FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-22 18:21:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
a228c7a0-ba66-11e6-b1cf-14dae9d210b8	qemu -- denial of service vulnerability Daniel P. Berrange reports: The VNC server websockets decoder will read and buffer data from websockets clients until it sees the end of the HTTP headers, as indicated by \r\n\r\n. In theory this allows a malicious to trick QEMU into consuming an arbitrary amount of RAM. Discovery 2015-03-23 Entry 2016-12-04 Modified 2016-12-06 qemu qemu-devel qemu-sbruno < 2.3.0 https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04895.html CVE-2015-1779 ports/206725

VuXML ID

Description

a228c7a0-ba66-11e6-b1cf-14dae9d210b8

qemu -- denial of service vulnerability

Daniel P. Berrange reports:

The VNC server websockets decoder will read and buffer data from websockets clients until it sees the end of the HTTP headers, as indicated by \r\n\r\n. In theory this allows a malicious to trick QEMU into consuming an arbitrary amount of RAM.

Discovery 2015-03-23
Entry 2016-12-04
Modified 2016-12-06
qemu
qemu-devel
qemu-sbruno

< 2.3.0

https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04895.html
CVE-2015-1779
ports/206725