kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
123006 commits 42 branches 80 tags 2.7 GiB
Commit graph

622 commits

Author SHA1 Message Date
Simon L. B. Nielsen
3ea2a15c21 Document clamav -- zip handling DoS vulnerability. 
Approved by:	portmgr (blanket, VuXML)
 2005-03-26 20:49:39 +00:00
Jacques Vidrine
8fdf391a72 Document Wine information disclosure. 
Based on an entry that was
Submitted by:	Devon H. O'Dell <dodell@offmyserver.com>
Approved by:	portmgr (blanket, VuXML)
 2005-03-24 14:15:05 +00:00
Jacques Vidrine
ad6be0e3c8 Document the most serious of the recently disclosed 
Mozilla/Firefox/Thunderbird vulnerabilities.

Based on entries that were
Submitted by:	Devon H. O'Dell <dodell@offmyserver.com>
Approved by:	portmgr (blanket, VuXML)
 2005-03-24 14:08:28 +00:00
Jacques Vidrine
540824d2e8 Document Sylpheed buffer overflow. 
Reminded by:	netchild
Approved by:	portmgr (blanket, VuXML)
 2005-03-23 18:29:15 +00:00
Simon L. B. Nielsen
5b82e7ed54 Document xv -- filename handling format string vulnerability. 
Approved by:	portmgr (implicit, VuXML)
 2005-03-21 21:19:21 +00:00
Simon L. B. Nielsen
e551c99e0a Document kdelibs -- local DCOP denial of service vulnerability. 
Approved by:	portmgr (implicit, VuXML)
 2005-03-21 20:27:19 +00:00
Simon L. B. Nielsen
4b8ba5ca05 Mark grip port as fixed for recent vulnerability. 
Requested by:	ahze
 2005-03-18 19:16:10 +00:00
Simon L. B. Nielsen
9c13358c08 Document phpmyadmin -- increased privilege vulnerability. 2005-03-15 21:13:28 +00:00
Alexey Dokuchaev
15f66ab5b1 Note that recent Quake2-LNX is fixed. 2005-03-15 19:40:23 +00:00
Alex Dupre
2e4290eeb0 Recent mysql snapshot import fixed several vulnerabilities. 2005-03-15 14:27:01 +00:00
Simon L. B. Nielsen
566e20849d Document ethereal -- multiple protocol dissectors vulnerabilities. 2005-03-14 21:55:46 +00:00
Simon L. B. Nielsen
29d805dd40 Document "grip -- CDDB response multiple matches buffer overflow 
vulnerability".
 2005-03-14 20:19:29 +00:00
Simon L. B. Nielsen
f1996dbbb7 Update references for latest MySQL entry: 
- Use bid tag for Bugtraq ID reference.
- Add CVE names.
 2005-03-14 19:49:15 +00:00
Alex Dupre
09faa83406 Document multiple mysql remote vulnerabilities. 2005-03-14 15:16:35 +00:00
Thierry Thomas
c3c8132fc3 Add an entry about rxvt-unicode bufer overflow. 2005-03-13 10:31:19 +00:00
Simon L. B. Nielsen
2f4093a8ae Document two phpMyAdmin issues. 2005-03-08 22:52:18 +00:00
Simon L. B. Nielsen
098596aedb Document libexif -- buffer overflow vulnerability. 2005-03-08 21:26:23 +00:00
Jacques Vidrine
3b0cb09a6a Fix invalid date. 
Noticed by:	Kang Liu <liukang@bjut.edu.cn>
 2005-03-07 15:45:13 +00:00
Jacques Vidrine
6cec90d8a0 Add <modified> date for recent commit to phpbb vulnerability. 
Forgotten by:	delphij

While here, add msgids for recent phpbb addition.
 2005-03-06 17:06:32 +00:00
Xin LI
5092eea0da Document a low risk HTML injection (configuration bypass) 
vulnerability [1] of phpBB.

(maintainer contacted and is preparing a fix)

[1] http://marc.theaimsgroup.com/?l=bugtraq&m=110987231502274
 2005-03-05 15:53:41 +00:00
Xin LI
852b94cbf0 Add bugtraq bug ID for phpbb vulnerability. 
Submitted by:	Kang LIU <liukang bjut edu cn>
 2005-03-05 15:42:50 +00:00
Jacques Vidrine
3fbc94976e Document two phpnuke vulnerabilities, and a Linux RealPlayer 
vulnerability.

