FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
9595d002-edeb-4602-be2d-791cd654247ejenkins -- multiple vulnerabilities

Jenkins Security Advisory:

Description

(Low) SECURITY-1721 / CVE-2021-21639

Lack of type validation in agent related REST API

(Medium) SECURITY-1871 / CVE-2021-21640

View name validation bypass


Discovery 2021-04-07
Entry 2021-04-08
jenkins
lt 2.287

jenkins-lts
lt 2.277.2

https://www.jenkins.io/security/advisory/2021-04-07/
e358b470-b37d-4e47-bc8a-2cd9adbeb63cjenkins -- Denial of service vulnerability in bundled Jetty

Jenkins Security Advisory:

Description

(High) JENKINS-65280 / CVE-2021-28165

Denial of service vulnerability in bundled Jetty


Discovery 2021-04-20
Entry 2021-04-20
jenkins
lt 2.286

jenkins-lts
lt 2.277.3

https://www.jenkins.io/security/advisory/2021-04-20/
CVE-2021-28165
eef0d2d9-78c0-441e-8b03-454c5baebe20jenkins -- multiple vulnerabilities

Jenkins Security Advisory:

Description

(High) SECURITY-1955 / CVE-2020-2229

Stored XSS vulnerability in help icons

(High) SECURITY-1957 / CVE-2020-2230

Stored XSS vulnerability in project naming strategy

(High) SECURITY-1960 / CVE-2020-2231

Stored XSS vulnerability in 'Trigger builds remotely'


Discovery 2020-08-12
Entry 2020-08-12
jenkins
lt 2.252

jenkins-lts
lt 2.235.4

CVE-2020-2229
CVE-2020-2230
CVE-2020-2231
https://www.jenkins.io/security/advisory/2020-08-12/
425f2143-8876-4b0a-af84-e0238c5c2062jenkins -- Arbitrary file read vulnerability in workspace browsers

Jenkins Security Advisory:

Description

(Medium) SECURITY-2197 / CVE-2021-21615

Arbitrary file read vulnerability in workspace browsers


Discovery 2021-01-26
Entry 2021-01-26
jenkins
lt 2.276

jenkins-lts
lt 2.263.3

https://www.jenkins.io/security/advisory/2021-01-26/
09ea1b08-1d3e-4bf2-91a1-d6573f4da3d8jenkins -- Buffer corruption in bundled Jetty

Jenkins Security Advisory:

Description

(Critical) SECURITY-1983 / CVE-2019-17638

Buffer corruption in bundled Jetty


Discovery 2020-08-17
Entry 2020-08-17
jenkins
lt 2.243

jenkins-lts
lt 2.235.5

CVE-2019-17638
https://www.jenkins.io/security/advisory/2020-08-17/
9d271bab-da22-11eb-86f0-94c691a700a6jenkins -- multiple vulnerabilities

Jenkins Security Advisory:

Description

(Medium) SECURITY-2278 / CVE-2021-21670

Improper permission checks allow canceling queue items and aborting builds

(High) SECURITY-2371 / CVE-2021-21671

Session fixation vulnerability


Discovery 2021-06-30
Entry 2021-07-01
jenkins
lt 2.300

jenkins-lts
lt 2.289.2

CVE-2021-21670
CVE-2021-21671
https://www.jenkins.io/security/advisory/2021-06-30/
d6f76976-e86d-4f9a-9362-76c849b10db2jenkins -- multiple vulnerabilities

Jenkins Security Advisory:

Description

(Medium) SECURITY-1452 / CVE-2021-21602

Arbitrary file read vulnerability in workspace browsers

(High) SECURITY-1889 / CVE-2021-21603

XSS vulnerability in notification bar

(High) SECURITY-1923 / CVE-2021-21604

Improper handling of REST API XML deserialization errors

(High) SECURITY-2021 / CVE-2021-21605

Path traversal vulnerability in agent names

(Medium) SECURITY-2023 / CVE-2021-21606

Arbitrary file existence check in file fingerprints

(Medium) SECURITY-2025 / CVE-2021-21607

Excessive memory allocation in graph URLs leads to denial of service

(High) SECURITY-2035 / CVE-2021-21608

Stored XSS vulnerability in button labels

(Low) SECURITY-2047 / CVE-2021-21609

Missing permission check for paths with specific prefix

(High) SECURITY-2153 / CVE-2021-21610

Reflected XSS vulnerability in markup formatter preview

(High) SECURITY-2171 / CVE-2021-21611

Stored XSS vulnerability on new item page


Discovery 2021-01-13
Entry 2021-01-13
jenkins
lt 2.275

jenkins-lts
lt 2.263.2

https://www.jenkins.io/security/advisory/2021-01-13/