kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
211535 commits 42 branches 80 tags 2.7 GiB
Commit graph

1878 commits

Author SHA1 Message Date
Martin Wilke
5a76589457 - Document pycrypto -- ARC2 module buffer overflow 
PR:		based on 131689
Submitted by:	Mark Foster <mark@foster.cc>
 2009-02-15 21:45:24 +00:00
Joe Marcus Clarke
8a59b410de Update the latest firefox vulnerability ranges. 2009-02-15 18:23:19 +00:00
Jun Kuriyama
62afe5b355 Minor whitespace nits. 2009-02-15 13:29:57 +00:00
Martin Wilke
62a2e96d35 - Update previous entry 
* remove duplicate bid entry
   * add more referens
   * fix whitespaces
 2009-02-15 13:08:19 +00:00
Dag-Erling Smørgrav
ff2d9848e9 Document Varnish 2.0 DoS. 
PR:		ports/131690
Submitted by:	Mark Foster <mark@foster.cc>
 2009-02-15 11:06:47 +00:00
Martin Wilke
e1bd1d93f0 - Document tor -- multiple vulnerabilites 2009-02-13 13:30:03 +00:00
Martin Wilke
dde88a4d42 - Fix portaudit conflict with www/firefox and www/firefox3 
- Mark www/firefox and www/linux-firefox FORBIDDEN

Discussion by:	simon/stas
With hat:	secteam
 2009-02-11 19:15:07 +00:00
Martin Wilke
db7144e84d - Fix latest firefox entry 2009-02-11 16:52:36 +00:00
Martin Wilke
e87bb59e51 - Document firefox -- multiple vulnerabilities 2009-02-11 14:37:26 +00:00
Greg Larkin
3829910cac - document codeigniter -- arbitrary script execution in the new 
Form Validationclass
 2009-02-11 14:15:25 +00:00
Philippe Audeoud
b732b885ec - Document pyblosxom -- atom flavor multiple XML injection vulnerabilities 
Reviewed by:	miwi
 2009-02-11 13:36:14 +00:00
Martin Wilke
a5ffde8a8b - Document typo3 -- cross-site scripting and information disclosure 2009-02-11 10:15:25 +00:00
Martin Wilke
b10bcbd712 - Update latest squid* entry 
Add CVE-2009-0478

Submitted by:	jadawin
 2009-02-10 20:53:22 +00:00
Stanislav Sedov
1f5ee05656 - Update ruby vuxml entries due to ruby19 version bump. 2009-02-09 17:55:33 +00:00
Martin Wilke
fe7b9f5082 - Document amaya -- multiple buffer overflow vulnerabilities 
PR:		based on 131508
Submitted by:	Mark Foster <mark@foster.cc>
 2009-02-09 15:31:02 +00:00
Martin Wilke
c24432089c - Document websvn -- multiple vulnerabilities 
PR:		based on 130934
Submitted by:	Mark Foster <mark@foster.cc>
 2009-02-09 14:52:55 +00:00
Martin Wilke
7f17dcce80 - Document phplist -- local file inclusion vulnerability 
PR:		based on 130932
 2009-02-09 14:20:16 +00:00
Martin Wilke
8196cf420c - Document squid -- remote denial of service vulnerability 
PR:		based on 131431
 2009-02-09 14:04:18 +00:00
Martin Wilke
c0f7f3032f - Fix topic s/typo/typo3 2009-02-09 13:41:36 +00:00
Martin Wilke
0d145fbb80 - Document typo3 -- Multiple Vulnerabilities 2009-02-09 13:30:09 +00:00
Martin Wilke
bec5701c09 - Fix previous entry 2009-02-06 19:59:49 +00:00
Tom McLaughlin
a2745142d5 Security update for sudo to 1.6.9p20 for CVE 2009-0034 
Changes:
- Only use the cached supplementory group vector when matching groups
  for the invoking user. (security)
- When setting the umask, use the union of the user's umask and the
  default value set in sudoers so that we never lower the user's umask
  when running a command.
- Sudo now operates in the C locale again when doing a match against
  sudoers.

