summaryrefslogtreecommitdiff
path: root/security/vuxml (follow)
Commit message (Collapse)AuthorAgeFilesLines
* - Mark latest firefox and seamonkey snapshots as safeAndrew Pantyukhin2007-04-191-3/+9
| | | | Notes: svn path=/head/; revision=190351
* - Add entry for claws-mail - APOP vulnerabilityMartin Wilke2007-04-191-0/+29
| | | | Notes: svn path=/head/; revision=190338
* lighttpd -- DOS when access files with mtime 0Marcus Alves Grando2007-04-141-0/+63
| | | | | | | lighttpd -- Remote DOS in CRLF parsing Notes: svn path=/head/; revision=189954
* - Add freeradius-mysql to the list of affected packages of the recentStanislav Sedov2007-04-131-0/+1
| | | | | | | | | freeradius entry. Submitted by: David Wood <david@wood2.org.uk> Notes: svn path=/head/; revision=189905
* Mark Google Earth >= 4.0.2414 as safe.Florent Thoumie2007-04-131-1/+2
| | | | Notes: svn path=/head/; revision=189899
* - Document recent remote dos vulnerability in freeradius.Stanislav Sedov2007-04-131-0/+33
| | | | Notes: svn path=/head/; revision=189888
* Add an extra reference to the old "gnupg -- OpenPGP symmetricSimon L. B. Nielsen2007-04-101-1/+2
| | | | | | | | | | encryption vulnerability" entry which explains the problem in a more easy to read way. Submitted by: tobez (sort of) Notes: svn path=/head/; revision=189720
* Document fetchmail's "insecure APOP authentication" issue (fixed in 6.3.8).Simon Barner2007-04-091-0/+35
| | | | Notes: svn path=/head/; revision=189597
* Stylify the latest zope entry:Remko Lodder2007-04-081-20/+21
| | | | | | | | | | | | | o Use consistent title description o Use tabs when 8 spaces are hit o Sort the references list (the alphabet goes from a to z) o Bump modification date (note: please check the entry date so that it matches the correct data of insertion). Also stylify the latest mcweject entry. Notes: svn path=/head/; revision=189510
* Add entry for exploitable buffer overflow in mcweject.Stefan Walter2007-04-081-0/+30
| | | | | | | | PR: 111365 Submitted by: Jeff Forsythe<tornandfilthy2006@yahoo.com> Notes: svn path=/head/; revision=189507
* Add entry for webcalendar "noSet" variable overwrite vulnerability.Stefan Walter2007-04-081-0/+35
| | | | | | | | PR: 110585 Submitted by: Greg Larkin <glarkin@sourcehosting.net> Notes: svn path=/head/; revision=189488
* Add entry for Zope2 cross-site scripting vulnerability.Stefan Walter2007-04-081-0/+33
| | | | | | | Inspired by: Yasushi Hayashi<yasi@yasi.to> (in PR 111119) Notes: svn path=/head/; revision=189479
* Remove f951cf4a-a1fe-11db-98f9-0004aca3703d entry. It's duplicate toSergey Matveychuk2007-03-311-30/+0
| | | | | | | 41da2ba4-a24e-11db-bd24-000f3dcc6a5d. Notes: svn path=/head/; revision=188895
* - Fix versions and dates in latest squid entryAndrew Pantyukhin2007-03-221-4/+4
| | | | | | | Pointy hat to: miwi Notes: svn path=/head/; revision=187962
* Standarise the latest Squid entry.Remko Lodder2007-03-211-8/+8
| | | | Notes: svn path=/head/; revision=187915
* - Add entry for squid TRACE method handling denial of serviceMartin Wilke2007-03-211-0/+33
| | | | Notes: svn path=/head/; revision=187892
* Fix range for sql-ledger entry which I missed in my original review.Simon L. B. Nielsen2007-03-161-1/+1
| | | | Notes: svn path=/head/; revision=187525
* Document sql-ledger vulnerabilityLars Thegler2007-03-161-0/+41
| | | | | | | | PR: ports/110350 Submitted by: Antoine Beaupre <anarcat@koumbit.org> Notes: svn path=/head/; revision=187488
* Document cacti -- remote injection exploitRemko Lodder2007-03-161-0/+30
| | | | | | | | PR: ports/107838 Submitted by: Dan Langille <dan at langille dot org> Notes: svn path=/head/; revision=187472
* Correct two tdiary entries:Remko Lodder2007-03-161-5/+16
| | | | | | | | | | | | o correct the affected version numbers o package name of www/tdiary-devel is "tdiary-devel", not "tdiary" o add ja-tdiary and ja-tdiary-devel to affected packages PR: ports/109086 Submitted by: KOMATSU Shinichiro <koma2 at lovepeers dot org> Notes: svn path=/head/; revision=187471
* Document two long forgotten Samba vulnerabilities.Remko Lodder2007-03-161-0/+73
| | | | | | | | PR: ports/109049 Submitted by: KOMATSU Shinichiro <koma2 at lovepeers dot org> Notes: svn path=/head/; revision=187470
* ktorrent -- multiple vulnerabilities:Markus Brueffer2007-03-141-1/+3
| | | | | | | | - Add CVE references - Bump modification date Notes: svn path=/head/; revision=187411
* Spell out multiple vulnerabilities instead of specifying the exactRemko Lodder2007-03-121-1/+3
| | | | | | | | amount (we always do that). Also bump the modification date for this entry and the PHP entry that had been touched Notes: svn path=/head/; revision=187188
* Fix typo in PHP entryMarkus Brueffer2007-03-121-1/+1
| | | | Notes: svn path=/head/; revision=187179
* Document ktorrent -- two vulnerabilitiesMarkus Brueffer2007-03-121-0/+33
