FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
70ae62b0-16b0-11dc-b803-0016179b2dd5c-ares -- DNS Cache Poisoning Vulnerability

Secunia reports:

The vulnerability is caused due to predictable DNS "Transaction ID" field in DNS queries and can be exploited to poison the DNS cache of an application using the library if a valid ID is guessed.


Discovery 2007-06-08
Entry 2007-06-09
Modified 2010-05-12
c-ares
lt 1.4.0

CVE-2007-3152
CVE-2007-3153
http://secunia.com/advisories/25579/
http://cool.haxx.se/cvs.cgi/curl/ares/CHANGES?rev=HEAD&content-type=text/vnd.viewcvs-markup