Add some CERT references to latest Mozilla entry.

plone -- "member_id" Parameter Portrait Manipulation Vulnerability

Fix copy/paste error in last commit and mark linux-mozilla < 1.7.13 as
vulnerable.

Document mozilla/firefox/thunderbirds's latest attempt at Internet
Explorer compatibility.

Note that I omitted marking some really old mozilla versions as
vulnerable this time, since there is already a bunch of entries
covering these versions (which haven't been in ports for a while).

Update entry for sysutils/heartbeat. The insecure temporary file creation
vulnerability is fixed in 1.2.4.

Approved by:    secteam (simon)

mailman -- Private Archive Script Cross-Site Scripting

Document f2c -- insecure temporary files.

It is not very clear to me to see what version is fixed.  The one fixing
this port should import the latest available one which is fixed.

mplayer -- Multiple integer overflows

- Add Secunia references for last phpMyAdmin issue.

Document kaffeine -- buffer overflow vulnerability.

Document thunderbird -- javascript execution.

Update the latest zoo entry to match the latest update to the port.
This will mark zoo-2.10.1_2 and later as not vulnerable for this
issue.

phpmyadmin -- XSS vulnerabilities
phpmyadmin -- 'set_theme' Cross-Site Scripting

clamav -- Multiple Vulnerabilities

Add cvename to the recent OpenVPN entry.

Submitted by:   Matthias Andree <matthias dot andree at gmx dot de>

Document mediawiki -- hardcoded placeholder string security bypass
vulnerability.

Document netpbm -- buffer overflow in pnmtopng.

Document zoo -- stack based buffer overflow.

Document mediawiki -- cross site scripting vulnerability.

dia -- XFig Import Plugin Buffer Overflow

openvpn -- LD_PRELOAD code execution on client through malicious or compromised
server

PR:             95343
Submitted by:   Matthias Andree <matthias.andree__gmx.de>

samba -- Exposure of machine account credentials in winbind log files

Upgrade pubcookie from 3.3.0-beta2 to 3.3.0a fixing serious XSS
vulnerabilities.

Fill in the version numbers for the vids
6e3b12e2-6ce3-11da-b90c-000e0c2e438a and
82a41084-6ce7-11da-b90c-000e0c2e438a to show which Mantis versions
are vulnerable.

Submitted by:   In cooperation with dvl

For horde -- remote code execution vulnerability in the help viewer
entry:
- Add more references.
- Reformat description to follow normal formatting style better.
- Remove a redundant line in the description to make the meaning more
  clear.

freeradius -- EAP-MSCHAPv2 Authentication Bypass

Add an entry about Horde's remote code execution vulnerability in the
help viewer.

linux-realplayer -- buffer overrun
linux-realplayer -- heap overflow

Reviewed by:    simon

s/8 spaces/tab/ in the sendmail entry.

Noticed by:     simon

Record that our sendmail port was also vulnerable.
Bump modification date.

Update the 'Evolution - remote format string vulnerabilities' entry.

Document the latest three FreeBSD Security Advisories:

SA-06:13
SA-06:12
SA-06:11

xorg-server -- privilege escalation

Reviewed by:    simon

- heimdal -- Multiple vulnerabilities

Reviewed by:    simon

Document ftp/curl's TFTP packet buffer overflow vulnerability

Reworked by:    simon
Approved by:    security-officer (simon)

Add drupal <= 4.6.5 vulns.

Add an entry for Horde < 3.1 (SA19246).

Noticed by:     mnag

Document linux-flashplugin -- arbitrary code execution vulnerability.

Document nfs -- remote denial of service (FreeBSD: SA-06:10)

Approved by:    portmgr (blanket VuXML)

Add OpenSSH Remote Denial of Service (FreeBSD SA-06:09.openssh) to the
vuxml list.

Approved by:    portmgr (Blanket VuXML)

Correct the gpg entry wrt. style.

Approved by:            portmgr (Blanket VuXML)

Update to 1.4.2.2.

Security:       GnuPG does not detect injection of unsigned data
References:    
http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000216.html
Probbed by:     simon
Approved by:    portmgr (erwin)

Document multimedia/mplayer's heap overflow in the ASF demuxer

Reviewed by:    simon
Approved by:    portmgr (implicit), security-officer (simon)

Add the ssh2-nox11 slave port to the list of ports affected by
VID 594ad3c5-a39b-11da-926c-0800209adf0e.

Prodded by:     Dmitry Pryanishnikov <dmitry@atlantis.dp.ua>
Approved by:    portmgr (erwin)

Document a SSH.COM SFTP server format string vulnerability affecting
the security/ssh2 port.

Approved by:    portmgr (erwin)

Document GNU tar invalid headers buffer overflow.

Approved by:    portmgr (erwin)

Remove the pinentry entry.  It was gentoo specific and I overlooked
that.

Noticed by:     Dejan Lesjak <dejan dot lesjak at ijs dot si>
Pointyhat:      remko
Approved by:    portmgr (implicit VuXML)

Document Bugzilla [2.*, 2.20.1) vulnerabilities.

Approved by:    security-officer (simon)
Approved by:    portmgr (implicit)

Document squirrelmail (< 1.4.6) vulnerabilities:
        CVE-2006-0377 (IMAP injection)
        CVE-2006-0195 (XSS)
        CVE-2006-0188 (XSS)

Approved by:    security-officer (simon)
Approved by:    portmgr (implicit)

Remove the latest squid entry, it already existed.

