Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
1.1_1 19 Jan 2009 20:21:31 |
wxs |
- Document graphics/optipng buffer overflow
PR: ports/129072
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 19 Jan 2009 20:04:50 |
wxs |
- Document old gitweb privilege escalation vulnerability.
PR: ports/130600
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 16 Jan 2009 16:11:04 |
naddy |
Document vulnerability in older versions of GNU tar.
PR: 130602
Submitted by: Mark Foster <mark@foster.cc> |
1.1_1 16 Jan 2009 00:02:53 |
miwi |
- Mark net-mgmt/nagios2 as secure |
1.1_1 15 Jan 2009 23:00:51 |
miwi |
- Document mplayer -- vulnerability in STR files processor
PR: based on 130573 |
1.1_1 13 Jan 2009 12:22:21 |
miwi |
- Cleanup previous entry
- Add more references |
1.1_1 13 Jan 2009 03:30:53 |
wxs |
- Add missing blockquote and linewrap properly |
1.1_1 13 Jan 2009 03:19:19 |
wxs |
- Document cgiwrap XSS vulnerability
PR: ports/130277
Submitted by: Eric W. Bates <ericx@vineyard.net> |
1.1_1 12 Jan 2009 12:27:39 |
miwi |
- Document nagios -- web interface privilege escalation vulnerability |
1.1_1 11 Jan 2009 19:58:49 |
miwi |
- Document pdfjam -- insecure temporary files
PR: based on 130028 |
1.1_1 11 Jan 2009 19:35:56 |
miwi |
- Document verlihub -- insecure temporary file usage and arbitrary command
execution |
1.1_1 11 Jan 2009 18:16:13 |
miwi |
- Document mysql -- empty bit-string literal denial of service
PR: based on 129978
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 11 Jan 2009 15:38:48 |
miwi |
- Fix discovery date |
1.1_1 11 Jan 2009 15:27:57 |
miwi |
- Document mysql multiple vulnerabilities:
* mysql -- renaming of arbitrary tables by authenticated users
* mysql -- remote Denial of Service via malformed password packet
* mysql -- privilege escalation and overwrite of the system table
information
PR: based on 130025
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 11 Jan 2009 14:49:32 |
miwi |
- Document imap-uw -- imap c-client buffer overflow
PR: 130013
Submitted by: Mark Foster <mark@foster.cc>
Approved by: maintainer timeout |
1.1_1 11 Jan 2009 14:32:43 |
miwi |
- Fix a small typo |
1.1_1 11 Jan 2009 14:29:50 |
miwi |
- Document imap-uw -- local buffer overflow vulnerabilities
PR: 128923
Submitted by: Mark Foster <mark@foster.cc>
Approved by: maintainer timeout |
1.1_1 11 Jan 2009 13:15:54 |
miwi |
- Document libcdaudio -- remote buffer overflow and code execution |
1.1_1 06 Jan 2009 04:31:42 |
tabthorpe |
- Mark xterm 238 safe |
1.1_1 05 Jan 2009 10:09:57 |
remko |
Import latest FreeBSD-SA's so that we are up to date again. |
1.1_1 05 Jan 2009 09:40:29 |
stas |
- Document xterm vulnerability. |
1.1_1 05 Jan 2009 09:06:12 |
stas |
- Document PHP gd library vulnerability. |
1.1_1 04 Jan 2009 09:13:16 |
miwi |
- Update awstats entry (also affect www/awstats-devel) |
1.1_1 04 Jan 2009 08:01:22 |
chinsan |
- Fix the affected version of awstats |
1.1_1 04 Jan 2009 06:21:42 |
chinsan |
- Document awstats -- multiple XSS vulnerabilities
PR: ports/129957
Submitted by: Eygene Ryabinkin <rea-fbsd _at\ codelabs.ru>
Approved by: Alex Samorukov (maintainer)
Security: http://secunia.com/advisories/31519 |
1.1_1 03 Jan 2009 12:35:32 |
miwi |
- Cleanup (fix whitespaces, typos) |
1.1_1 03 Jan 2009 12:06:45 |
chinsan |
- Completely fix CVE-2005-0448
PR: ports/129301
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 02 Jan 2009 09:56:29 |
erwin |
Bump copyright year. |
1.1_1 02 Jan 2009 04:44:10 |
tabthorpe |
- Document vim -- multiple vulnerabilities in the netrw module
PR: ports/129137
Submitted by: Eygene Ryabinkin <rea-fbsd codelabs.ru> |
1.1_1 31 Dec 2008 21:23:01 |
mezz |
Add vinagre -- format string vulnerability entry.
PR: ports/129959
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 30 Dec 2008 19:16:15 |
glarkin |
Document twiki - multiple vulnerabilities |
1.1_1 30 Dec 2008 17:09:02 |
ale |
Add entry for roundcube.
