This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
d74371d2-4fee-11e9-a5cd-1df8a848de3d | Python -- NULL pointer dereference vulnerability Python Changelog:
Discovery 2019-01-15 Entry 2019-03-26 Modified 2019-03-27 python27 < 2.7.16 python35 < 3.5.7 python36 < 3.6.8_1 python37 < 3.7.3 https://docs.python.org/3.7/whatsnew/changelog.html https://bugs.python.org/issue35746 CVE-2019-5010 |
8719b935-8bae-41ad-92ba-3c826f651219 | python 2.7 -- multiple vulnerabilities python release notes:
Discovery 2018-05-01 Entry 2018-05-05 python27 < 2.7.15 https://github.com/python/cpython/blob/2.7/Misc/NEWS.d/2.7.15rc1.rst https://github.com/python/cpython/blob/2.7/Misc/NEWS.d/2.7.15.rst CVE-2012-0876 CVE-2016-0718 CVE-2016-4472 CVE-2016-9063 CVE-2017-9233 CVE-2018-1060 CVE-2018-1061 |
8d5368ef-40fe-11e6-b2ec-b499baebfeaf | Python -- smtplib StartTLS stripping vulnerability Red Hat reports:
Discovery 2016-06-14 Entry 2016-07-03 python27 < 2.7.12 python33 gt 0 python34 < 3.4.5 python35 < 3.5.2 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-0772 CVE-2016-0772 |
9164f51e-ae20-11e7-a633-009c02a2ab30 | Python 2.7 -- multiple vulnerabilities Python reports:
Discovery 2017-08-26 Entry 2017-10-11 python27 < 2.7.14 https://raw.githubusercontent.com/python/cpython/84471935ed2f62b8c5758fd544c7d37076fe0fa5/Misc/NEWS CVE-2012-0876 CVE-2016-0718 CVE-2016-4472 CVE-2016-5300 CVE-2016-9063 CVE-2017-9233 |
1d0f6852-33d8-11e6-a671-60a44ce6887b | Python -- Integer overflow in zipimport module Python reports:
Discovery 2016-01-21 Entry 2016-06-17 python35 < 3.5.1_3 python34 < 3.4.4_3 python33 < 3.3.6_5 python27 < 2.7.11_3 http://bugs.python.org/issue26171 CVE-2016-5636 |
a27b0bb6-84fc-11ea-b5b4-641c67a117d8 | Python -- Regular Expression DoS attack against client Ben Caller and Matt Schwager reports:
Discovery 2019-11-17 Entry 2020-04-23 Modified 2020-06-13 python38 < 3.8.3 python37 le 3.7.7 python36 < 3.6.10 python35 le 3.5.9_4 python27 < 2.7.18 https://python-security.readthedocs.io/vuln/urllib-basic-auth-regex.html https://bugs.python.org/issue39503 CVE-2020-8492 ports/245819 |
a61374fc-3a4d-11e6-a671-60a44ce6887b | Python -- HTTP Header Injection in Python urllib Guido Vranken reports:
Discovery 2014-11-24 Entry 2016-06-30 Modified 2016-07-04 python27 < 2.7.10 python33 ge 0 python34 < 3.4.4 python35 < 3.5.0 https://bugs.python.org/issue22928 http://blog.blindspotsecurity.com/2016/06/advisory-http-header-injection-in.html http://www.openwall.com/lists/oss-security/2016/06/14/7 CVE-2016-5699 |
ca595a25-91d8-11ea-b470-080027846a02 | Python -- CRLF injection via the host part of the url passed to urlopen() Python reports:
Discovery 2019-10-24 Entry 2020-05-09 Modified 2020-06-13 python27 < 2.7.18 python38 < 3.8.3 python37 le 3.7.7 python36 < 3.6.10 python35 le 3.5.9_4 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18348 https://bugs.python.org/issue38576 CVE-2019-18348 |
8e5e6d42-a0fa-11e3-b09a-080027f2d077 | Python -- buffer overflow in socket.recvfrom_into() Vincent Danen via Red Hat Issue Tracker reports:
Discovery 2014-01-14 Entry 2014-03-01 python27 le 2.7.6_3 python31 le 3.1.5_10 python32 le 3.2.5_7 python33 le 3.3.3_2 65379 CVE-2014-1912 https://mail.python.org/pipermail/python-dev/2014-February/132758.html http://bugs.python.org/issue20246 https://bugzilla.redhat.com/show_bug.cgi?id=1062370 |