| | | | Notes: svn path=/head/; revision=187178
* Add ja-trac-*.Jun Kuriyama2007-03-101-0/+4
| | | | Notes: svn path=/head/; revision=187052
* - fix typoMartin Wilke2007-03-091-1/+1
| | | | Notes: svn path=/head/; revision=187025
* - Add entry for mplayer -- DMO File Parsing Buffer Overflow VulnerabilityMartin Wilke2007-03-091-0/+35
| | | | | | | Reviewed by: simon (secteam) Notes: svn path=/head/; revision=187024
* - Add entry for Trac "download wiki page as text" Cross-Site Scripting ↵Martin Wilke2007-03-091-0/+31
| | | | | | | | | Vulnerability. Reviewed by: simon@ Notes: svn path=/head/; revision=187020
* Correct affected versions in "mod_jk -- long URL stack overflowSimon L. B. Nielsen2007-03-061-1/+2
| | | | | | | | | vulnerability" entry. Noticed by: Nick Barkas Notes: svn path=/head/; revision=186643
* Document mod_jk -- long URL stack overflow vulnerability.Simon L. B. Nielsen2007-03-051-0/+37
| | | | Notes: svn path=/head/; revision=186607
* For recent "mozilla -- multiple vulnerabilities" entry:Simon L. B. Nielsen2007-03-011-2/+5
| | | | | | | | | | | | - Mark Seamonkey 1.1.1 as safe. While mozilla.org does not clearly state this, it does seem to be the case. [1] - Add another critical vulnerability which wasn't on the web site when the vuxml entry was initially added. Reported by: Volodymyr Kostyrko [1] Notes: svn path=/head/; revision=186308
* Document bind -- Multiple Denial of Service vulnerabilitiesRemko Lodder2007-02-271-0/+50
| | | | | | | Now all Security Advisories are merged again in VuXML. Notes: svn path=/head/; revision=186154
* Document FreeBSD -- Jail rc.d script privilege escalationRemko Lodder2007-02-271-0/+60
| | | | Notes: svn path=/head/; revision=186152
* Document: gtar -- name mangling symlink vulnerabilityRemko Lodder2007-02-271-0/+39
| | | | Notes: svn path=/head/; revision=186151
* Document FreeBSD -- Kernel memory disclosure in firewire(4).Remko Lodder2007-02-271-0/+47
| | | | Notes: svn path=/head/; revision=186150
* Document libarchive -- Infinite loop in corrupt archives handling inRemko Lodder2007-02-261-5/+41
| | | | | | | | | | libarchive. This is also FreeBSD SA-06:24.libarchive, FreeBSD systems are not affected, only specific STABLE versions which are not released!! Notes: svn path=/head/; revision=186024
* Document FreeBSD SA 06:23 OpenSSL - Multiple problems in crypto (3).Remko Lodder2007-02-261-0/+63
| | | | Notes: svn path=/head/; revision=186022
* - Bump modified date for last update in mozilla entry.Simon L. B. Nielsen2007-02-251-1/+2
| | | | | | | - Bump file copyright year. Notes: svn path=/head/; revision=185930
* Extend the latest gecko vulnerabilities to mail/lightning.Michael Johnson2007-02-251-0/+4
| | | | Notes: svn path=/head/; revision=185928
* Fix whitespace which I forgot before committing the last update.Simon L. B. Nielsen2007-02-241-7/+7
| | | | Notes: svn path=/head/; revision=185820
* Document mozilla -- multiple vulnerabilities.Simon L. B. Nielsen2007-02-241-0/+82
| | | | | | | | | Note that Seamonkey 1.1 is marked vulnerable under the "better safe than sorry" principle, since it's not yet clear if Seamonkey 1.1 is vulnerable to this batch of vulnerabilities. Notes: svn path=/head/; revision=185818
* Document snort -- DCE/RPC preprocessor vulnerability.Simon L. B. Nielsen2007-02-211-0/+45
| | | | Notes: svn path=/head/; revision=185650
* Document rar -- password prompt buffer overflow vulnerability.Simon L. B. Nielsen2007-02-171-0/+46
| | | | | | | Reminded by: Nate Eldredge Notes: svn path=/head/; revision=185375
* Mark 5.2.1_2 as the first safe version for the recent "php -- multipleSimon L. B. Nielsen2007-02-171-1/+1
| | | | | | | | vulnerabilities" entry since there was a bug in one of the fixes in upstream 5.2.1 which port revision 5.2.1_2 fixed. Notes: svn path=/head/; revision=185367
* Document php -- multiple vulnerabilities.Simon L. B. Nielsen2007-02-171-0/+70
| | | | Notes: svn path=/head/; revision=185366
* joomla -- multiple remote vulnerabilitiesGabor Kovesdan2007-01-171-0/+41
| | | | | | | | Reviewed by: secteam (remko) Approved by: erwin (mentor, implicit) Notes: svn path=/head/; revision=182673
* Document two sircd vulnerabilities:Gabor Kovesdan2007-01-151-0/+62
| | | | | | | | | | | sircd -- remote reverse DNS buffer overflow sircd -- remote operator privilege escalation vulnerability Reviewed by: secteam (remko) Approved by: erwin (mentor) Notes: svn path=/head/; revision=182409
* - Document multple net/cacti vulnerabilities.Sergey Matveychuk2007-01-121-0/+29
| | | | Notes: svn path=/head/; revision=182209
* Add mplayer RealMedia RTSP streams buffer overflow entry.Ion-Mihai Tetcu2007-01-081-0/+40
| | | | | | | | | PR: ports/107217 Submitted by: Thomas E. Zander (multimedia/mplayer maintainer) Reviewed by: simon@ Notes: svn path=/head/; revision=181791
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-21 21:22:07 +0000