This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-09-20 06:52:49 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
eeca52dc-866c-11eb-b8d6-d4c9ef517024 | LibreSSL -- use-after-free OpenBSD reports:
Discovery 2021-03-15 Entry 2021-03-16 libressl < 3.2.4_1 https://marc.info/?l=openbsd-announce&m=161582456312832&w=2 https://ftp.openbsd.org/pub/OpenBSD/patches/6.8/common/017_libssl.patch.sig |
8305e215-1080-11e5-8ba2-000c2980a9f3 | openssl -- multiple vulnerabilities The OpenSSL team reports:
Discovery 2015-06-11 Entry 2015-06-11 Modified 2016-08-09 openssl < 1.0.2_2 mingw32-openssl >= 1.0.1 lt 1.0.2b linux-c6-openssl < 1.0.1e_6 libressl < 2.1.7 FreeBSD >= 10.1 lt 10.1_12 >= 9.3 lt 9.3_16 >= 8.4 lt 8.4_30 CVE-2014-8176 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-4000 SA-15:10.openssl https://www.openssl.org/news/secadv_20150611.txt |
91a337d8-83ed-11e6-bf52-b499baebfeaf | OpenSSL -- multiple vulnerabilities OpenSSL reports:
Discovery 2016-09-26 Entry 2016-09-26 Modified 2016-10-10 openssl < 1.0.2j,1 openssl-devel < 1.1.0b libressl < 2.4.3 libressl-devel < 2.4.3 FreeBSD >= 11.0 lt 11.0_1 https://www.openssl.org/news/secadv/20160926.txt CVE-2016-6309 CVE-2016-7052 SA-16:27.openssl |
e75a96df-73ca-11e5-9b45-b499baebfeaf | LibreSSL -- Memory leak and buffer overflow Qualys reports:
Discovery 2015-10-15 Entry 2015-10-16 Modified 2015-10-26 libressl < 2.2.4 http://marc.info/?l=openbsd-announce&m=144495690528446 CVE-2015-5333 CVE-2015-5334 |
9d15355b-ce7c-11e4-9db0-d050992ecde8 | OpenSSL -- multiple vulnerabilities OpenSSL project reports:
Discovery 2015-03-19 Entry 2015-03-19 Modified 2016-08-09 openssl >= 1.0.1 lt 1.0.1_19 mingw32-openssl >= 1.0.1 lt 1.0.1m linux-c6-openssl < 1.0.1e_4 libressl <= 2.1.5_1 FreeBSD >= 10.1 lt 10.1_8 >= 9.3 lt 9.3_12 >= 8.4 lt 8.4_26 SA-15:06.openssl ports/198681 CVE-2015-0204 CVE-2015-0286 CVE-2015-0287 CVE-2015-0289 CVE-2015-0292 CVE-2015-0293 CVE-2015-0209 CVE-2015-0288 https://www.openssl.org/news/secadv_20150319.txt |
215e740e-9c56-11e5-90e7-b499baebfeaf | libressl -- NULL pointer dereference The OpenBSD project reports:
Discovery 2015-12-03 Entry 2015-12-08 libressl < 2.2.5 >= 2.3.0 lt 2.3.1_1 https://marc.info/?l=openbsd-announce&t=144920914600002 CVE-2015-3194 |
ea05c456-a4fd-11ec-90de-1c697aa5a594 | OpenSSL -- Infinite loop in BN_mod_sqrt parsing certificates The OpenSSL project reports:
Discovery 2022-03-15 Entry 2022-03-16 Modified 2022-03-16 openssl < 1.1.1n,1 openssl-devel < 3.0.2 openssl-quictls < 3.0.2 libressl < 3.4.3 libressl-devel < 3.5.1 FreeBSD >= 13.0 lt 13.0_8 >= 12.3 lt 12.3_3 >= 12.2 lt 12.2_14 CVE-2022-0778 https://www.openssl.org/news/secadv/20220315.txt SA-22:03.openssl |
c82ecac5-6e3f-11e8-8777-b499baebfeaf | OpenSSL -- Client DoS due to large DH parameter The OpenSSL project reports:
Discovery 2018-06-12 Entry 2018-06-12 Modified 2018-07-24 libressl libressl-devel < 2.6.5 >= 2.7.0 lt 2.7.4 openssl < 1.0.2o_4,1 openssl-devel < 1.1.0h_2 https://www.openssl.org/news/secadv/20180612.txt CVE-2018-0732 |
01d729ca-1143-11e6-b55e-b499baebfeaf | OpenSSL -- multiple vulnerabilities OpenSSL reports:
Discovery 2016-05-03 Entry 2016-05-03 Modified 2016-08-09 openssl < 1.0.2_11 linux-c6-openssl < 1.0.1e_8 libressl >= 2.3.0 lt 2.3.4 < 2.2.7 libressl-devel < 2.3.4 FreeBSD >= 10.3 lt 10.3_2 >= 10.2 lt 10.2_16 >= 10.1 lt 10.1_33 >= 9.3 lt 9.3_41 https://www.openssl.org/news/secadv/20160503.txt https://marc.info/?l=openbsd-tech&m=146228598730414 CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 CVE-2016-2109 CVE-2016-2176 SA-16:17.openssl |
1dd84344-a7da-11ed-86e9-d4c9ef517024 | LibreSSL -- Arbitrary memory read The OpenBSD project reports:
Discovery 2023-02-08 Entry 2023-02-08 libressl < 3.5.4 libressl-devel < 3.6.2 https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.5.4-relnotes.txt |
6f0529e2-2e82-11e6-b2ec-b499baebfeaf | OpenSSL -- vulnerability in DSA signing The OpenSSL team reports:
Discovery 2016-06-09 Entry 2016-06-09 Modified 2016-12-20 openssl < 1.0.2_13 libressl < 2.2.9 >= 2.3.0 lt 2.3.6 libressl-devel < 2.4.1 https://git.openssl.org/?p=openssl.git;a=commit;h=399944622df7bd81af62e67ea967c470534090e2 CVE-2016-2178 |
7caebe30-d7f1-11e6-a9a5-b499baebfeaf | openssl -- timing attack vulnerability Cesar Pereida Garcia reports:
Discovery 2017-01-10 Entry 2017-01-11 Modified 2017-01-11 openssl < 1.0.2 libressl < 2.4.4_1 libressl-devel < 2.5.0_1 http://seclists.org/oss-sec/2017/q1/52 CVE-2016-7056 |
88dfd92f-3b9c-11eb-929d-d4c9ef517024 | LibreSSL -- NULL pointer dereference The LibreSSL project reports:
Discovery 2020-12-08 Entry 2020-12-11 Modified 2020-12-12 libressl > 3.2.0 lt 3.2.3 < 3.1.5 libressl-devel < 3.3.1 https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.2.3-relnotes.txt |