Noticed by:     Thomas-Martin Seck <tmseck at netcologne dot de>

Document gedit -- format string vulnerability.

Add koffice to the RTF import issue.

Documenet WebCalendar -- unauthorized access vulnerability.

Document abiword -- stack based buffer overflow vulnerabilities.

Document pinentry -- local privilege escalation.
Correct previous entry (the entry time was invalid).

Document squid -- dns lookup spoofing.

Document postgresql81-server -- SET ROLE privilege escalation.

Document gnupg -- false positive signature verification.

Document rssh -- privilege escalation vulnerability.
The port will be marked forbidden due to possible
root access.

Document tor -- malicious tor server can locate a hidden service.

Document sudo -- arbitrary command execution.

Document libtomcrypt -- weak signature scheme with ECC keys.

Document mantis -- "view_filters_page.php" cross site scripting vulnerability.

Document phpbb -- multiple vulnerabilities.

Reviewed by:    simon

Document postgresql -- character conversion and tsearch2 vulnerabilities.

Document heartbeat -- insecure temporary file creation vulnerability.

Document kpdf -- heap based buffer overflow

Document perl, webmin, usermin -- perl format string integer wrap vulnerability

PR:             ports/91202
Submitted by:   KOMATSU Shinichiro <koma2 at lovepeers dot org>
                (slightly modified).

Document phpicalendar -- cross site scripting vulnerability and
document phpicalendar -- file disclosure vulnerability [1].

Reviewed by:            simon [1]
Spotted on:             cvs-ports@ [1]

Document FreeBSD -- Infinite loop in SACK handling (FreeBSD SA 06.08)

Document pf -- IP fragment handling panic, FreeBSD SA 06.07

Document FreeBSD -- Local kernel memory disclosure
(FreeBSD SA 06.07).

Document IEEE 802.11 -- buffer overflow (FreeBSD SA 06.05).

Add FreeBSD SA 06.04.ipfw to the vuln.xml list.

Mark ivtools 1.2.3 as fixed for jpeg vulnerabilities.  Note that this
version is not yet in ports, but marking the new version fixed now
make porting a bit simpler.

Document kpopup -- local root exploit and local denial of service.

PR:             ports/92359
Submitted by:   Ion-Mihai "IOnut" Tetcu <itetcu@people.tecnik93.com>

Oops.  Forgot to modify the discovery date.

Spotted by:     simon (again)

Add 4 FreeBSD advisories to the VuXML database.
The other recently released advisories will be
added later today.

o SA-06:03.cpio
o SA-06:02.ee
o SA-06:01.texindex
o SA-05:20.cvsbug

SHA256ify

Approved by: krion@

Document local root exploit in SGE.

Document "fetchmail -- crash when bouncing a message" DOS vulnerability.

Reviewed by:    secteam (simon)

- Update description and references for "clamav -- possible heap
  overflow in the UPX code" now that more information is available.
- Remove some EOL whitespace.

Add an entry for clamav/clamav-devel

Reviewed by:    simon (secteam)

Document milter-bogom -- headerless message crash.

Reported by:    Victor Balada Diaz <victor@bsdes.net>

Mark latest bnc version as fixed wrt. to "fd_set -- bitmap index
overflow in multiple applications".

Reported by:    Christian Elmerot <Chreo At chreo , net>

Document two bogofilter vulnerabilities.

Submitted by:   Matthias Andree <matthias.andree@gmx.de>

Add an entry for rxvt-unicode < 6.3: root privileges were not restored
before the call to openpty(), so the permissions on the pty device node
remain root:wheel 666 after opening a new terminal.

Discovered by:  Ryan Beasley <ryanb (at) rainbowdevilsland.co.uk>

  `ru-apache' and `ru-apache+mod_ssl' was patchet against CAN-2005-3352
 
(http://www.FreeBSD.org/ports/portaudit/9fff8dc8-7aa7-11da-bf72-00123f589060.html)

  Yes, changes are validated with xmllint at this time.

Correct a little typo.

Document apache -- mod_imap cross-site scripting flaw.

I expanded the diff from the PR a bit to denote other
affected apache ports as well.  Therefor mistakes in
that should be redirected to me.

Also bump the copyright year for the vuxml file.

PR:                     ports/91157 (based on)
Submitted by:           KOMATSU Shinichiro <koma2 at lovepeers dot org>

Fix the affected versions of 9b4facec-6761-11da-99f6-00123ffe8333.

PR:             ports/91156
Submitted by:   KOMATSU Shinichiro (koma2 at lovepeers dot org)

Add missing "</package>" tag from rev. 1.917, which caused the file to
be invalid XML and in turn caused the portaudit database to be only
partially built.

Bump modification date of all entries which had modification date on
the 23'rd to make sure VuXML consumers catch the updates.

Portaudit problem reported by:  Peter Vohmann
Pointy hat to:                  lev

  russian/apache13 and russian/apache13-modssl were updated and new version
doesn't
contain any known vulnerabilities.

Bump modification date for entries touched by last commit.

Update the phpSysInfo entries, PR ports/90849 will solve the documented
issues.

Requested by:           Babak Farrokhi <babak at farrokhi dot net>

Fix another typo in my nbd entry.

Spotted by:             Linus Nordberg <linus at nordberg dot se>

Correct a typo.

Submitted by:           Linus Nordberg <linus at nordberg dot se>

Update the affected range.

Prodded by:     erwin

The previous entry should have read:
Document ndb-server -- buffer overflow vulnerability

: