FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a02c9595-e018-11dd-a765-0030843d3802pdfjam -- insecure temporary files

Secunia reports:

Some security issues have been reported in PDFjam, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

The security issues are caused due to the "pdf90", "pdfjoin", and "pdfnup" scripts using temporary files in an insecure manner. This can be exploited to overwrite arbitrary files via symlink attacks.


Discovery 2008-12-05
Entry 2009-01-11
pdfjam
lt 1.20_4

CVE-2008-5743
https://bugzilla.novell.com/show_bug.cgi?id=459031
http://secunia.com/advisories/33278