revision:409759Original commit files touched by this commit		 feld search for other commits by this committer 
Document tomcat vulnerabilities

Security:	CVE-2016-0714
1.1_2
28 Feb 2016 18:15:13
Revision:409753Original commit files touched by this commit		 girgen search for other commits by this committer 
Document vulnerability i xerces-c3

Security:	CVE-2016-0729

Number of commits found: 7640 (showing only 100 on this page)

[First Page]  «  30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40  »  [Last Page]
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
Security Policy
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
mod_securityJun 06
mod_securityJun 06
firefoxJun 05
firefoxJun 05
firefoxJun 05
firefoxJun 05
firefox-esrJun 05
firefox-esrJun 05
firefox-esrJun 05
firefox-esrJun 05
chromiumJun 04
electron34*Jun 04
electron35*Jun 04
electron36*Jun 04
roundcubeJun 03

31 vulnerabilities affecting 276 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last processed:
2025-06-06 18:03:49 UTC


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)

Calculated hourly:
Port count 33309
Broken 120
Deprecated 309
Ignore 239
Forbidden 1
Restricted 2
No CDROM 1
Vulnerable 32
Expired 25
Set to expire 253
Interactive 0
new 24 hours 1
new 48 hours3
new 7 days20
new fortnight47
new month136
Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD 		Valid HTML, CSS, and RSS. Copyright © 2000-2025 Dan Langille. All rights reserved.