freebsd-ports

Author	SHA1	Message	Date
Brad Davis	7b047d168a	Add ossec-hids-* vulnerabilities. PR: 200801 Submitted by: Jason Unovitch <jason.unovitch@gmail.com> Approved by: swills (mentor)	2015-06-12 14:10:38 +00:00
Ryan Steinmetz	8f5fadbbf0	- Add vulnerability information for additional ports affected by openssl CVEs in 8305e215-1080-11e5-8ba2-000c2980a9f3	2015-06-12 02:12:37 +00:00
Ryan Steinmetz	ad01f5ea18	- Document recent vulnerabilities in security/openssl	2015-06-11 21:35:48 +00:00
Johannes Jost Meixner	353f452b19	Document 13 Flash vulnerabilities. Affected: www/linux-*-flashplugin11.	2015-06-11 15:53:37 +00:00
Xin LI	68d04a0b91	Document libzmq4 V3 protocol handler protocol downgrade vulnerability. PR: 200502 Submitted by: Jason Unovitch	2015-06-10 18:09:20 +00:00
Xin LI	aec2eea161	Document pgbouncer remote denial of service vulnerability. PR: 200537 Submitted by: Jason Unovitch	2015-06-10 17:34:21 +00:00
Xin LI	c79d94ea8a	Document cups multiple vulnerabilities.	2015-06-09 23:17:10 +00:00
Xin LI	b882d8e5f7	Document two strongswan vulnerabilities. PR: 200721 Submitted by: Jason Unovitch (with changes: wrapped long line and changed CVE-2015-3991's coverage to cover only < 5.3.1 to reflect the reality).	2015-06-09 08:23:28 +00:00
Xin LI	28dc96b72b	Document redis EVAL Lua sandbox escape vulnerability.	2015-06-08 22:33:12 +00:00
Thierry Thomas	767875cfe8	Add an entry for www/tidy-* heap-buffer-overflow. PR: ports/200631 Submitted by: Walter Hop	2015-06-08 17:30:48 +00:00
Xin LI	b3b0de6332	Fix typo and remove PHP from pcre vulnerabilities, as the bundled pcre is not used.	2015-06-07 21:07:34 +00:00
Xin LI	1e55242432	Document fixed version of pcre in e69af246-0ae2-11e5-90e4-d050996490d0.	2015-06-07 20:53:12 +00:00
Sunpoet Po-Chuan Hsieh	4e60fe4607	- Update VuXML PR: 200196 Submitted by: Jason Unovitch <jason.unovitch@gmail.com>	2015-06-06 18:21:17 +00:00
Ryan Steinmetz	56eb86dda9	- Re-add PHP removed in previous commit - Update pcre to use lt instead of gt	2015-06-05 23:54:01 +00:00
Ryan Steinmetz	6089ce0942	- Make version matching on the pcre vuln a little more sane - Remove PHP as the vulnerability appears to be in devel/pcre, not php	2015-06-05 15:42:30 +00:00
Xin LI	dd0a369a8e	Document two recent pcre vulnerabilities that can be triggered by specifically crafted patterns and would lead to stack or heap overflow.	2015-06-04 18:18:32 +00:00
Sergey A. Osokin	60265856d7	Update information for graphics/libraw. PR: 200194	2015-06-04 00:35:58 +00:00
John Marino	a81958dcf7	security/vuxml: multiple vulnerabilities of wpa_supplicant and hostapd Security: CVE-2015-4141 Security: CVE-2015-4142 Security: CVE-2015-4143 Security: CVE-2015-4144 Security: CVE-2015-4145 Security: CVE-2015-4146 PR: 200568	2015-06-02 09:44:25 +00:00
Jan Beich	5e082eba1f	Document recent ffmpeg0 vulnerabilities	2015-06-02 02:50:04 +00:00
Thomas Zander	1f90a61858	Add entry for vulnerable versions of avidemux2 and avidemux26 PR: 200507 Submitted by: venture37@geeklan.co.uk	2015-06-01 19:37:57 +00:00
Michael Moll	26e358d867	security/vuxml: add www/rubygem-rest-client vulnerabilities PR: 200504 Differential Revision: https://reviews.freebsd.org/D2699 Submitted by: Sevan Janiyan <venture37@geeklan.co.uk> Approved by: ports-secteam (delphij, eadler) Security: CVE-2015-1820 Security: CVE-2015-3448	2015-06-01 18:44:14 +00:00
Xin LI	959368f6ce	- Add kodi to 57325ecf-facc-11e4-968f-b888e347c638 [1] - Update entry dates for newly added entry. PR: 200200 [1] Submitted by: Jason Unovitch [1]	2015-06-01 07:24:48 +00:00
Xin LI	821766b0f6	Reflect CVE-2015-2060 and CVE-2014-9556. PR: ports/198955 Submitted by: Jason Unovitch	2015-06-01 05:59:00 +00:00
Li-Wen Hsu	1176ccfe8b	- Document django vulnerability CVE-2015-3982	2015-05-31 16:07:52 +00:00
Xin LI	fc893d96d5	Extend 57325ecf-facc-11e4-968f-b888e347c638 to cover rawstudio as well. PR: 200199 Submitted by: Jason Unovitch	2015-05-31 08:08:16 +00:00
Xin LI	cf1948f801	Document the issue with proxychains-ng which uses current directory when searching for its own shared library (CVE-2015-3887). PR: 200511 Submitted by: Jason Unovitch	2015-05-29 22:20:31 +00:00
