FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a4bd3039-9a48-11d9-a256-0001020eed82xv -- filename handling format string vulnerability

A Gentoo Linux Security Advisory reports:

Tavis Ormandy of the Gentoo Linux Security Audit Team identified a flaw in the handling of image filenames by xv.

Successful exploitation would require a victim to process a specially crafted image with a malformed filename, potentially resulting in the execution of arbitrary code.


Discovery 2005-03-01
Entry 2005-03-21
xv
ja-xv
< 3.10a_5

CVE-2005-0665
http://www.gentoo.org/security/en/glsa/glsa-200503-09.xml