freebsd-ports

Author	SHA1	Message	Date
Niclas Zeising	b224fe5d39	Add CVE for xscreensaver lock bypass.	2015-11-04 19:36:01 +00:00
Jason Unovitch	7f715d5501	Document multiple vulnerabilities fixed in CodeIgniter PR: 203403 Security: https://vuxml.FreeBSD.org/freebsd/bdd57272-803c-11e5-ab94-002590263bf5.html	2015-11-01 02:10:37 +00:00
Jason Unovitch	23503a93fa	Document additional CVE assigned for the last Wordpress update Security: CVE-2015-7989 Security: https://vuxml.FreeBSD.org/freebsd/f4ce64c2-5bd4-11e5-9040-3c970e169bc2.html	2015-10-29 01:51:05 +00:00
Mark Felder	d5bb164515	Document information disclosure in net/openafs Security: CVE-2015-7762 Security: CVE-2015-7763	2015-10-28 20:59:22 +00:00
Niclas Zeising	8bcc103ea0	Add entry for x11/xscreensaver for a lock bypass vulnerability	2015-10-27 20:53:54 +00:00
Mathieu Arnold	91f933b2cb	Document lldpd security vunlnerability. PR: 204044 Submitted by: maintainer Sponsored by: Absolight	2015-10-27 13:44:07 +00:00
Mark Felder	320c35ac14	Update range for libressl vulnerability Range was entered incorrectly as <2.2.3 Security: e75a96df-73ca-11e5-9b45-b499baebfeaf	2015-10-26 13:45:27 +00:00
Joe Marcus Clarke	99d9c2bd22	Add an entry for wireshark-1.12.8 for CVE-2015-7830.	2015-10-25 17:37:12 +00:00
Jason Unovitch	76779cc5bd	Document the recent remote site takeover via SQL injection vuln in Joomla While here, document all missing Joomla security vulnerabilities since the last entry in March 2014 Security: CVE-2014-6631 Security: CVE-2014-6632 Security: CVE-2014-7228 Security: CVE-2014-7229 Security: CVE-2015-5397 Security: CVE-2015-5608 Security: CVE-2015-6939 Security: CVE-2015-7297 Security: CVE-2015-7857 Security: CVE-2015-7858 Security: CVE-2015-7859 Security: CVE-2015-7899 Security: https://vuxml.FreeBSD.org/freebsd/0ebc6e78-7ac6-11e5-b35a-002590263bf5.html Security: https://vuxml.FreeBSD.org/freebsd/03e54e42-7ac6-11e5-b35a-002590263bf5.html Security: https://vuxml.FreeBSD.org/freebsd/f8c37915-7ac5-11e5-b35a-002590263bf5.html Security: https://vuxml.FreeBSD.org/freebsd/ec2d1cfd-7ac5-11e5-b35a-002590263bf5.html Security: https://vuxml.FreeBSD.org/freebsd/deaba148-7ac5-11e5-b35a-002590263bf5.html Security: https://vuxml.FreeBSD.org/freebsd/cec4d01a-7ac5-11e5-b35a-002590263bf5.html Security: https://vuxml.FreeBSD.org/freebsd/beb3d5fc-7ac5-11e5-b35a-002590263bf5.html Security: https://vuxml.FreeBSD.org/freebsd/adbb32d9-7ac5-11e5-b35a-002590263bf5.html	2015-10-25 03:26:58 +00:00
Jason Unovitch	f919e6acd7	Document redirect vulnerability in the drupal7 overlay module PR: 203977 Security: CVE-2015-7943 Security: https://vuxml.FreeBSD.org/freebsd/75f39413-7a00-11e5-a2a1-002590263bf5.html	2015-10-24 03:55:25 +00:00
Matthew Seaman	1cf82dbf08	Record phpMyAdmin -- content spoofing vulnerability.	2015-10-23 20:39:41 +00:00
Xin LI	08f34c37a2	Add CVE references to the NTP entry.	2015-10-23 11:59:59 +00:00
Jason Unovitch	fc111cf1ce	Document Mediawiki security vulnerabilities for 1.25.3, 1.24.4, and 1.23.11 Security: https://vuxml.FreeBSD.org/freebsd/b973a763-7936-11e5-a2a1-002590263bf5.html	2015-10-23 03:43:36 +00:00
Cy Schubert	898655c0cb	Document October 2015 NTP Security Vulnerability Announcement (Medium)	2015-10-22 03:03:30 +00:00
Jason Unovitch	379ee526f4	Document multiple XSS vulnerabilities fixed in CodeIgniter PR: 203403 Security: https://vuxml.FreeBSD.org/freebsd/95602550-76cf-11e5-a2a1-002590263bf5.html	2015-10-20 02:33:47 +00:00
