16:38 rene 

Document latest www/chromium vulnerabilities.

Security:       CVE-2011-1801, -1804, -1806, -1807

10:58 miwi 

- Cleanup Part 1

PS: wonder when pplz start to ask ports-security for review ...

09:44 sem 

- Document the last unbound vulnerability

23:51 ohauer 

 - revert last change of apr-* entry

 Broken build reported by wxs@

22:59 ohauer 

- use apr-* and add <gt></gt> entries for all apr0/apr1 issues
  (<gt> .. is needed else the parser cannot make a difference
   between apr0 and apr1)

- lowercase ViewVC -> viewvc

 Thanks Jun Kuriyama ( kuriyama@ ) for the notice and the patch
 for the apr entries.

16:05 brooks 

Update the mod_pubcookie entry with an ap20 prefix.  The port has alwasy
has USE_APACHE=2.0 in it so we can avoid enumarating all values of
APACHE_PKGNAMEPREFIX.

Pointy hat:     brooks

06:19 simon 

Unbreak VuXML web build by changing "ap*-" to "ap-" in package name for
1ca8228f-858d-11e0-a76c-000743057ca2 / mod_pubcookie -- Empty
Authentication Security Advisory.

While the new one is likely not correct, this fixes the build until
somebody can put in the right thing.

05:55 delphij 

Fix build.

23:04 brooks 

Partially address several years of neglect of pubcookie.  Indicate the
security issues in two two ports.

I've not use pubcookie in several year and given the lack of complaint
about the deprication of mod_pubcookie, I doubt anyone else uses it from
ports.  The mod_pubcookie port has already expired and I've set a two
week expriation for pubcookie-login-server.  If not maintainer
appears I will send both to the Attic on June 6th.

While I'm here, address the use of CONF_FILES and CONF_DIRS in
pubcookie-login-server to avoid getting in the way of progress. [0]

PR:             ports/157164 [0]
Security:       vuxml:115a1389-858e-11e0-a76c-000743057ca2
                vuxml:1ca8228f-858d-11e0-a76c-000743057ca2

22:22 ohauer 

- add entry for ViewVC < 1.1.11
- add entry for apr1 (CVE-2011-1928)
- correct version in previous apr1 entry
- run tidy

21:17 nox 

Update to 10.3r181.14 .

PR:             ports/156996
Submitted by:   Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
Security:      
http://www.freebsd.org/ports/portaudit/d226626c-857f-11e0-95cc-001b2134ef46.html

10:58 mandree 

Document Opera Frameset unload code injection vulnerability.

09:58 delphij 

Document pure-ftpd multiple vulnerabilities prior to 1.0.32.

17:48 rea 

mail/exim: document CVE-2011-1764 and CVE-2011-1407

Both vulnerabilities are in the DKIM code and were fixed in 4.76.

Approved-by: erwin (mentor)
Feature-safe: yes

23:33 ohauer 

- document Apache APR DoS vulnerabilities

15:06 glarkin 

- Document www/zend-framework (potential SQL injection when using PDO_MySQL)

Security:       http://framework.zend.com/security/advisory/ZF2011-02

23:46 wxs 

Document mediawiki multiple vulnerabilities.

PR:             ports/156914
Submitted by:   Ryan Steinmetz <rpsfa@rit.edu>

20:13 rene 

Document CVE-2011-1799 and CVE-2011-1800 for www/chromium

18:09 wxs 

Incorporate changes recommended by the tidy target. While here, properly
label dc9f8335-2b3b-11e0-a91b-00e0815b8da8.

13:11 sahil 

Document CVE-2011-1720: Postfix memory corruption error.

09:25 rene 

Document www/chromium vulnerabilities fixed in version 11.0.696.57

Security:       CVE-2011-[1303-1305, 1434-1452, 1454-1456]

06:26 flo 

Document mozilla -- multiple vulnerabilities

22:41 flo 

- document recent asterisk vulnerabilities
- fix topic in RT entry

20:31 jsa 

Document VideoLAN-SA-1103. Heap corruption in MP4 demultiplexer in VLC.

18:32 nox 

Update to 10.2r159.1 .

Security:      
http://www.freebsd.org/ports/portaudit/32b05547-6913-11e0-bdc4-001b2134ef46.html

10:59 flo 

Document multiple vulnerabilities in RT www/rt36 and www/rt38

22:14 rene 

Document www/chromium vulnerabilities

Security:       CVE-2011-1301, CVE-2011-1302

21:08 simon 

Unbreak file format:
- Place <vuxml> tag at the start of the file.
- Close topic tags.