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 30 Dec 2008 11:12:39 |
miwi |
- Document mysql -- MyISAM table privileges security bypass vulnerability for
symlinked paths |
1.1_1 30 Dec 2008 09:29:18 |
miwi |
- Document mplayer -- twinvq processing buffer overflow vulnerability
Reported by: Thomas Zander <riggs@rrr.de> (mplayer maintainer) |
1.1_1 26 Dec 2008 09:22:47 |
jadawin |
- ampache -- insecure temporary file usage |
1.1_1 25 Dec 2008 16:41:55 |
miwi |
- Small cleanup for the last cups-base entry
* CVE-2008-5184 was fixed in 1.3.8.
* CVE-2008-1722 does not related to anything in this entry;
* PNG buffer overflow is really CVE-2008-5286.
Reported by: Eygene Ryabinkin <rea-fbsd@codelabs.ru>
No Cookies for: miwi |
1.1_1 19 Dec 2008 21:07:07 |
miwi |
- Document opera -- multiple vulnerabilities |
1.1_1 19 Dec 2008 21:00:00 |
miwi |
- Document mediawiki -- multiple vulnerabilities |
1.1_1 19 Dec 2008 20:36:51 |
miwi |
- Fix make validate |
1.1_1 19 Dec 2008 20:29:46 |
miwi |
- document drupal -- Multiple vulnerabilities |
1.1_1 19 Dec 2008 20:01:32 |
miwi |
- Document mozilla -- multiple vulnerabilities |
1.1_1 11 Dec 2008 19:39:06 |
miwi |
- Fix a small typo |
1.1_1 11 Dec 2008 19:37:42 |
miwi |
- Document phpmyadmin -- cross-site request forgery vulnerability |
1.1_1 08 Dec 2008 14:15:34 |
tabthorpe |
- Document php5 -- potential magic_quotes_gpc vulnerability
Reviewed by: miwi |
1.1_1 07 Dec 2008 19:13:45 |
miwi |
- Fix a typo
Reported by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 07 Dec 2008 18:11:30 |
miwi |
- Document wireshark -- SMTP Processing Denial of Service Vulnerability |
1.1_1 07 Dec 2008 12:13:14 |
miwi |
- Document php -- multiple vulnerabilities |
1.1_1 07 Dec 2008 11:41:32 |
miwi |
- Document mgetty+sendfax -- symlink attack via insecure temporary files
PR: based on 129471
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 07 Dec 2008 11:32:08 |
miwi |
- Document dovecot-managesieve -- Script Name Directory Traversal Vulnerability
PR: based on 129303
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 07 Dec 2008 11:20:17 |
miwi |
Document habari -- Cross-Site Scripting Vulnerability
PR: 129475
Submitted by: Ayumi M <ayu@dahlia.commun.jp> |
1.1_1 07 Dec 2008 09:09:23 |
miwi |
- Add 32545 to the latest vlc entry. |
1.1_1 06 Dec 2008 23:47:28 |
miwi |
- Document vlc -- arbitrary code execution in the RealMedia processor |
1.1_1 06 Dec 2008 23:18:46 |
miwi |
- S/secunia/Secunia |
1.1_1 06 Dec 2008 22:00:53 |
miwi |
- Document mantis - PHP Code Execution Vulnerability
PR: based on 129438
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 06 Dec 2008 21:55:49 |
miwi |
Document mantis -- multiple vulnerabilities
PR: based on 129438 |
1.1_1 04 Dec 2008 20:10:06 |
miwi |
- Fix previous entry |
1.1_1 04 Dec 2008 19:37:35 |
tabthorpe |
- Document squirrelmail -- Cross site scripting vulnerability |
1.1_1 29 Nov 2008 16:24:42 |
miwi |
- Fix discovery from previous entry |
1.1_1 29 Nov 2008 16:16:02 |
miwi |
- Document openoffice -- arbitrary code execution vulnerabilities
PR: based on 129192
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 29 Nov 2008 15:15:33 |
miwi |
- Document wordpress -- Header RSS Feed Script Insertion Vulnerability |
1.1_1 29 Nov 2008 14:31:33 |
miwi |
- Document samba -- potential leakage of arbitrary memory contents
- Fix my previous entry |
1.1_1 29 Nov 2008 13:48:44 |
miwi |
- Document hplip -- hpssd Denial of Service
PR: based on 129097
Submitted by: Eygene Ryabinkin |
1.1_1 29 Nov 2008 13:04:55 |
miwi |
- Document cups -- multiple vulnerabilities |
1.1_1 24 Nov 2008 17:47:53 |
stas |
- Document a buffer overflow vulnerability in imlib2.
PR: ports/129037
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 23 Nov 2008 16:04:36 |
miwi |
- Fix latest mozilla entry
Note:
mail/thunderbird and mail/linux-thunderbird versions are wrong.
All problems are fixed in 2.0.0.18 and not in 2.0.0.17.
Pointy hat to: tabthorpe |
1.1_1 23 Nov 2008 08:38:54 |
miwi |
- Document streamripper -- multiple buffer overflows
PR: based on 128999 |
1.1_1 22 Nov 2008 22:01:10 |
miwi |
- Dokument -- Mantis: Session hijacking vulnerability |
1.1_1 22 Nov 2008 21:46:05 |
miwi |
- Cleanup
- Fix a lot whitespaces |
1.1_1 19 Nov 2008 22:37:18 |
delphij |
Document two ACL bypassing vulnerabilities of dovecot.
