FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-09-05 14:49:12 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
8df49466-5664-11f0-943a-18c04d5ea3dc	xorg server -- Multiple vulnerabilities The X.Org project reports: CVE-2025-49176: Integer overflow in Big Requests Extension The Big Requests extension allows requests larger than the 16-bit length limit. It uses integers for the request length and checks for the size not to exceed the maxBigRequestSize limit, but does so after translating the length to integer by multiplying the given size in bytes by 4. In doing so, it might overflow the integer size limit before actually checking for the overflow, defeating the purpose of the test. Discovery 2025-06-17 Entry 2025-07-01 xorg-server xephyr xorg-vfbserver < 21.1.18,1 xorg-nextserver < 21.1.18,2 xwayland < 24.1.8,1 CVE-2025-49176 https://lists.x.org/archives/xorg/2025-June/062055.html

VuXML ID

Description

8df49466-5664-11f0-943a-18c04d5ea3dc

xorg server -- Multiple vulnerabilities

The X.Org project reports:

CVE-2025-49176: Integer overflow in Big Requests Extension
The Big Requests extension allows requests larger than the 16-bit length limit. It uses integers for the request length and checks for the size not to exceed the maxBigRequestSize limit, but does so after translating the length to integer by multiplying the given size in bytes by 4. In doing so, it might overflow the integer size limit before actually checking for the overflow, defeating the purpose of the test.

Discovery 2025-06-17
Entry 2025-07-01
xorg-server
xephyr
xorg-vfbserver

< 21.1.18,1

xorg-nextserver

< 21.1.18,2

xwayland

< 24.1.8,1

CVE-2025-49176
https://lists.x.org/archives/xorg/2025-June/062055.html