Xin LI	97d2747632	Document wireshark multiple vulnerabilities.	2015-05-28 19:47:24 +00:00
Xin LI	59eb6493d2	Document krb5 requires_preauth bypass in PKINIT-enabled KDC.	2015-05-28 17:46:26 +00:00
Xin LI	2a743f346c	Retrofit document cURL multiple vulnerabilities.	2015-05-26 22:15:05 +00:00
Xin LI	76180fac33	Document cassandra remote code execution vulnerability. PR: 199091 Submitted by: Jason Unovitch <jason unovitch gmail com>	2015-05-24 07:29:09 +00:00
Xin LI	6b2825cc3b	Fix version range for previous commit.	2015-05-24 07:23:40 +00:00
Xin LI	dc53f20982	Extend CVE-2015-3456 to cover xen-tools (4.5.0-4.5.0_5: we didn't supported the feature in earlier version of this port) and VirtualBox cases as well. PR: 200311	2015-05-24 07:19:09 +00:00
Johannes Jost Meixner	db6e82aa3f	document possible vulnerabilities in sysutils/py-salt PR: 200172 Submitted by: Sevan Janiyan <venture37@geeklan.co.uk>	2015-05-24 03:43:24 +00:00
Kurt Jaeger	ffa5463747	Add entry for mail/davmail. PR: 198297 Submitted by: Jason Unovitch <jason.unovitch@gmail.com> Approved by: <john.c.prather@gmail.com> (maintainer (timeout))	2015-05-23 18:25:50 +00:00
Matthias Andree	3f0045878a	Document dnsmasq and -devel vulnerabilities (CVE-2015-3294 and one other in rc).	2015-05-23 08:38:18 +00:00
Xin LI	58d6682850	Document PCRE and PHP multiple vulnerabilities.	2015-05-22 22:49:12 +00:00
Xin LI	3bec9eca16	Correct PR number. Submitted by: jason.unovitch gmail.com	2015-05-22 22:15:21 +00:00
Palle Girgensohn	87761f7be2	Record some minor PostgreSQL sercurity problems. "This update fixes three security vulnerabilities reported in PostgreSQL over the past few months. Nether of these issues is seen as particularly urgent. However, users should examine them in case their installations are vulnerable." URL: http://www.postgresql.org/about/news/1587/	2015-05-22 19:06:27 +00:00
Xin LI	dd5bb00341	Pass full path to the vuln.xml file to extra-validation.py. Without this, if .OBJDIR differs from .CURDIR, the validation would fail. PR: 193923 Reported by: jbeich	2015-05-22 07:04:28 +00:00
Xin LI	028143ec9c	Document CVE-2015-3306 proftpd mod_copy unauthenticated copying of files vulnerability.	2015-05-20 19:21:06 +00:00
Brad Davis	80bfe91d09	Document vulnerability in security/ipsec-tools. PR: 200334 Approved by: bdrewery (mentor)	2015-05-19 19:27:38 +00:00
Rene Ladan	52ac1fe9e3	Document new vulnerabilities in www/chromium < 43.0.2357.65 Obtained from: http://googlechromereleases.blogspot.nl/2015/05/stable-channel-update_19.html	2015-05-19 17:48:06 +00:00
Xin LI	0b8406cbed	Document ClamAV multiple vulnerabilities.	2015-05-19 07:54:29 +00:00
Michael Moll	1a138ac047	security/vuxml: Add CVE-2015-3900 entry for devel/ruby-gems PR: 200264 Differential Revision: https://reviews.freebsd.org/D2572 Approved by: mat (mentor) Security: CVE-2015-3900	2015-05-17 15:48:13 +00:00
Juergen Lock	61fa458c06	Document qemu "VENOM" vulnerability - CVE-2015-3456 PR: 200255 PR: 200256 PR: 200257 Submitted by: venture37@geeklan.co.uk Security: http://vuxml.FreeBSD.org/freebsd/2780e442-fc59-11e4-b18b-6805ca1d3bb1.html	2015-05-17 10:06:10 +00:00
Max Brazhnikov	062aad5706	Document Quassel IRC vulnerability CVE-2015-3427	2015-05-16 10:00:59 +00:00
Don Lewis	e75212a301	Correct entry for apache-openoffice-* / libreoffice CVE-2015-1774 so that apache-openoffice-4.1.1_9 is not incorrectly flagged as vulnerable. Approved by: mat (mentor, implicit)	2015-05-15 22:31:29 +00:00
Michael Moll	9f24aaefc3	security/vuxml: document vulnerability in rubygem-redcarpet <3.2.3 PR: 200195 Differential Revision: https://reviews.freebsd.org/D2548 Submitted by: Sevan Janiyan <venture37@geeklan.co.uk> Approved by: mat (mentor)	2015-05-15 12:02:57 +00:00
Rodrigo Osorio	e606d22386	security/vuxml: Add CVE-2015-3885 entry for graphics/ufraw PR: 200197	2015-05-15 07:12:19 +00:00
Matthew Seaman	22ab304714	Record two new phpMyAdmin security vulnerabilities	2015-05-13 18:51:22 +00:00

1 2 3 4 5 ...

3671 commits