FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-12-17 01:49:53 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
64bec4c7-d785-11f0-a1c0-0050569f0b83	www/varnish-libvmod-digest -- base64 decoding vulnerability varnish developers report: Common usage of vmod-digest is for basic HTTP authentication, in which case it may be possible for an attacker to circumvent the authentication check. If the decoded result string is somehow being made visible to the attacker (for example the result of the decoding is added to a response header), then there is the potential for information disclosure from reading out of band workspace data. Discovery 2023-08-17 Entry 2025-12-12 varnish-libvmod-digest < 1.0.3 CVE-2023-41104 https://vinyl-cache.org/security/VSV00012.html

VuXML ID

Description

64bec4c7-d785-11f0-a1c0-0050569f0b83

www/varnish-libvmod-digest -- base64 decoding vulnerability

varnish developers report:

Common usage of vmod-digest is for basic HTTP authentication, in which case it may be possible for an attacker to circumvent the authentication check. If the decoded result string is somehow being made visible to the attacker (for example the result of the decoding is added to a response header), then there is the potential for information disclosure from reading out of band workspace data.

Discovery 2023-08-17
Entry 2025-12-12
varnish-libvmod-digest

< 1.0.3

CVE-2023-41104
https://vinyl-cache.org/security/VSV00012.html