notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)Want a good monitor light? See my photosAll times are UTC		 Ukraine

Bot filter coming soon

To deter bots pegging the database CPU to 100%, a bot testing filter to be added to the website. This should not affect newsfeeds etc. Anubis seems light-weight - it is already in use within the FreeBSD Project. This notice is just a heads up in case you see something odd. This notice will be updated after Anubis is installed.

non port: security/vuxml/vuln.xml

Number of commits found: 6273 (showing only 100 on this page)

[First Page]  «  16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26  »  [Last Page]

Thursday, 7 Jul 2016
03:36 lwhsu search for other commits by this committer 
- Fix affected versions of qemu and qemu-devel

Reviewed by:	junovitch
Original commitRevision:418159 
01:44 junovitch search for other commits by this committer 
Document remote denial of service in quassel

PR:		209218
Security:	CVE-2016-4414
Security:	https://vuxml.FreeBSD.org/freebsd/7d64d00c-43e3-11e6-ab34-002590263bf5.html
Original commitRevision:418154 
Tuesday, 5 Jul 2016
17:59 ohauer search for other commits by this committer 
- document apache24 H2/X509 sec. issue.

  The sec. issue is only present if the port was built with
  non default settings (experimental H2 feature) and
  used in combination with X509 client auth!
Original commitRevision:418099 
Monday, 4 Jul 2016
19:02 junovitch search for other commits by this committer 
Document Xen Security Advisories (XSAs 173, 175, 176, 178, 179, and 180).

XSAs 171, 172, 174, and 181 are not applicable to FreeBSD.

Discussed with:	royger
Security:	CVE-2014-3672
Security:	CVE-2016-3710
Security:	CVE-2016-3712
Security:	CVE-2016-4963
Security:	CVE-2016-4480
Security:	CVE-2016-4962
Security:	CVE-2016-3960
Security:	https://vuxml.FreeBSD.org/freebsd/e800cd4b-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e6ce6f50-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e589ae90-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e43b210a-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/e2fca11b-4212-11e6-942d-bc5ff45d0f28.html
Security:	https://vuxml.FreeBSD.org/freebsd/d51ced72-4212-11e6-942d-bc5ff45d0f28.html
Original commitRevision:418049 
13:40 junovitch search for other commits by this committer 
Update wnpa-sec-2016-12 through wnpa-sec-2016-18 with CVE assignment for
issues fixed in Wireshark 2.0.2

While here, fix bad copy/paste on upstream URL when the entry was made.

Security:	CVE-2016-4415
Security:	CVE-2016-4416
Security:	CVE-2016-4417
Security:	CVE-2016-4418
Security:	CVE-2016-4419
Security:	CVE-2016-4420
Security:	CVE-2016-4421
Secuirty:	https://vuxml.FreeBSD.org/freebsd/45117749-df55-11e5-b2bd-002590263bf5.html
Original commitRevision:418026 
13:32 junovitch search for other commits by this committer 
Update wnpa-sec-2016-19 through wnpa-sec-2016-27 with CVE assignment for
issues fixed in Wireshark 2.0.3

Security:	CVE-2016-4006
Security:	CVE-2016-4076
Security:	CVE-2016-4077
Security:	CVE-2016-4078
Security:	CVE-2016-4079
Security:	CVE-2016-4080
Security:	CVE-2016-4081
Security:	CVE-2016-4082
Security:	CVE-2016-4083
Security:	CVE-2016-4084
Security:	https://vuxml.FreeBSD.org/freebsd/7e36c369-10c0-11e6-94fa-002590263bf5.html
Original commitRevision:418025 
13:25 junovitch search for other commits by this committer 
Document wnpa-sec-2016-29 through wnpa-sec-2016-37 for issues fixed in
Wireshark 2.0.4

Security:	CVE-2016-5350
Security:	CVE-2016-5351
Security:	CVE-2016-5352
Security:	CVE-2016-5353
Security:	CVE-2016-5354
Security:	CVE-2016-5355
Security:	CVE-2016-5356
Security:	CVE-2016-5357
Security:	CVE-2016-5358
Security:	https://vuxml.FreeBSD.org/freebsd/313e9557-41e8-11e6-ab34-002590263bf5.html
Original commitRevision:418023 
01:46 junovitch search for other commits by this committer 
Add fixed entries for Python 2.7, 3.4, 3.5 for urllib vulnerability.