Pointy hat to:  cy

19:51 cy 

Add the following for security/krb5:
        MITKRB5-SA-2011-001 - kpropd denial of service
        MITKRB5-SA-2011-002 - KDC denial of service attacks
        MITKRB5-SA-2011-003 - KDC vulnerable to double-free when PKINIT enabled
        MITKRB5-SA-2011-004 - kadmind invalid pointer free()

07:43 kwm 

Document a root exploit via rogue hostname in xrdb.

11:01 bapt 

Limit affected mupdf version to <0.8

Submitted by:   tobez@ (irc)

17:52 skv 

Document "otrs" - several XSS attacks possible.

15:36 erwin 

Fix typo

Submitted by:    Dan Langille <dan@langille.org>

21:39 wxs 

Document isc-dhcp41-client and isc-dhcp31-client vulnerabilities.

PR:             ports/156246
Submitted by:   Douglas Thrift <douglas@douglasthrift.net>

01:41 wxs 

Add CVE entry for recent tinyproxy vulnerability.

07:39 pav 

- tinyproxy

18:03 sem 

Document two quagga DoS vulnerabilities

13:50 kwm 

Add a missing </p>.

Pointed out by: jadawin@

13:38 kwm 

Document gdm privilege escalation vulnerability

20:13 rene 

Document vulnerabilities before Chromium 10.0.648.204

Obtained from: 
http://googlechromereleases.blogspot.com/search/label/Stable%20updates

11:09 ale 

Add entries for php5-exif and php5-zip before 5.3.6 release.

PR:             ports/155922
Submitted by:   Chris Tandiono <christandiono@tbp.berkeley.edu>

18:40 nox 

Update to 10.2r153.

Security:      
http://www.freebsd.org/ports/portaudit/501ee07a-5640-11e0-985a-001b2134ef46.html
PR:             ports/155874
Submitted by:   Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>

00:56 beat 

- Document mozilla -- update to HTTPS certificate blacklist

06:10 sahil 

Document CVE-2011-0411: Postfix "STARTTLS" Plaintext
Injection Vulnerability.

Reviewed by:    miwi (secteam)

17:42 glarkin 

- Documented integer overflow in hiawatha web server

Submitted by:   C-S <c-s@c-s.li>

00:03 delphij 

Document asterisk multiple vulnerabilities.

18:34 rene 

Mark chromium-9.0.597.107 and chromium-10.0.648.127 as vulnerable.

16:46 miwi 

- Cleanup a bit

16:25 miwi 

- Add correct infos to the avahi issus
- Add url to original advisory

16:14 kwm 

Fix date in avahi entry.

16:04 kwm 

Add avahi denial of services attack.

15:01 wxs 

Fix discovery for mailman XSS vulnerabilities.

Noticed by:     erwin@
Pointyhat to:   wxs@

14:31 wxs 

Document mail/mailman XSS vulnerabilities.

21:31 decke 

- Document redmine -- XSS vulnerability

12:21 lev 

Document subversion -- remote HTTP DoS vulnerability
Obtained from http://subversion.apache.org/security/CVE-2011-0715-advisory.txt

23:05 beat 

- Document mozilla -- multiple vulnerabilities

18:15 rene 

Document Chromium versions 9.0.597.[84,94,107]

Obtained from: 
http://googlechromereleases.blogspot.com/search/label/Stable%20updates

18:39 delphij 

Add two OpenLDAP security by-pass vulnerabilities.

14:01 mandree 

Fix broken linux-sun-jdk vulndb entries.

VuXML:          18e5428f-ae7c-11d9-837d-000e0c2e438a
VuXML:          c93e4d41-75c5-11dc-b903-0016179b2dd5
PR:             ports/154918

14:43 miwi 

- Cleanup previous entry

21:30 flo 

- add asterisk -- Exploitable Stack and Heap Array Overflows

05:04 delphij 

Document PivotX administrator password reset vulnerability.

08:18 miwi 

- Update lastest tomcat entry (tomcat6/7 have the same problem)

Note: Please ask for review at ports-security@  THX!

08:00 wen 

- Document tomcat vulnerability

22:23 delphij 

Document two phpMyAdmin vulnerabilities.

21:39 nox 

Update to 10.2r152.

PR:             ports/154630
Submitted by:   Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
Security:      
http://www.freebsd.org/ports/portaudit/4a3482da-3624-11e0-b995-001b2134ef46.html
Feature safe:   yes

19:59 delphij 

Document mupdf PDF handling remote code execution vulnerability.

Submitted by:   Tim Zingelman <tez netbsd.org>

19:51 delphij 

Document rubygem-mail Remote Arbitrary Shell Command Injection Vulnerability.

Submitted by:   Tim Zingelman <tez netbsd.org>

19:48 delphij 

Document plone remote security bypass vulnerability.

Submitted by:   Tim Zingelman <tez netbsd.org>

19:40 delphij 

Document exim local privilege escalasion vulnerability.