PR:		131446
Submitted by:	Eygene Ryabinkin
Security:	vid:13d6d997-f455-11dd-8516-001b77d09812
 2009-02-06 19:35:46 +00:00
Martin Wilke
a7d87b5548 - Fix a typo (s/drual/drupal) 2009-02-04 14:01:58 +00:00
Martin Wilke
90ab7d09a8 - Cleanup 2009-02-04 13:53:49 +00:00
Martin Wilke
788051a5bf - Document drupal -- multible vulnerabilities 2009-02-04 13:47:09 +00:00
Alex Dupre
5b3afb6eb8 Update php5-gd entry. 2009-02-04 06:47:06 +00:00
Martin Wilke
bb7ac554a0 - Document perl -- Directory Permissions Race Condition 
PR:		based on 129317
 2009-02-03 21:42:52 +00:00
Martin Wilke
ec37c276d9 - Rework ganglia entry 
* Fix topic
  * Fix discovery and entry day
 2009-01-30 09:55:01 +00:00
Martin Wilke
eb52091dd6 - Set modified for b9077cc4-6d04-4bcb-a37a-9ceaebfdcc9e entry 
- more cleanup
 2009-01-30 09:13:58 +00:00
Martin Wilke
7ec1c9e83f - Document moinmoin -- multiple cross site scripting vulnerabilities 2009-01-30 08:59:45 +00:00
Martin Wilke
c294be32da - Cleanup previous entry 
* remove whitespaces
	* sort bid/cvename/url
 2009-01-30 08:51:50 +00:00
Brooks Davis
47e24183d5 Upgrade Ganglia to 3.1.1 plus a fix for CVE-2009-0241. 
PR:		ports/129822, ports/131067
Submitted by:	Mark Foster <mark at foster dot cc> (vuxml)
Security:	vid:b9077cc4-6d04-4bcb-a37a-9ceaebfdcc9e
 2009-01-30 03:56:35 +00:00
Martin Wilke
dbf6acc620 - Document Tor -- Unspecified Memory Corruption Vulnerability 2009-01-29 22:49:09 +00:00
Martin Wilke
b532357cb1 - Cleanup 
* Fix whitespaces/ Tabs
	* Sort <bid>/<cvename>/<url>
 2009-01-28 13:11:23 +00:00
Martin Wilke
b8b9fc65a6 - Rewording 2ffb1b0d-ecf5-11dd-abae-00219b0fc4d (glpi -- SQL Injection) 
- Add more reference sites
 2009-01-28 13:05:28 +00:00
Philip M. Gollucci
92069b4fb5 Document glpi -- SQL Injection vulnerabilty 
PR:             ports/131011
Submitted by:   Mathias Monnerville <mathias@monnerville.com>
 2009-01-28 05:07:48 +00:00
Thomas Abthorpe
d6723ec5fc - Document openfire -- multiple vulnerabilities 
PR:		ports/130606
Submitted by:	Mark Foster <mark foster.cc>
 2009-01-25 00:56:17 +00:00
Xin LI
7a2e3cd4d8 Update information about 9fff8dc8-7aa7-11da-bf72-00123f589060 
and 651996e0-fe07-11d9-8329-000e0c2e438a, newer versions of
apache+ipv6 has the problems fixed.

Submitted by:	sumikawa
 2009-01-24 02:31:09 +00:00
Wesley Shields
f27c4d117f - Document two old ipsec-tools DoS 
PR:		ports/129468
Submitted by:	Eygene Ryabinkin <rea-fbsd@codelabs.ru>
 2009-01-21 19:44:14 +00:00
Wesley Shields
0c4df6fc1f - Document directory traversal bug in teamspeak server 
PR:		ports/130608
Submitted by:	Mark Foster <mark@foster.cc>
 2009-01-20 15:20:16 +00:00
Wesley Shields
dba6f35472 - Document graphics/optipng buffer overflow 
PR:		ports/129072
Submitted by:	Eygene Ryabinkin <rea-fbsd@codelabs.ru>
 2009-01-19 20:21:31 +00:00
Wesley Shields
ebe2a809df - Document old gitweb privilege escalation vulnerability. 
PR:		ports/130600
Submitted by:	Eygene Ryabinkin <rea-fbsd@codelabs.ru>
 2009-01-19 20:04:50 +00:00
Christian Weisgerber
637b6be877 Document vulnerability in older versions of GNU tar. 
PR:		130602
Submitted by:	Mark Foster <mark@foster.cc>
 2009-01-16 16:11:03 +00:00
Martin Wilke
74192b0e82 - Mark net-mgmt/nagios2 as secure 2009-01-16 00:02:52 +00:00
Martin Wilke
fb1db58464 - Document mplayer -- vulnerability in STR files processor 
PR:		based on 130573
 2009-01-15 23:00:51 +00:00
Martin Wilke
5616bcd898 - Cleanup previous entry 
- Add more references
 2009-01-13 12:22:21 +00:00
Wesley Shields
3c02ff951e - Add missing blockquote and linewrap properly 2009-01-13 03:30:52 +00:00
Wesley Shields
914d59516e - Document cgiwrap XSS vulnerability 
PR:		ports/130277
Submitted by:	Eric W. Bates <ericx@vineyard.net>
 2009-01-13 03:19:19 +00:00
Martin Wilke
cbfb20634d - Document nagios -- web interface privilege escalation vulnerability 2009-01-12 12:27:39 +00:00
Martin Wilke
ea09970eab - Document pdfjam -- insecure temporary files 
PR:		based on 130028
 2009-01-11 19:58:49 +00:00