diff options
| author | Mark Linimon <linimon@FreeBSD.org> | 2007-12-05 07:26:59 +0000 |
|---|---|---|
| committer | Mark Linimon <linimon@FreeBSD.org> | 2007-12-05 07:26:59 +0000 |
| commit | c1f6c82617bc6f1d0010b7a93ab2c98a24f6a148 (patch) | |
| tree | 6eb93131316baaf6aacedc18ff7d380abd4426ed | |
| parent | Move the config file location into /usr/local/etc/. (diff) | |
http://nvd.nist.gov/nvd.cfm?cvename=CVE-1999-1165: gnu-finger is old,
creaky, and not for use in production environments.
Submitted by: tabthorpe
Approved by: portmgr (self)
Notes
Notes:
svn path=/head/; revision=202910
| -rw-r--r-- | security/vuxml/vuln.xml | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 5f44ef3a3822..29daa8cc836b 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,34 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="610bc692-a2ad-11dc-900c-000bcdc1757a"> + <topic>GNU finger vulnerability</topic> + <affects> + <package> + <name>gnu-finger</name> + <range><le>1.37_1</le></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>GNU security announcement:</p> + <blockquote cite="http://www.gnu.org/software/finger/"> + <p>GNU Finger unfortunately has not been updated in + many years, and has known security vulnerabilities. + Please do not use it in production environments.</p> + </blockquote> + </body> + </description> + <references> + <url>http://www.gnu.org/software/finger/</url> + <url>http://nvd.nist.gov/nvd.cfm?cvename=CVE-1999-1165</url> + </references> + <dates> + <discovery>1999-07-21</discovery> + <entry>2007-12-05</entry> + </dates> + </vuln> + <vuln vid="6eb580d7-a29c-11dc-8919-001c2514716c"> <topic>Squid -- Denial of Service Vulnerability</topic> <affects> |