FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
f6447303-9ec9-11da-b410-000e0c2e438a	heartbeat -- insecure temporary file creation vulnerability Eric Romang reports a temporary file creation vulnerability within heartbeat. The vulnerability is caused by hardcoded temporary file usage. This can cause an attacker to create an arbitrary symlink causing the application to overwrite the symlinked file with the permissions of the user executing the application. Discovery 2005-07-12 Entry 2006-02-16 Modified 2006-04-16 heartbeat < 1.2.4 CAN-2005-2231 http://www.zataz.net/adviso/heartbeat-06272005.txt

VuXML ID

Description

f6447303-9ec9-11da-b410-000e0c2e438a

heartbeat -- insecure temporary file creation vulnerability

Eric Romang reports a temporary file creation vulnerability within heartbeat. The vulnerability is caused by hardcoded temporary file usage. This can cause an attacker to create an arbitrary symlink causing the application to overwrite the symlinked file with the permissions of the user executing the application.

Discovery 2005-07-12
Entry 2006-02-16
Modified 2006-04-16
heartbeat

< 1.2.4

CAN-2005-2231
http://www.zataz.net/adviso/heartbeat-06272005.txt