FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 18:22:07 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
d2b8a963-3d59-11dc-b3d3-0016179b2dd5	p5-Net-DNS -- multiple Vulnerabilities A Secunia Advisory reports: An error exists in the handling of DNS queries where IDs are incremented with a fixed value and are additionally used for child processes in a forking server. This can be exploited to poison the DNS cache of an application using the module if a valid ID is guessed. An error in the PP implementation within the "dn_expand()" function can be exploited to cause a stack overflow due to an endless loop via a specially crafted DNS packet. Discovery 2007-06-27 Entry 2007-07-28 p5-Net-DNS < 0.60 CVE-2007-3377 CVE-2007-3409 http://secunia.com/advisories/25829/

VuXML ID

Description

d2b8a963-3d59-11dc-b3d3-0016179b2dd5

p5-Net-DNS -- multiple Vulnerabilities

A Secunia Advisory reports:

An error exists in the handling of DNS queries where IDs are incremented with a fixed value and are additionally used for child processes in a forking server. This can be exploited to poison the DNS cache of an application using the module if a valid ID is guessed.

An error in the PP implementation within the "dn_expand()" function can be exploited to cause a stack overflow due to an endless loop via a specially crafted DNS packet.

Discovery 2007-06-27
Entry 2007-07-28
p5-Net-DNS

< 0.60

CVE-2007-3377
CVE-2007-3409
http://secunia.com/advisories/25829/