FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  567892
Date:      2021-03-09
Time:      06:26:48Z
Committer: bhughes

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b4f0ad36-94a5-11e8-9007-080027ac955c	mailman -- content spoofing with invalid list names in web UI Mark Sapiro reports: A URL with a very long text listname such as http://www.example.com/mailman/listinfo/This_is_a_long_string_with_some_phishing_text will echo the text in the "No such list" error response. This can be used to make a potential victim think the phishing text comes from a trusted site. This issue was discovered by Hammad Qureshi. Discovery 2018-07-09 Entry 2018-07-31 mailman lt 2.1.28 mailman-with-htdig lt 2.1.28 ja-mailman lt 2.1.14.j7_6,1 https://bugs.launchpad.net/mailman/+bug/1780874 https://mail.python.org/pipermail/mailman-announce/2018-July/000241.html CVE-2018-13796
88760f4d-8ef7-11ea-a66d-4b2ef158be83	mailman -- arbitrary content injection vulnerability via options or private archive login pages Mark Sapiro reports: A content injection vulnerability via the options login page has been discovered and reported by Vishal Singh. An issue similar to CVE-2018-13796 exists at different endpoint & param. It can lead to a phishing attack. (added 2020-05-07) This is essentially the same as https://bugs.launchpad.net/mailman/+bug/1873722 except the vector is the private archive login page and the attack only succeeds if the list's roster visibility (private_roster) setting is 'Anyone'. Discovery 2020-04-20 Entry 2020-05-07 mailman lt 2.1.30_4 ge 2.1.31 lt 2.1.33 mailman-with-htdig lt 2.1.30_4 ge 2.1.31 lt 2.1.33 https://bazaar.launchpad.net/~mailman-coders/mailman/2.1/view/1845/NEWS#L8 https://bugs.launchpad.net/mailman/+bug/1873722 https://bugs.launchpad.net/mailman/+bug/1877379 https://mail.python.org/archives/list/mailman-developers@python.org/thread/SYBIZ3MNSQZLKN6PVKO7ZKR7QMOBMS45/ CVE-2018-13796

VuXML ID

Description

b4f0ad36-94a5-11e8-9007-080027ac955c

mailman -- content spoofing with invalid list names in web UI

Mark Sapiro reports:

A URL with a very long text listname such as
http://www.example.com/mailman/listinfo/This_is_a_long_string_with_some_phishing_text
will echo the text in the "No such list" error response. This can be used to make a potential victim think the phishing text comes from a trusted site.

This issue was discovered by Hammad Qureshi.

Discovery 2018-07-09
Entry 2018-07-31
mailman

lt 2.1.28

mailman-with-htdig

lt 2.1.28

ja-mailman

lt 2.1.14.j7_6,1

https://bugs.launchpad.net/mailman/+bug/1780874
https://mail.python.org/pipermail/mailman-announce/2018-July/000241.html
CVE-2018-13796

88760f4d-8ef7-11ea-a66d-4b2ef158be83

mailman -- arbitrary content injection vulnerability via options or private archive login pages

Mark Sapiro reports:

A content injection vulnerability via the options login page has been discovered and reported by Vishal Singh.

An issue similar to CVE-2018-13796 exists at different endpoint & param. It can lead to a phishing attack.

(added 2020-05-07) This is essentially the same as https://bugs.launchpad.net/mailman/+bug/1873722 except the vector is the private archive login page and the attack only succeeds if the list's roster visibility (private_roster) setting is 'Anyone'.

Discovery 2020-04-20
Entry 2020-05-07
mailman

lt 2.1.30_4

ge 2.1.31 lt 2.1.33

mailman-with-htdig

lt 2.1.30_4

ge 2.1.31 lt 2.1.33

https://bazaar.launchpad.net/~mailman-coders/mailman/2.1/view/1845/NEWS#L8
https://bugs.launchpad.net/mailman/+bug/1873722
https://bugs.launchpad.net/mailman/+bug/1877379
https://mail.python.org/archives/list/mailman-developers@python.org/thread/SYBIZ3MNSQZLKN6PVKO7ZKR7QMOBMS45/
CVE-2018-13796