Submitted by: Eygene Ryabinkin <rea-fbsd codelabs.ru> (with changes)
PR: ports/129000 |
1.1_1 19 Nov 2008 21:07:47 |
tabthorpe |
- Document libxml2 -- multiple vulnerabilities |
1.1_1 19 Nov 2008 15:24:44 |
tabthorpe |
- Document openfire -- multiple vulnerabilities |
1.1_1 18 Nov 2008 23:07:15 |
wxs |
Document syslog-ng2 chroot vulnerability.
PR: ports/128960
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru>
Reviewed by: tabthorpe |
1.1_1 18 Nov 2008 15:34:11 |
rafan |
- Add a missing new line between entries |
1.1_1 18 Nov 2008 15:33:34 |
rafan |
- Add an entry for print/enscript and its slave ports
PR: ports/128958
Submitted by: Eygene Ryabinkin <rea-fbsd at codelabs.ru> (based on)
Reviewed by: stas@ |
1.1_1 17 Nov 2008 19:02:06 |
wxs |
Add CVE identifier for clamav off-by-one error.
PR: ports/128924
Submitted by: Mark Foster <mark@foster.cc> |
1.1_1 16 Nov 2008 10:01:28 |
stas |
- Fix an indentation in the latest net-snmp entry. |
1.1_1 16 Nov 2008 09:59:35 |
stas |
- Document the recent chain validation vulnerability in gnutls.
PR: ports/128868
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> (based on) |
1.1_1 15 Nov 2008 17:04:30 |
miwi |
- Fix formating |
1.1_1 14 Nov 2008 06:16:44 |
kuriyama |
Add entry for net-snmp (fix will be followed).
PR: ports128772, ports/128837
Submitted by: "Mark D. Foster" <mark@foster.cc>,
Eygene Ryabinkin <rea-fbsd@codelabs.ru> |
1.1_1 13 Nov 2008 20:43:58 |
miwi |
- Cleanup
* Add some more references to the faad2 entry
* Fix formating for the last emacs and trac entry |
1.1_1 13 Nov 2008 18:24:31 |
tabthorpe |
- Document mozilla -- multiple vulnerabilities
Reviewed by: simon |
1.1_1 12 Nov 2008 17:06:56 |
tabthorpe |
- Document faad2 -- heap overflow vulnerability |
1.1_1 11 Nov 2008 22:22:15 |
miwi |
- Fix multimedia/vlc entry |
1.1_1 10 Nov 2008 22:50:28 |
bsam |
Document vulnerability in Emacs python integration.
PR: 127168
Submitted by: keramida |
1.1_1 10 Nov 2008 11:53:00 |
garga |
- Document clamav get_unicode_name() off-by-one buffer overflow, 0.94.1 have
fixed the problem [1]
- Since i'm here, document clamav-devel either
PR: ports/128749 [1]
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> [1] |
1.1_1 09 Nov 2008 03:46:45 |
delphij |
Document trac wiki markup DoS issue |
1.1_1 08 Nov 2008 21:30:14 |
miwi |
- Document vlc -- cue processing stack overflow |
1.1_1 03 Nov 2008 19:17:53 |
remko |
Document opera -- multiple vulnerabilities
With hat: secteam
Requested by: simon |
1.1_1 02 Nov 2008 22:47:41 |
nox |
Document qemu -- Heap overflow in Cirrus emulation |
1.1_1 01 Nov 2008 00:21:34 |
delphij |
Fix BugTraq ID :(
Pointy hat to: delphij |
1.1_1 31 Oct 2008 23:58:02 |
delphij |
Add more reference with last commit |
1.1_1 31 Oct 2008 23:52:28 |
delphij |
Document phpmyadmin XSS issue |
1.1_1 29 Oct 2008 06:16:26 |
mezz |
Add linux-opera with opera entries. Remove the YYYYMMDD in the version (ie:
9.61.YYYYMMDD -> 9.61) as linux-opera does not do it anymore. It should not
affect anything on opera. |
1.1_1 28 Oct 2008 21:04:29 |
miwi |
- Fix formating |
1.1_1 28 Oct 2008 20:05:44 |
tabthorpe |
- Document opera -- multiple vulnerabilities
PR: ports/128264
Submitted by: Arjan van Leeuwen <freebsd-maintainer opera.com> |
1.1_1 27 Oct 2008 18:47:05 |
tabthorpe |
- Document libspf2 -- Buffer overflow |
1.1_1 25 Oct 2008 20:13:08 |
miwi |
- Document openx -- sql injection vulnerability |
1.1_1 25 Oct 2008 19:09:24 |
miwi |
- Fix duplicate wording |
1.1_1 25 Oct 2008 18:51:13 |
miwi |
- Document flyspray -- multiple vulnerabilities
Submitted by: Nick Hilliard (nick@foobar.org) (based on) |
1.1_1 24 Oct 2008 19:13:15 |
delphij |
Document wordpress snoopy shell command execution vulnerability |