Reset 3.3 as unfixed.

PR:		210539
PR:		210541
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5699
Security:	https://vuxml.FreeBSD.org/freebsd/a61374fc-3a4d-11e6-a671-60a44ce6887b.html
Original commitRevision:418007 
Sunday, 3 Jul 2016
23:13 junovitch search for other commits by this committer 
Update earlier openvswitch entry with version fixed in ports

PR:		208404
Reported by:	ohauer
Security:	CVE-2016-2074
Security:	https://vuxml.FreeBSD.org/freebsd/b53bbf58-257f-11e6-9f4d-20cf30e32f6d.html
Original commitRevision:418004 
22:57 junovitch search for other commits by this committer 
Document multiple security advisories for Moodle

Security:	CVE-2016-3729
Security:	CVE-2016-3731
Security:	CVE-2016-3732
Security:	CVE-2016-3733
Security:	CVE-2016-3734
Security:	https://vuxml.FreeBSD.org/freebsd/8656cf5f-4170-11e6-8dfe-002590263bf5.html
Original commitRevision:418003 
21:21 feld search for other commits by this committer 
Document icingaweb2 vulnerability
Original commitRevision:417998 
19:31 junovitch search for other commits by this committer 
Fix date from r417994 (2016 not 2015)
Original commitRevision:417995 
19:30 junovitch search for other commits by this committer 
Document authorization logic vulnerability in Apache Hive

PR:		207173
Security:	CVE-2015-7521
Security:	https://vuxml.FreeBSD.org/freebsd/a5c204b5-4153-11e6-8dfe-002590263bf5.html
Original commitRevision:417994 
18:44 junovitch search for other commits by this committer 
Document SQLite3 tempdir selection vulnerability

PR:		210751
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-6153
Security:	https://vuxml.FreeBSD.org/freebsd/546deeea-3fc6-11e6-a671-60a44ce6887b.html
Original commitRevision:417989 
09:28 brnrd search for other commits by this committer 
security/vuxml: Add Python smtplib TLS stripping vuln

PR:		210685
Submitted by:	brnrd
Security:	CVE-2016-0772
Security:	8d5368ef-40fe-11e6-b2ec-b499baebfeaf
Original commitRevision:417962 
Friday, 1 Jul 2016
15:22 matthew search for other commits by this committer 
Belatedly document 12 security advisories about phpMyAdmin.
Severities range from 'non-critical' to 'severe'
Original commitRevision:417890 
Thursday, 30 Jun 2016
22:55 feld search for other commits by this committer 
Document haproxy vulnerability

Security:	CVE-2016-5360
Original commitRevision:417856 
22:47 feld search for other commits by this committer 
Document libtorrent-rasterbar vulnerability

Security:	CVE-2016-5301
Original commitRevision:417850 
22:42 feld search for other commits by this committer 
Modify dnsmasq vuxml entry

The vulnerable version range was not matching correctly for the devel
port.
Original commitRevision:417849 
22:32 feld search for other commits by this committer 
Document expat2 vulnerability

Security:	CVE-2016-4472
Original commitRevision:417845 
22:10 feld search for other commits by this committer 
Document dnsmasq vulnerability

Security:	CVE-2015-8899
Original commitRevision:417844 
21:08 feld search for other commits by this committer 
Document python vulnerability

PR:		210541
Security:	CVE-2016-5699
Original commitRevision:417843 
20:52 feld search for other commits by this committer 
Document openssl vulnerability

PR:		210550
Security:	CVE-2016-2177
Original commitRevision:417842 
Sunday, 26 Jun 2016
18:13 junovitch search for other commits by this committer 
Document remote denial of service via FileUpload component in Tomcat

PR:		209669 [1]
Reported by:	Geoffroy Desvernay <dgeo@centrale-marseille.fr> [1]
Reported by:	Roger Marquis <marquis@roble.com>
Security:	CVE-2016-3092
Security:	https://vuxml.FreeBSD.org/freebsd/cbceeb49-3bc7-11e6-8e82-002590263bf5.html
Original commitRevision:417596 
Saturday, 25 Jun 2016
23:17 junovitch search for other commits by this committer 
Document Wordpress vulnerabilities fixed in 4.5.3

PR:             210480 [1]
PR:             210581
Reported by:	Mihail Timofeev <9267096@gmail.com> [1]
Security:	CVE-2016-5832
Security:	CVE-2016-5833
Security:	CVE-2016-5834
Security:	CVE-2016-5835
Security:	CVE-2016-5836
Security:	CVE-2016-5837
Security:	CVE-2016-5838
Security:	CVE-2016-5839
Security:	https://vuxml.FreeBSD.org/freebsd/bfcc23b6-3b27-11e6-8e82-002590263bf5.html
Original commitRevision:417499 
22:18 junovitch search for other commits by this committer 
Docment security issues fixed in PHP 7.0.8, 5.6.23, and 5.5.37

PR:		210491
PR:		210502
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Reported by:	Philip Jocks <freebsdbugs@filis.org>
Security:	CVE-2015-8874
Security:	CVE-2016-5766
Security:	CVE-2016-5767
Security:	CVE-2016-5768
Security:	CVE-2016-5769
Security:	CVE-2016-5770
Security:	CVE-2016-5771
Security:	CVE-2016-5772
Security:	CVE-2016-5773
Security:	https://vuxml.FreeBSD.org/freebsd/66d77c58-3b1d-11e6-8e82-002590263bf5.html
Original commitRevision:417490 
Thursday, 23 Jun 2016
16:55 feld search for other commits by this committer 
Fix vuxml

I didn't validate after updating "foo reports:" line

Pointyhat:	me
Original commitRevision:417391 
16:25 feld search for other commits by this committer 
Document libarchive vulnerabilities

PR:		210493
Security:	CVE-2015-8934
Security:	CVE-2016-4300
Security:	CVE-2016-4301
Security:	CVE-2016-4302
Original commitRevision:417384 
15:52 feld search for other commits by this committer 
Add piwik XSS to vuxml

No further information is available. No CVE has been assigned.

PR:		210458
Original commitRevision:417381 
Tuesday, 21 Jun 2016
08:34 vd search for other commits by this committer 
Followup to r417190 - all versions of wget<1.18 are affected
Original commitRevision:417193 
08:16 vd search for other commits by this committer 
Document ftp/wget's HTTP to FTP redirection file name confusion vulnerability

PR:		210420
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-4971
Original commitRevision:417190 
Monday, 20 Jun 2016
19:08 feld search for other commits by this committer 
Update vuxml for libxslt vulnerabilities

These vulnerabilities were previously reported by Google as they bundle
libxslt with Chrome. When we patched Chromium to address these
vulnerabilites it was overlooked that we do not bundle libxslt library
with Chromium, but instead use textproc/libxslt. Chromium users have
continued to be vulnerable to these CVEs as a result. This update fixes
the Chromium CVE entry and adds a separate one for libxslt.

PR:		210298
Security:	CVE-2016-1683
Security:	CVE-2016-1684
Original commitRevision:417173 
Sunday, 19 Jun 2016
09:03 brnrd search for other commits by this committer 
Update security/libressl vulnerability for quarterly branch

  - Mark vulnerable from 2.3.0 up to 2.3.6
  - Mark vulnerable below 2.2.9
Original commitRevision:417104 
02:57 junovitch search for other commits by this committer 
Document Flash vulnerabilities in Adobe Security Bulletins APSB16-10,
APSB16-15, APSB16-18

PR:		209592
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-1006, CVE-2016-1011, CVE-2016-1012, CVE-2016-1013,
		CVE-2016-1014, CVE-2016-1015, CVE-2016-1016, CVE-2016-1017,
		CVE-2016-1018, CVE-2016-1019, CVE-2016-1020, CVE-2016-1021,
		CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CVE-2016-1025,
		CVE-2016-1026, CVE-2016-1027, CVE-2016-1028, CVE-2016-1029,
		CVE-2016-1030, CVE-2016-1031, CVE-2016-1032, CVE-2016-1033,
		CVE-2016-1096, CVE-2016-1097, CVE-2016-1098, CVE-2016-1099,
		CVE-2016-1100, CVE-2016-1101, CVE-2016-1102, CVE-2016-1103,
		CVE-2016-1104, CVE-2016-1105, CVE-2016-1106, CVE-2016-1107,
		CVE-2016-1108, CVE-2016-1109, CVE-2016-1110, CVE-2016-4108,
		CVE-2016-4109, CVE-2016-4110, CVE-2016-4111, CVE-2016-4112,
		CVE-2016-4113, CVE-2016-4114, CVE-2016-4115, CVE-2016-4116,
		CVE-2016-4117, CVE-2016-4120, CVE-2016-4121, CVE-2016-4160,
		CVE-2016-4161, CVE-2016-4162, CVE-2016-4163, CVE-2016-4122,
		CVE-2016-4123, CVE-2016-4124, CVE-2016-4125, CVE-2016-4127,
		CVE-2016-4128, CVE-2016-4129, CVE-2016-4130, CVE-2016-4131,
		CVE-2016-4132, CVE-2016-4133, CVE-2016-4134, CVE-2016-4135,
		CVE-2016-4136, CVE-2016-4137, CVE-2016-4138, CVE-2016-4139,
		CVE-2016-4140, CVE-2016-4141, CVE-2016-4142, CVE-2016-4143,
		CVE-2016-4144, CVE-2016-4145, CVE-2016-4146, CVE-2016-4147,
		CVE-2016-4148, CVE-2016-4149, CVE-2016-4150, CVE-2016-4151,
		CVE-2016-4152, CVE-2016-4153, CVE-2016-4154, CVE-2016-4155,
		CVE-2016-4156, CVE-2016-4166, CVE-2016-4171
Security:	https://vuxml.FreeBSD.org/freebsd/0e3dfdde-35c4-11e6-8e82-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/07888b49-35c4-11e6-8e82-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/0c6b008d-35c4-11e6-8e82-002590263bf5.html
Original commitRevision:417097 
Friday, 17 Jun 2016
19:44 feld search for other commits by this committer 
Fix vuxml <cvename> syntax for recent Chrome entry
Original commitRevision:417031 
19:14 rene search for other commits by this committer 
Document new vulnerabilities in www/chromium < 51.0.2704.103

Obtained
from:	https://googlechromereleases.blogspot.nl/2016/06/stable-channel-update_16.html
Original commitRevision:417023 
17:03 rm search for other commits by this committer 
Document integer overflow in python's zipimport module

PR:		210324
Submitted by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5636
Original commitRevision:417018 
01:12 junovitch search for other commits by this committer 
Document Drupal vulnerabilities

PR:		210317
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	https://www.drupal.org/SA-CORE-2016-002
Security:	https://vuxml.FreeBSD.org/freebsd/7932548e-3427-11e6-8e82-002590263bf5.html
Original commitRevision:416988 
Tuesday, 14 Jun 2016
01:48 junovitch search for other commits by this committer 
Document multiple issues in Botan

PR:		209595
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2015-7827
Security:	CVE-2016-2849
Security:	https://vuxml.FreeBSD.org/freebsd/ac0900df-31d0-11e6-8e82-002590263bf5.html
Security:	CVE-2014-9742
Security:	https://vuxml.FreeBSD.org/freebsd/f771880c-31cf-11e6-8e82-002590263bf5.html
Original commitRevision:416872 
Monday, 13 Jun 2016
19:21 feld search for other commits by this committer 
Update vuxml

A backported fix was added to security/openssl
Original commitRevision:416861 
Saturday, 11 Jun 2016
10:10 riggs search for other commits by this committer 
Document remote code execution vulnerability in multimedia vlc before 2.2.4
Original commitRevision:416712 
Friday, 10 Jun 2016
01:57 jbeich search for other commits by this committer 
Chase MFSA typo fix
Original commitRevision:416651 
01:15 junovitch search for other commits by this committer 
Document cross-site scripting CVE in Roundcube

PR:		209841
Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
Security:	CVE-2016-5103
Security:	https://vuxml.FreeBSD.org/freebsd/97e86d10-2ea7-11e6-ae88-002590263bf5.html
Original commitRevision:416647 
Thursday, 9 Jun 2016
21:03 brnrd search for other commits by this committer 
Add entry for CVE-2016-2178 OpenSSL vulnerability

Security:	CVE-2016-2178
Original commitRevision:416631 
03:39 junovitch search for other commits by this committer 
Fill in <freebsdpr> tag on last entry; I staged it prior to opening the PR
for tracking and forgot to fill it in pre-commit.

PR:		210155
Original commitRevision:416582 
03:28 junovitch search for other commits by this committer 
Document two expat CVEs reported by upstream

PR:		210155
Reported by:	Sebastian Pipping <sebastian@pipping.org>
Security:	CVE-2012-6702
Security:	CVE-2016-5300
Security:	https://vuxml.FreeBSD.org/freebsd/c9c252f5-2def-11e6-ae88-002590263bf5.html
Original commitRevision:416580 
Wednesday, 8 Jun 2016
20:32 bmah search for other commits by this committer 
Add entry for recent iperf3 vulnerability.

Security:	d6bbf2d8-2cfc-11e6-800b-080027468580
Sponsored by:	ESnet
Original commitRevision:416563 
Tuesday, 7 Jun 2016
16:37 tijl search for other commits by this committer 
Document GNUTLS-SA-2016-1.
Original commitRevision:416515 
16:34 jbeich search for other commits by this committer 
Document recent Firefox vulnerabilities
Original commitRevision:416514 
Monday, 6 Jun 2016
22:32 feld search for other commits by this committer 
Fix cvename entries
Original commitRevision:416490 
21:08 rene search for other commits by this committer 
Document new vulnerabilities in www/chromium < 51.0.2704.79

Obtained
from:	http://googlechromereleases.blogspot.nl/2016/06/stable-channel-update.html
Original commitRevision:416488 
Sunday, 5 Jun 2016
18:59 tijl search for other commits by this committer 
The Expat vulnerability also affects linux-*-expat.
Original commitRevision:416417 
18:04 junovitch search for other commits by this committer 
Document OpenAFS vulnerabilities in 1.6.16 and 1.6.17

PR:		209534
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2015-8312
Security:	CVE-2016-2860
Security:	CVE-2016-4536
Security:	https://vuxml.FreeBSD.org/freebsd/2e8fe57e-2b46-11e6-ae88-002590263bf5.html
Security:	https://vuxml.FreeBSD.org/freebsd/bcbd3fe0-2b46-11e6-ae88-002590263bf5.html
Original commitRevision:416410 
17:44 junovitch search for other commits by this committer 
Fixup invalid nginx version from r416222; it needed a PORTEPOCH to be valid.
Add version range valid for backported commit on 1.8 and 1.9 in quarterly.

Security:	CVE-2016-4450
Security:	https://vuxml.FreeBSD.org/freebsd/36cf7670-2774-11e6-af29-f0def16c5c1b.html
Original commitRevision:416408 
16:36 junovitch search for other commits by this committer 
Document ikiwiki XSS vulnerability

PR:		209593
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-4561
Security:	https://vuxml.FreeBSD.org/freebsd/0297b260-2b3b-11e6-ae88-002590263bf5.html
Original commitRevision:416397 
Wednesday, 1 Jun 2016
22:49 zi search for other commits by this committer 
- Document vulnerability in www/h2o

PR:		209926
Submitted by:	Dave Cottlehuber (maintainer)
Original commitRevision:416260 
Tuesday, 31 May 2016
21:50 osa search for other commits by this committer 
Fix latest cacti entry.

Found by:	make validate
No cookie for:	brnrd
Original commitRevision:416223 
21:44 osa search for other commits by this committer 
Add an entry about latest nginx vulnerability.
Original commitRevision:416222 
20:00 brnrd search for other commits by this committer 
security/vuxml: Modify libressl < 2.3.4 range

  - Change existing range to >2.3.0 and <2.3.4
  - Add <2.2.7 range
  - Update modified date

This addresses pkg audit showing LibreSSL 2.2.7 as vulnerable
Original commitRevision:416215 
Sunday, 29 May 2016
19:01 pi search for other commits by this committer 
Document security issues fixed in cacti 0.8.8h

PR:		209809
Reported by:	Daniel Austin <freebsd-ports@dan.me.uk>
Security:	CVE-2016-3659
Security:	https://vuxml.FreeBSD.org/freebsd/6167b341-250c-11e6-a6fb-003048f2e514.html
Original commitRevision:416120 
09:46 ohauer search for other commits by this committer 
- document openvswitch CVE-2016-2074

PR:		208404
Submitted by:	ohauer
Original commitRevision:416090 
Saturday, 28 May 2016
10:14 rene search for other commits by this committer 
Document vulnerabilities in www/chromium:
 < 50.0.2661.94
 < 50.0.2661.102
 < 51.0.2704.63

Obtained from:	http://googlechromereleases.blogspot.nl/
Original commitRevision:415981 
01:40 junovitch search for other commits by this committer 
Document security issues fixed in PHP 7.0.7, 5.6.22, and 5.5.36

PR:		209779
Reported by:	Fabiano Sidler <fabianosidler@swissonline.ch>
Security:	CVE-2013-7456
Security:	CVE-2016-4343
Security:	CVE-2016-5093
Security:	CVE-2016-5094
Security:	CVE-2016-5096
Security:	https://vuxml.FreeBSD.org/freebsd/6b110175-246d-11e6-8dd3-002590263bf5.html
Original commitRevision:415969 
Thursday, 26 May 2016
20:01 matthew search for other commits by this committer 
Add CVE names for the latest phpMyAdmin advisories, not that they have
been released.
Original commitRevision:415913 
06:57 matthew search for other commits by this committer 
fix typo.
Original commitRevision:415876 
Wednesday, 25 May 2016
21:06 matthew search for other commits by this committer 
Document two more phpMyAdmin vulnerabilities: PMSA-2016-14 and
PMSA-2016-16.

(For anyone wondering about the suspicious gap in the sequence:
PMSA-2016-15 only affected unreleased code in their git master
development branch)
Original commitRevision:415865 
Tuesday, 24 May 2016
01:57 junovitch search for other commits by this committer 
Document security announcement from MediaWiki 1.26.3, 1.25.6, and
1.23.14 release.
Original commitRevision:415757 
Friday, 20 May 2016
01:22 junovitch search for other commits by this committer 
Document wpa_supplicant security advisory 2016-1

PR:		209564
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-4477
Security:	CVE-2016-4476
Security:	https://vuxml.FreeBSD.org/freebsd/967b852b-1e28-11e6-8dd3-002590263bf5.html
Original commitRevision:415536 
01:07 junovitch search for other commits by this committer 
Document Expat XML Parser crash on malformed input

Security:	CVE-2016-0718
Security:	https://vuxml.FreeBSD.org/freebsd/57b3aba7-1e25-11e6-8dd3-002590263bf5.html
Original commitRevision:415533 
Tuesday, 17 May 2016
18:32 ohauer search for other commits by this committer 
- document bugzilla Cross-Site Scripting issue
Original commitRevision:415406 
Saturday, 14 May 2016
08:46 mandree search for other commits by this committer 
Mark openvpn-polarssl <v2.3.11 vulnerable, too, not just openvpn.

Security: 0dc8be9e-19af-11e6-8de0-080027ef73ec
Original commitRevision:415181 
08:43 mandree search for other commits by this committer 
Mark OpenVPN before 2.3.11 vulnerable.

v2.3.11 fixed a buffer overrun in PAM authentication,
and a port-share bug with denial-of-service potential.
Original commitRevision:415180 
Friday, 13 May 2016
12:51 feld search for other commits by this committer 
Fix vuxml
Original commitRevision:415105 
12:43 kwm search for other commits by this committer 
Add basic imagemagick entry.
Original commitRevision:415104 
Thursday, 12 May 2016
03:45 lwhsu search for other commits by this committer 
Fix affected versions
Original commitRevision:415045 
03:44 lwhsu search for other commits by this committer 
Document Jenkins Security Advisory 2016-05-11
Original commitRevision:415044 
Tuesday, 10 May 2016
03:00 junovitch search for other commits by this committer 
Document Perl taint protection bypass vulnerability

PR:		208879
Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
Security:	CVE-2016-2381
Security:	https://vuxml.FreeBSD.org/freebsd/d9f99491-1656-11e6-94fa-002590263bf5.html
Original commitRevision:414913 
01:49 junovitch search for other commits by this committer 
Document Wordpress vulnerabilities fixed in 4.5.2

PR:		209409
PR:		209378 [1]
Reported by:	Mihail Timofeev <9267096@gmail.com> [1]
Security:	CVE-2016-4566
Security:	CVE-2016-4567
Security:	https://vuxml.FreeBSD.org/freebsd/3686917b-164d-11e6-94fa-002590263bf5.html
Original commitRevision:414902 
00:22 junovitch search for other commits by this committer 
Fix version range for libarchive entry. [1]

While here, add CVE and wrap lines at <80

PR:		209404 [1]
Reported by:	dereks@lifeofadishwasher.com [1]
Security:	CVE-2016-1541
Security:	https://vuxml.FreeBSD.org/freebsd/2b4c8e1f-1609-11e6-b55e-b499baebfeaf.html
Original commitRevision:414896 
Monday, 9 May 2016
19:31 brnrd search for other commits by this committer 
security/vuxml: Add entry for libarchive

  - Vulnerable < 2.3.0

Reviewed by:	feld (mentor)
Approved by:	feld (mentor, ports-secteam)
Security:	CVE-2016-1541
Original commitRevision:414889 
15:24 matthew search for other commits by this committer 
Update recent squid, squid-devel entry to add CVE Numbers
Original commitRevision:414860 
Saturday, 7 May 2016
11:56 matthew search for other commits by this committer 
Document three security advisories for the squid and squid-devel
ports.  CVE numbers are not yet available.

PR:		209334
Submitted by:	timp87@gmail.com (maintainer)
Original commitRevision:414774 
07:30 kwm search for other commits by this committer 
Add forgotten portepoch to the ImageMagick 6.x version.

PR:		209241
Reported by:	Ben Woods, Jason Unovitch
Original commitRevision:414760 
Friday, 6 May 2016
15:27 kwm search for other commits by this committer 
Document ImageMagick vulnabilities.

PR:		209241
Submitted by:	Ben Woods
Original commitRevision:414710 
Wednesday, 4 May 2016
06:25 vanilla search for other commits by this committer 
Add entry of devel/jansson

PR:		209219
Submitted by:	junovitch@
Original commitRevision:414587 
Tuesday, 3 May 2016
23:57 junovitch search for other commits by this committer 
Fix <url> -> <cvename> tags in OpenSSL entry plus spacing fixes.

While here, combine both entries as they both refer to the same CVEs and
we've typically done these as combined entries in the past.
Original commitRevision:414566 
17:56 brnrd search for other commits by this committer 
security/vuxml: Document LibreSSL vulnerabilities

Reviewed by:	swills
MFH:		2016Q3
Original commitRevision:414544 
17:50 brnrd search for other commits by this committer 
security/vuxml: Document OpenSSL 1.0.2g vulnerabilities

Reviewed by:	swills
MFH:		2016Q2
Original commitRevision:414543 
13:27 junovitch search for other commits by this committer 
Document gitlab privilege escalation via "impersonate" feature

PR:		209225
Reported by:	Torsten Zuehlsdorff <ports@toco-domains.de>
Security:	CVE-2016-4340
Security:	https://vuxml.FreeBSD.org/freebsd/be72e773-1131-11e6-94fa-002590263bf5.html
Original commitRevision:414530 
03:05 junovitch search for other commits by this committer 
Document php multiple vulnerabilities

