FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
21ec4428-bdaa-11eb-a04e-641c67a117d8	libzmq4 -- Denial of Service Google's oss-fuzz project reports: Denial-of-Service on CURVE/ZAP-protected servers by unauthenticated clients. If a raw TCP socket is opened and connected to an endpoint that is fully configured with CURVE/ZAP, legitimate clients will not be able to exchange any message. Handshakes complete successfully, and messages are delivered to the library, but the server application never receives them. Discovery 2020-09-07 Entry 2021-05-25 libzmq4 < 4.3.3 CVE-2020-15166 https://github.com/zeromq/libzmq/releases/tag/v4.3.3 https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m ports/255102

VuXML ID

Description

21ec4428-bdaa-11eb-a04e-641c67a117d8

libzmq4 -- Denial of Service

Google's oss-fuzz project reports:

Denial-of-Service on CURVE/ZAP-protected servers by unauthenticated clients. If a raw TCP socket is opened and connected to an endpoint that is fully configured with CURVE/ZAP, legitimate clients will not be able to exchange any message. Handshakes complete successfully, and messages are delivered to the library, but the server application never receives them.

Discovery 2020-09-07
Entry 2021-05-25
libzmq4

< 4.3.3

CVE-2020-15166
https://github.com/zeromq/libzmq/releases/tag/v4.3.3
https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m
ports/255102