FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-10-10 08:58:57 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
32bdeb94-9958-11f0-b6e2-6805ca2fa271quiche -- Infinite loop triggered by connection ID retirement

Quiche Releases reports:

This update includes 1 security fix:

  • High CVE-2025-7054: Infinite loop triggered by connection ID retirement. Reported by Catena cyber on 2025-08-07.

Discovery 2025-08-07
Entry 2025-09-26
quiche
< 0.24.5

CVE-2025-7054
https://www.cve.org/CVERecord?id=CVE-2025-7054
7b0cbc73-9955-11f0-b6e2-6805ca2fa271quiche -- Multiple vulnerabilities

Quiche Releases reports:

This update includes 2 security fixes:

  • Medium CVE-2025-4820: Incorrect congestion window growth by optimistic ACK. Reported by Louis Navarre on 2025-06-18.
  • High CVE-2025-4821: Incorrect congestion window growth by invalid ACK ranges. Reported by Louis Navarre on 2025-06-18.

Discovery 2025-06-18
Entry 2025-09-26
quiche
< 0.24.4

CVE-2025-4820
CVE-2025-4821
https://github.com/cloudflare/quiche/releases/tag/0.24.4