PR:		209145
Reported by	Christian Schwarz <me@cschwarz.com>
Security:	CVE-2016-3074
Security:	https://vuxml.FreeBSD.org/freebsd/5764c634-10d2-11e6-94fa-002590263bf5.html
Original commitRevision:414508 
00:40 junovitch search for other commits by this committer 
Document libksba local denial of service vulnerabilities

Security:	CVE-2016-4353
Security:	CVE-2016-4354
Security:	CVE-2016-4355
Security:	CVE-2016-4356
Security:	https://vuxml.FreeBSD.org/freebsd/a1134048-10c6-11e6-94fa-002590263bf5.html
Original commitRevision:414498 
Monday, 2 May 2016
23:58 junovitch search for other commits by this committer 
Document denial of service advisories from Wireshark's recent release

Security:	https://vuxml.FreeBSD.org/freebsd/7e36c369-10c0-11e6-94fa-002590263bf5.html
Original commitRevision:414494 
Sunday, 1 May 2016
21:15 olivierd search for other commits by this committer 
Document arbitrary code execution vulnerability in Mercurial

Security:	CVE-2016-3105
Original commitRevision:414427 
07:33 brnrd search for other commits by this committer 
security/vuxml: Add entry for MySQL/MariaDB/Percona April Critical Patch Update

  - Add entry for 31 security fixes for Oracle MySQL
  - Add also affected MariaDB packages
  - Add also affected Percona packages

Reviewed by:	junovitch (ports-secteam)
Approved by:	junovitch (ports-secteam)
Differential Revision:	D6159
Original commitRevision:414389 
Thursday, 28 Apr 2016
20:17 matthew search for other commits by this committer 
Logstash password disclosure vulnerability.
Original commitRevision:414236 
15:15 lev search for other commits by this committer 
  Add two CVEs for subversion:

   http://subversion.apache.org/security/CVE-2016-2167-advisory.txt
   http://subversion.apache.org/security/CVE-2016-2168-advisory.txt
Original commitRevision:414180 
Wednesday, 27 Apr 2016
04:43 delphij search for other commits by this committer 
Document NTP multiple vulnerabilities.
Original commitRevision:414086 
Tuesday, 26 Apr 2016
20:24 jbeich search for other commits by this committer 
Document recent Firefox vulnerabilities
Original commitRevision:414068 
Saturday, 23 Apr 2016
11:40 flo search for other commits by this committer 
Document phpmyfaq vulnerability

Security:	https://vuxml.freebsd.org/freebsd/f87a9376-0943-11e6-8fc4-00a0986f28c4.html
Security:	http://www.phpmyfaq.de/security/advisory-2016-04-11
Sponsored by:	Essen Linuxhotel Hackathon 2016
Original commitRevision:413863 
Thursday, 21 Apr 2016
02:16 junovitch search for other commits by this committer 
Document libtasn1 denial of service via parsing malicious DER certificates

Security:	CVE-2016-4008
Security:	https://vuxml.FreeBSD.org/freebsd/1b0d2938-0766-11e6-94fa-002590263bf5.html
Original commitRevision:413711 

Number of commits found: 6273 (showing only 100 on this page)

[First Page]  «  16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26  »  [Last Page]
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
Security Policy
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
chromiumMay 31
libxml2May 31
libxml2May 31
libxml2May 31
ungoogled-chromiumMay 31
chromiumMay 30
firefoxMay 30
firefoxMay 30
firefoxMay 30
firefoxMay 30
firefox-esrMay 30
firefox-esrMay 30
mod_securityMay 30
thunderbirdMay 30
thunderbirdMay 30

23 vulnerabilities affecting 274 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last processed:
2025-05-31 17:39:40 UTC


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)

Calculated hourly:
Port count 33365
Broken 122
Deprecated 343
Ignore 240
Forbidden 1
Restricted 2
No CDROM 1
Vulnerable 33
Expired 68
Set to expire 287
Interactive 0
new 24 hours 8
new 48 hours8
new 7 days26
new fortnight91
new month161
Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD 		Valid HTML, CSS, and RSS. Copyright © 2000-2025 Dan Langille. All rights reserved.