Submitted by:   Tim Zingelman <tez netbsd.org>

19:36 delphij 

Document OpenOffice multiple vulnerabilities.

Submitted by:   Tim Zingelman <tez netbsd.org>

16:44 miwi 

- Cleanup previous commit

10:41 kwm 

Document multiple webkit-gtk2 security vulnabilities, fixed in 1.2.7.

00:44 delphij 

Document awstat multiple vulnerability.

Notified by:    Tim Zingelman <tez netbsd.org>

00:28 delphij 

Document Opera multiple vulnerabilities.

Notified by:    Tim Zingelman <tez netbsd.org>

21:37 delphij 

Document multiple vulnerabilities in Django.

Notified by:    Jesco Freund <jesco.freund my-universe.com>

05:36 miwi 

- S/seriuos/serious

05:23 miwi 

- Document mediawiki - multiple vulnerabilites

04:53 miwi 

- Add chinese/wordpress-zh_CN and  chinese/wordpress-zh_TW to the previous
wordpress entry

04:36 miwi 

- Add entry for wordpress - SQL injection vulnerability

PR:             153526
Submitted by:   Mark Foster <mark@foster.cc>
Feature safe:   yes

23:51 miwi 

- Cleanup previous commit

Feature safe:   yes

15:45 kwm 

Add vlc - Insufficient input validation in MKV demuxer vulnability.
Feature safe:   yes

14:02 miwi 

- Cleanup previous Entry

Feature safe:   yes

09:47 decke 

- Document maradns -- denial of service when resolving a long DNS hostname

Submitted by:   n j <nino80 at gmail dot com>
Feature safe:   yes

00:23 wxs 

Adjust range for ISC DHCPv6 server crash.

Feature safe:   yes

00:15 wxs 

Document ISC DHCPv6 server crash.

Feature safe:   yes

15:07 skv 

Document "bugzilla" - multiple seriuos vulnerabilities.

Feature safe:   yes

23:00 delphij 

Add dokuwiki multiple ACL escalation vulnerabilities.

Feature safe:   yes

23:29 simon 

Try to unbreak vuxml portaudit build by removing use of HTML entity.
UTF-8 chars should be used.

This is not a fix, just a hack to get it working for now.

Feature safe:   yes (really)

13:41 rene 

Describe www/chromium vulnerabilities between 8.0.552.215 and 8.0.552.237

Obtained from:  http://googlechromereleases.blogspot.com/
Feature safe:   yes

01:23 flo 

asterisk-1.8.2.1 is still vulnerable due to a botched merge upstream.

Feature safe:   yes

09:19 flo 

- fix asterisk16 version string

Approved by:    fjoe (mentor)
Feature safe:   yes

08:46 flo 

- Document Exploitable Stack Buffer Overflow in asterisk

Approved by:    fjoe (mentor)
Feature safe:   yes

02:26 wxs 

Document tarsnap cryptographic nonce reuse vulnerability.

Discussed with: cperciva@
Feature safe:   yes

09:26 delphij 

Add entry for moinmoin XSS vulnerabilities.

PR:             ports/153898
Submitted by:   Ruslan Mahmatkhanov <cvs-src yandex ru>
Feature safe:   yes

02:14 delphij 

Document tor remote code execution and crash vulnerability.

Submitted by:   Janne Snabb <snabb epipe com>
Feature safe:   yes

14:09 rea 

security/sudo: document privilege escalation, CVE-2011-0010

PR: 153939
Approved by: delphij (secteam), erwin (mentor)
Feature safe: yes

12:53 rea 

devel/subversion: document security fixes in 1.6.15

Two DoS conditions:
 - CVE-2010-4539, DoS via walking of SVNParentPath
   collections;
 - CVE-2010-4644, DoS via memory leaks triggered
   by the option "-g" of the blame command.

Approved by: delphij (secteam), erwin (mentor)
Feature safe: yes

05:44 rea 

Split recent PHP entry into multiple ones

Many reasons:
 - some vulnerabilities were present only in the specific
   PHP modules and not in the core PHP;
 - it is better to group vulnerabilities by-topic (DoS, code
   execution, etc);
 - PHAR vulnerability is present only in 5.3.x;
 - extract() vulnerability was fixed both in 5.2 and 5.3:
   http://www.mail-archive.com/php-cvs@lists.php.net/msg47722.html
 - NULL-byte poisoning was fixed only in 5.3, 5.2.x is still
   vulnerable to this design error;
 - DFS-related fixes are not relevant for FreeBSD, since DFS
   is Windows file system that is unsupported by us.

PR: 153433
Approved by: remko (secteam), erwin (mentor)
Feature safe: yes

09:12 ale 

Add entry for CVE-2010-4645 (php).

PR:             ports/153766
Submitted by:   Tom Judge <tom@tomjudge.com>