FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  566651
Date:      2021-02-27
Time:      01:49:47Z
Committer: swills

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
09ea1b08-1d3e-4bf2-91a1-d6573f4da3d8	jenkins -- Buffer corruption in bundled Jetty Jenkins Security Advisory: Description (Critical) SECURITY-1983 / CVE-2019-17638 Buffer corruption in bundled Jetty Discovery 2020-08-17 Entry 2020-08-17 jenkins lt 2.243 jenkins-lts lt 2.235.5 CVE-2019-17638 https://www.jenkins.io/security/advisory/2020-08-17/
d6f76976-e86d-4f9a-9362-76c849b10db2	jenkins -- multiple vulnerabilities Jenkins Security Advisory: Description (Medium) SECURITY-1452 / CVE-2021-21602 Arbitrary file read vulnerability in workspace browsers (High) SECURITY-1889 / CVE-2021-21603 XSS vulnerability in notification bar (High) SECURITY-1923 / CVE-2021-21604 Improper handling of REST API XML deserialization errors (High) SECURITY-2021 / CVE-2021-21605 Path traversal vulnerability in agent names (Medium) SECURITY-2023 / CVE-2021-21606 Arbitrary file existence check in file fingerprints (Medium) SECURITY-2025 / CVE-2021-21607 Excessive memory allocation in graph URLs leads to denial of service (High) SECURITY-2035 / CVE-2021-21608 Stored XSS vulnerability in button labels (Low) SECURITY-2047 / CVE-2021-21609 Missing permission check for paths with specific prefix (High) SECURITY-2153 / CVE-2021-21610 Reflected XSS vulnerability in markup formatter preview (High) SECURITY-2171 / CVE-2021-21611 Stored XSS vulnerability on new item page Discovery 2021-01-13 Entry 2021-01-13 jenkins lt 2.275 jenkins-lts lt 2.263.2 https://www.jenkins.io/security/advisory/2021-01-13/

VuXML ID

Description

09ea1b08-1d3e-4bf2-91a1-d6573f4da3d8

jenkins -- Buffer corruption in bundled Jetty

Jenkins Security Advisory:

Description

(Critical) SECURITY-1983 / CVE-2019-17638

Buffer corruption in bundled Jetty

Discovery 2020-08-17
Entry 2020-08-17
jenkins

lt 2.243

jenkins-lts

lt 2.235.5

CVE-2019-17638
https://www.jenkins.io/security/advisory/2020-08-17/

d6f76976-e86d-4f9a-9362-76c849b10db2

jenkins -- multiple vulnerabilities

Jenkins Security Advisory:

Description

(Medium) SECURITY-1452 / CVE-2021-21602

Arbitrary file read vulnerability in workspace browsers

(High) SECURITY-1889 / CVE-2021-21603

XSS vulnerability in notification bar

(High) SECURITY-1923 / CVE-2021-21604

Improper handling of REST API XML deserialization errors

(High) SECURITY-2021 / CVE-2021-21605

Path traversal vulnerability in agent names

(Medium) SECURITY-2023 / CVE-2021-21606

Arbitrary file existence check in file fingerprints

(Medium) SECURITY-2025 / CVE-2021-21607

Excessive memory allocation in graph URLs leads to denial of service

(High) SECURITY-2035 / CVE-2021-21608

Stored XSS vulnerability in button labels

(Low) SECURITY-2047 / CVE-2021-21609

Missing permission check for paths with specific prefix

(High) SECURITY-2153 / CVE-2021-21610

Reflected XSS vulnerability in markup formatter preview

(High) SECURITY-2171 / CVE-2021-21611

Stored XSS vulnerability on new item page

Discovery 2021-01-13
Entry 2021-01-13
jenkins

lt 2.275

jenkins-lts

lt 2.263.2

https://www.jenkins.io/security/advisory/2021-01-13/