aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorSimon L. B. Nielsen <simon@FreeBSD.org>2007-12-19 21:06:24 +0000
committerSimon L. B. Nielsen <simon@FreeBSD.org>2007-12-19 21:06:24 +0000
commitf370aebb06a7746c50951612b8be71cddc3371ea (patch)
tree0d2b61d878784e007d98b17b966f469639bb89db
parent0a7ab713501075649775a3341842a929239a03bb (diff)
downloadports-f370aebb06a7746c50951612b8be71cddc3371ea.tar.gz
ports-f370aebb06a7746c50951612b8be71cddc3371ea.zip
Notes
-rw-r--r--security/vuxml/vuln.xml43
1 files changed, 43 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 6b1416b2c777..e55f24047120 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -34,6 +34,49 @@ Note: Please add new entries to the beginning of this file.
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="31b045e7-ae75-11dc-a5f9-001a4d49522b">
+ <topic>opera -- multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>opera</name>
+ <name>opera-devel</name>
+ <name>linux-opera</name>
+ <range><lt>9.25</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Opera Software ASA reports about multiple security
+ fixes:</p>
+ <blockquote cite="http://www.opera.com/docs/changelogs/freebsd/925/">
+ <ul>
+ <li>Fixed an issue where plug-ins could be used to allow
+ cross domain scripting, as reported by David
+ Bloom. Details will be disclosed at a later date.</li>
+ <li>Fixed an issue with TLS certificates that could be
+ used to execute arbitrary code, as reported by Alexander
+ Klink (Cynops GmbH). Details will be disclosed at a
+ later date.</li>
+ <li>Rich text editing can no longer be used to allow cross
+ domain scripting, as reported by David Bloom. See our
+ advisory.</li>
+ <li>Prevented bitmaps from revealing random data from
+ memory, as reported by Gynvael Coldwind. Details will be
+ disclosed at a later date.</li>
+ </ul>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>http://www.opera.com/docs/changelogs/freebsd/925/</url>
+ <url>http://www.opera.com/support/search/view/875/</url>
+ </references>
+ <dates>
+ <discovery>2007-12-19</discovery>
+ <entry>2007-12-19</entry>
+ </dates>
+ </vuln>
+
<vuln vid="31435fbc-ae73-11dc-a5f9-001a4d49522b">
<topic>peercast -- buffer overflow vulnerability</topic>
<affects>