Sunpoet Po-Chuan Hsieh	2743e8d9cf	- Add NO_ARCH - While I'm here, use "yes" instead of "YES" Approved by: portmgr (blanket)	2015-10-19 20:22:29 +00:00
Renato Botelho	b5f8054f06	Add new VuXML entry for git arbitrary code execution bug on versions before 2.6.1	2015-10-19 17:04:02 +00:00
Sunpoet Po-Chuan Hsieh	d791a4add6	- Document Salt multiple vulnerabilities	2015-10-17 18:16:56 +00:00
Steve Wills	f880925a41	Document CVE-2015-7184 in firefox	2015-10-16 18:57:28 +00:00
Koop Mast	82f203006a	Document flash 0-day, remove code execution. Security: CVE-2015-7645, CVE-2015-7647, CVE-2015-7648	2015-10-16 16:11:19 +00:00
Peter Wemm	e4482bc1e2	Fix the vuxml build caused by a multitude of errors in r399425 (libressl).	2015-10-16 07:44:55 +00:00
Bernard Spil	eac75ec131	security/libressl: Fix memory leak and buffer overflow DoS vulnerability * Update to 2.2.4 (fixing vulnerabilities) * Create vuxml entry Differential revision: https://reviews.freebsd.org/D3916 Submitted by: Bernard Spil <brnrd@freebsd.org> Reviewed by: delphij (secteam) Approved by: delphij MFC after: 2015Q4 Security: CVE-2015-5333, CVE-2015-533	2015-10-16 07:08:40 +00:00
Mark Felder	1fdbc58c42	Document vulnerability in polarssl, polarssl13, and mbedtls Security: CVE-2015-5291	2015-10-15 14:48:51 +00:00
Jason Unovitch	086688b059	Document multiple vulnerabilities in the Magento platform While here, update an older entry to reflect Magento was vulnerable PR: 201709 Security: https://vuxml.FreeBSD.org/freebsd/ea1d2530-72ce-11e5-a2a1-002590263bf5.html Security: https://vuxml.FreeBSD.org/freebsd/ec34d0c2-1799-11e2-b4ab-000c29033c32.html Security: CVE-2012-3363	2015-10-14 23:59:01 +00:00
Jan Beich	6286222db5	net/miniupnpc: improve TALOS-2015-0035 entry in VuXML - Add "reserved" CVE link - Adjust version range to include a few previous snapshots and different fix in /branches/2015Q4 PR: 203705	2015-10-14 19:02:28 +00:00
Jan Beich	899edfd9f7	net/miniupnpc: reference TALOS-2015-0035 fix It maybe easier to backport to the quaterly branch than the development snapshot that caused fallout in most consumers. PR: 203705	2015-10-14 17:05:18 +00:00
Mark Felder	7d0ce5c47b	Document www/pear-twig remote code execution Security: CVE-2015-7809	2015-10-14 16:53:25 +00:00
Mark Felder	41d6fa567f	Document assigned CVE for graphics/optipng Security: CVE-2015-7801	2015-10-14 16:47:15 +00:00
Mark Felder	52ef750fc0	net/miniupnpc: Document buffer overflow PR: 203705 Security: TALOS-2015-0035	2015-10-14 16:21:20 +00:00
Koop Mast	34794030bd	Document latest flash vulnabilities. Security: CVE-2015-5569, CVE-2015-7625, CVE-2015-7626, CVE-2015-7627, CVE-2015-7628, CVE-2015-7629, CVE-2015-7630, CVE-2015-7631, CVE-2015-7632, CVE-2015-7633, CVE-2015-7634, CVE-2015-7643, CVE-2015-7644	2015-10-14 12:21:59 +00:00
Rene Ladan	46a3cede8a	Forgot two vulnerabilities in the previous commit.	2015-10-13 19:31:43 +00:00
Rene Ladan	5a62cc722a	Document new vulnerabilities in www/chromium < 46.0.2490.71 Obtained from: http://googlechromereleases.blogspot.nl/2015/10/stable-channel-update.html	2015-10-13 19:28:44 +00:00
Jason Unovitch	b22b3543a4	Add CVE assignment to r398701 Zend Framework 1 entry PR: 203462 Security: CVE-2015-7695 Security: https://vuxml.FreeBSD.org/freebsd/d3324fdb-6bf0-11e5-bc5e-00505699053e.html	2015-10-12 14:19:25 +00:00
