FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-01-22 10:43:57 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
7e63d0dd-eeff-11f0-b135-c01803b56cc4libtasn1 -- Stack-based buffer overflow

oss-security@ list reports:

Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of input data resulting in a buffer overflow in asn1_expend_octet_string.


Discovery 2026-01-07
Entry 2026-01-11
libtasn1
< 4.21.0

CVE-2025-13151
https://nvd.nist.gov/vuln/detail/CVE-2025-13151
1b0d2938-0766-11e6-94fa-002590263bf5libtasn1 -- denial of service parsing malicious DER certificates

GNU Libtasn1 NEWS reports:

Fixes to avoid an infinite recursion when decoding without the ASN1_DECODE_FLAG_STRICT_DER flag. Reported by Pascal Cuoq.


Discovery 2016-04-11
Entry 2016-04-21
libtasn1
< 4.8

CVE-2016-4008
http://www.openwall.com/lists/oss-security/2016/04/13/3
http://git.savannah.gnu.org/gitweb/?p=libtasn1.git;a=blob_plain;f=NEWS;hb=e9bcdc86b920d72c9cffc2570d14eea2f6365b37