FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
7fe7df75-6568-11e6-a590-14dae9d210b8	End of Life Ports These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take caution and find alternative software as soon as possible. Discovery 2016-08-18 Entry 2016-08-18 Modified 2016-10-18 python32 python31 python30 python26 python25 python24 python23 python22 python21 python20 python15 ge 0 php54 php53 php52 php5 php4 ge 0 perl5 < 5.18 perl5.16 perl5.14 perl5.12 perl ge 0 ruby ruby_static < 2.1,1 unifi2 unifi3 ge 0 apache21 apache20 apache13 ge 0 tomcat55 tomcat41 ge 0 mysql51-client mysql51-server mysql50-client mysql50-server mysql41-client mysql41-server mysql40-client mysql40-server ge 0 postgresql90-client postgresql90-server postgresql84-client postgresql84-server postgresql83-client postgresql83-server postgresql82-client postgresql82-server postgresql81-client postgresql81-server postgresql80-client postgresql80-server postgresql74-client postgresql74-server postgresql73-client postgresql73-server postgresql72-client postgresql72-server postgresql71-client postgresql71-server postgresql7-client postgresql7-server ge 0 ports/211975
3761df02-0f9c-11e0-becc-0022156e8794	php -- NULL byte poisoning PHP-specific version of NULL-byte poisoning was briefly described by ShAnKaR: Poison NULL byte vulnerability for perl CGI applications was described in [1]. ShAnKaR noted, that same vulnerability also affects different PHP applications. PHP developers report that branch 5.3 received a fix: Paths with NULL in them (foo\0bar.txt) are now considered as invalid (CVE-2006-7243). Discovery 2010-12-10 Entry 2011-01-13 Modified 2012-11-25 php5 < 5.3.4 php52 < 5.2.17_12 CVE-2006-7243 http://www.securityfocus.com/archive/1/archive/1/445788/100/0/threaded http://artofhacking.com/files/phrack/phrack55/P55-07.TXT

VuXML ID

Description

7fe7df75-6568-11e6-a590-14dae9d210b8

End of Life Ports

These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take caution and find alternative software as soon as possible.

Discovery 2016-08-18
Entry 2016-08-18
Modified 2016-10-18
python32
python31
python30
python26
python25
python24
python23
python22
python21
python20
python15

php54
php53
php52
php5
php4

perl5

perl5.16
perl5.14
perl5.12
perl

ruby
ruby_static

unifi2
unifi3

apache21
apache20
apache13

tomcat55
tomcat41

mysql51-client
mysql51-server
mysql50-client
mysql50-server
mysql41-client
mysql41-server
mysql40-client
mysql40-server

postgresql90-client
postgresql90-server
postgresql84-client
postgresql84-server
postgresql83-client
postgresql83-server
postgresql82-client
postgresql82-server
postgresql81-client
postgresql81-server
postgresql80-client
postgresql80-server
postgresql74-client
postgresql74-server
postgresql73-client
postgresql73-server
postgresql72-client
postgresql72-server
postgresql71-client
postgresql71-server
postgresql7-client
postgresql7-server

ports/211975

3761df02-0f9c-11e0-becc-0022156e8794

php -- NULL byte poisoning

PHP-specific version of NULL-byte poisoning was briefly described by ShAnKaR:

PHP developers report that branch 5.3 received a fix:

Discovery 2010-12-10
Entry 2011-01-13
Modified 2012-11-25
php5

php52

CVE-2006-7243
http://www.securityfocus.com/archive/1/archive/1/445788/100/0/threaded
http://artofhacking.com/files/phrack/phrack55/P55-07.TXT