Jason Unovitch	f1813f99c1	Add CVE assignment to r398626 PHP entry PR: 203541 Security: CVE-2015-7804 Security: CVE-2015-7803 Security: https://vuxml.FreeBSD.org/freebsd/c1da8b75-6aef-11e5-9909-002590263bf5.html	2015-10-12 14:11:12 +00:00
Jason Unovitch	4229f5003d	Document shell command execution via improper escaping in p5-UI-Dialog PR: 203667 Security: CVE-2008-7315 Security: https://vuxml.FreeBSD.org/freebsd/00dadbf0-6f61-11e5-a2a1-002590263bf5.html	2015-10-10 15:27:11 +00:00
Jason Unovitch	dcbe0f47eb	Document iPython vulnerabilities fixed in 3.2.2 PR: 203668 Security: CVE-2015-6938 Security: CVE-2015-7337 Security: https://vuxml.FreeBSD.org/freebsd/290351c9-6f5c-11e5-a2a1-002590263bf5.html	2015-10-10 15:01:54 +00:00
Palle Girgensohn	ea97aed20c	Add entry for two security problems in PostgreSQL CVE-2015-5289: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service. CVE-2015-5288: The crypt() function included with the optional pgCrypto extension could be exploited to read a few additional bytes of memory. No working exploit for this issue has been developed.	2015-10-08 21:18:53 +00:00
William Grzybowski	bb9f4237d7	security/vuxml: Document Zend Framework 1 vulnerability PR: 203462 Security: d3324fdb-6bf0-11e5-bc5e-00505699053e Security: CVE-2014-8089	2015-10-06 15:02:38 +00:00
Jason Unovitch	e9f4ccdda9	Document OpenSMTPD vulnerabilities (5.7.3) Revise pkg name, add PORTEPOCH, add more detail to earlier entry (5.7.2) Security: 42852f72-6bd3-11e5-9909-002590263bf5 Security: ee7bdf7f-11bb-4eea-b054-c692ab848c20 Security: CVE-2015-7687	2015-10-06 02:54:49 +00:00
Jason Unovitch	b695e42b60	Document recent mbed TLS/PolarSSL security releases PR: 203544 Security: 5d280761-6bcf-11e5-9909-002590263bf5 Security: 953aaa57-6bce-11e5-9909-002590263bf5	2015-10-06 02:24:46 +00:00
Koop Mast	b62752ffb6	Unbreak vuxml, woops.	2015-10-05 11:56:43 +00:00
Koop Mast	cdc4fb8019	Document heap overflows and a DoS in gdk-pixbuf2. Security: CVE-2015-7673, CVE-2015-7674	2015-10-05 11:46:56 +00:00
Jason Unovitch	e8566ce038	Document 20150910 Plone advisories PR: 203255 Security: 6b3374d4-6b0b-11e5-9909-002590263bf5	2015-10-05 03:09:24 +00:00
Jason Unovitch	0b27f0b023	Document PHP multiple security advisories in phar plugin PR: 203541 Security: c1da8b75-6aef-11e5-9909-002590263bf5	2015-10-05 00:00:11 +00:00
Jason Unovitch	323aa15dc7	Add CVE reference to Apache James entry PR: 203461 Security: CVE-2015-7611 Security: be3069c9-67e7-11e5-9909-002590263bf5	2015-10-04 21:27:55 +00:00
Steve Wills	2d9053c65d	Document mail/opensmtpd vulnerability	2015-10-04 14:23:03 +00:00
Jason Unovitch	48375c0b2a	Document security advisory for the Apache James server PR: 203461 Security: be3069c9-67e7-11e5-9909-002590263bf5	2015-10-01 03:14:14 +00:00
Carlo Strub	f4b1502edf	Report OTRS vulnerability Security: CVE-2015-6842, CVE-2013-7135	2015-09-30 06:18:37 +00:00
Koop Mast	e04f8d76fe	Document newest flash vulnabilities.	2015-09-28 09:29:05 +00:00
Jason Unovitch	76d899e7d9	Fix <freebsdpr> syntax on several entries Without ports/ prepended to the PR number, the http://www.vuxml.org links go to https://bugs.FreeBSD.org and not the actual PR. While here, "trongSwan" -> "StrongSwan" spelling correction PR: 200777	2015-09-28 02:54:41 +00:00

1 2 3 4 5 ...

3940 commits