Based on entries that were
Submitted by:	Devon H. O'Dell <dodell@sitetronics.com>
 2005-03-04 18:14:28 +00:00
Simon L. B. Nielsen
27b0023153 - Document ImageMagick -- format string vulnerability. 
- Fix typo on older tiff entry.
 2005-03-03 22:20:45 +00:00
MANTANI Nobutaka
8a81c46428 Document the privilege escalation vulnerability in uim. 2005-03-02 13:17:24 +00:00
Jacques Vidrine
1f1453269f Fix typo in linux-tiff version number for 
http://vuxml.freebsd.org/8f86d8b5-6025-11d9-a9e7-0001020eed82.html

Reported by:    Ian Moore <no-spam@swiftdsl.com.au>
 2005-03-01 13:39:29 +00:00
Jacques Vidrine
8ec244ef06 Document lighttpd information disclosure bug. 
This entry is based on one that was
Submitted by:	Devon H. O'Dell <dodell@offmyserver.com>
 2005-03-01 13:23:52 +00:00
Jacques Vidrine
b511a32842 Fix typo in linux-tiff version number for 
http://vuxml..freebsd.org/fc7e6a42-6012-11d9-a9e7-0001020eed82.html

Reported by:	Ian Moore <no-spam@swiftdsl.com.au>
 2005-02-28 13:41:19 +00:00
Xin LI
ab9ba5a88f Document latest phpBB critical security vulnerabilities. 
Submitted by:	Kang LIU <liukang bjut edu cn>
 2005-02-28 10:48:53 +00:00
Jacques Vidrine
24627424e6 Correct the linux-tiff version number for several entries. 
Reported by:	netchild
 2005-02-28 03:42:01 +00:00
Simon L. B. Nielsen
3ab3a3220e Document curl -- authentication buffer overflow vulnerability. 2005-02-27 21:24:03 +00:00
Simon L. B. Nielsen
3ba6fcbd61 - Document cyrus-imapd -- multiple buffer overflow vulnerabilities. [1] 
- Use bid tag for a reference in sup entry.

Advice from:	ume [1]
 2005-02-27 20:34:17 +00:00
Hiroki Sato
fbb0c798ac Document format string vulnerabilities in net/sup. 2005-02-27 13:21:10 +00:00
Simon L. B. Nielsen
ce31baa966 - Just use mozilla in title for last entry for consistency. 
- Document mozilla -- insecure temporary directory vulnerability.
 2005-02-26 21:12:12 +00:00
Simon L. B. Nielsen
c71abfe2a6 Update list of affected mozilla/firefox ports by the web browsers -- 
window injection vulnerabilities entry.
 2005-02-26 20:36:40 +00:00
Simon L. B. Nielsen
77260025a2 Document mozilla & firefox -- arbitrary code execution vulnerability. 
Submitted by:	Devon H. O'Dell <dodell@sitetronics.com> (original version)
 2005-02-26 14:25:31 +00:00
Jacques Vidrine
5764c517d0 Improve the description of the latest phpBB information disclosure 
bugs.

Submitted by:	delphij (in part)
 2005-02-25 04:55:52 +00:00
Hiroki Sato
76c4e7dbc7 Document a format string vulnerability in mkbold-mkitalic. 
Reviewed by:	simon
 2005-02-24 15:43:23 +00:00
Jacques Vidrine
353e7eb649 Add CVE names for wget. 2005-02-23 16:20:57 +00:00
Jacques Vidrine
f8f16c318e De-confuse latest AWStats entry: rewrite description, and add relevant 
references.  There were so many bugs, it was hard to keep them straight
(^_^).
 2005-02-23 15:11:02 +00:00
Jacques Vidrine
7e953178e5 Format the <topic> of the most recent entry so that it is more 
consistent with other entries.
 2005-02-23 14:37:04 +00:00
Xin LI
10d48b910d Document latest phpbb vulnerabilities. 
Discussed with:	phpbb maintainer
 2005-02-23 13:13:44 +00:00
Simon L. B. Nielsen
53153f2e70 Add more references to recent putty vulnerability. 2005-02-23 05:15:32 +00:00
Jacques Vidrine
b3ca842939 The mod_dosevasive port was upgraded. 2005-02-22 21:58:36 +00:00
Jacques Vidrine
a9fab6c983 Nit: 
- In most recent `unace' entry, replace HTML entity with the Unicode
  character.  We do not use HTML entities so that a VuXML document may
  be processed without using the DTD.  (We also avoid character entity
  references for more natural grep'ing, sed'ing, and editor searching.)

Corrections:
- An invalid UUID was assigned to a FreeRADIUS vulnerability, and went
  undetected since last October.  (>_<)   Correct it.
- A bnc vulnerability was duplicated.  Cancel the older, less informative
  entry and update the newer entry.
 2005-02-22 19:27:32 +00:00
Christian Weisgerber
33ffd45c6e Document unace-1.2b vulnerabilities: buffer overflows, directory traversal. 2005-02-22 15:37:51 +00:00
Simon L. B. Nielsen
5283ed8c39 For the the recent kdelibs entry; note that dcopidlng is only used at 
build time.

Reported by:	lofi
 2005-02-20 20:51:37 +00:00
Simon L. B. Nielsen
c9f2f9b090 Document heap corruption vulnerabilities in putty. 2005-02-20 18:53:25 +00:00
Simon L. B. Nielsen
c965b44edc Update affected versions of latest postgresql entry now that the ports 
have been fixed.
 2005-02-19 12:49:38 +00:00
Simon L. B. Nielsen
28b80e83e3 Document insecure temporary file creation in kdelibs. 2005-02-18 22:37:34 +00:00
Simon L. B. Nielsen
edfb3d1fa7 Document format string vulnerability in bidwatcher. 2005-02-18 21:55:08 +00:00