FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-18 21:55:04 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
f4428842-a583-4a4c-89b7-297c3459a1c3bogofilter -- RFC 2047 decoder denial-of-service vulnerability

The bogofilter team has been provided with a test case of a malformatted (non-conformant) RFC-2047 encoded word that can cause bogofilter versions 0.92.7 and prior to try to write a NUL byte into a memory location that is either one byte past the end of a flex buffer or to a location that is the negative of the encoded word's start of payload data, causing a segmentation fault.


Discovery 2004-10-09
Entry 2004-10-26
Modified 2015-09-28
bogofilter
bogofilter-qdbm
bogofilter-tdb
ru-bogofilter
ge 0.17.4 lt 0.92.8

ports/73144
CVE-2004-1007
http://article.gmane.org/gmane.mail.bogofilter.devel/3308
http://article.gmane.org/gmane.mail.bogofilter.devel/3317
http://bugs.debian.org/275373
http://bogofilter.sourceforge.net/security/bogofilter-SA-2004-01