aboutsummaryrefslogtreecommitdiff
path: root/security/vuxml
Commit message (Collapse)AuthorAgeFilesLines
* - Concisify a Secunia reportAndrew Pantyukhin2006-09-261-8/+1
| | | | | | | | | - Use <gt>0 for an unpatched bug Suggested by: simon Notes: svn path=/head/; revision=173921
* - Document (another) Denial of Service Vulnerability in freecivAndrew Pantyukhin2006-09-261-0/+41
| | | | Notes: svn path=/head/; revision=173860
* - Document Packet Parsing Denial of Service Vulnerability in freecivAndrew Pantyukhin2006-09-261-0/+36
| | | | Notes: svn path=/head/; revision=173859
* - Document multiple vulnerabilities in plansAndrew Pantyukhin2006-09-261-0/+49
| | | | Notes: svn path=/head/; revision=173856
* - Update the unace advisoryAndrew Pantyukhin2006-09-261-4/+24
| | | | Notes: svn path=/head/; revision=173854
* - Document multiple XSS security bugs in eyeOSAndrew Pantyukhin2006-09-251-0/+28
| | | | Notes: svn path=/head/; revision=173819
* - Document restructuredText "csv_table" Information Disclosure in zopeAndrew Pantyukhin2006-09-221-0/+33
| | | | Notes: svn path=/head/; revision=173607
* - Document stack-based buffer overflow in libmmsAndrew Pantyukhin2006-09-221-0/+36
| | | | Notes: svn path=/head/; revision=173602
* - Document Opera SSL RSA Signature ForgeryAndrew Pantyukhin2006-09-221-0/+45
| | | | Notes: svn path=/head/; revision=173572
* Bump modified data which was missed in last commit.Simon L. B. Nielsen2006-09-221-0/+1
| | | | Notes: svn path=/head/; revision=173566
* - Mark latest linux-{firefox,seamonkey}-devel safeAndrew Pantyukhin2006-09-211-1/+7
| | | | Notes: svn path=/head/; revision=173548
* Document mozilla -- multiple vulnerabilities.Simon L. B. Nielsen2006-09-151-0/+80
| | | | Notes: svn path=/head/; revision=173104
* In the PHP entry, replace mod-php with mod_php [1].Remko Lodder2006-09-141-8/+9
| | | | | | | | | | Rewrite the win32-codecs entry to even better explain the vulnerability [2]. Noticed by: Dan Langille (with FreshPorts.org) [1] Discussed with: simon [2] Notes: svn path=/head/; revision=173049
* Try to explain a bit better that users who have the Quicktime pluginRemko Lodder2006-09-141-0/+2
| | | | | | | | | | | | as a browser plugin can be directly affected by the remote code execution. Also mention that I changed the entry date in the previous entry (PHP) which I had forgotten to do yesterday and did not mention in the previous commit. Notes: svn path=/head/; revision=173031
* Document win32-codecs -- multiple vulnerabilitiesRemko Lodder2006-09-141-1/+37
| | | | Notes: svn path=/head/; revision=173023
* Attempt two:Remko Lodder2006-09-131-0/+63
| | | | | | | Document php -- multiple vulnerabilities Notes: svn path=/head/; revision=172984
* OK, I do not know WHAT went wrong but it went wrong, revert to the oldRemko Lodder2006-09-131-802/+739
| | | | | | | situation and i will re-adopt the PHP entry. Notes: svn path=/head/; revision=172983
* Document php -- multiple vulnerabilitiesRemko Lodder2006-09-131-739/+802
| | | | Notes: svn path=/head/; revision=172982
* Cancel latest gnutls entry (GNUTLS-SA-2006-3) - it is a false alarm:Roman Bogorodskiy2006-09-131-37/+1
| | | | | | | http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001208.html Notes: svn path=/head/; revision=172966
* Upgrade drupal-pubcookie to the latest version fixing a security holeBrooks Davis2006-09-131-0/+29
| | | | | | | | | | allowing anyone to bypass the authenication system and become an arbitrary drupal user. Security: vid:c0fd7890-4346-11db-89cc-000ae42e9b93 Notes: svn path=/head/; revision=172961
* Style neats for the latest gnutls entry.Roman Bogorodskiy2006-09-131-8/+10
| | | | | | | Reviewed by: remko Notes: svn path=/head/; revision=172945
* correct the tomcat entry (change the ,5 to _5 since we talk about PORTREVISIONRemko Lodder2006-09-121-3/+7
| | | | | | | | | | | | | | | | instead of PORTEPOCH) [1] correct the jdk -- jar directory traversal vulnerability entry, the FreeBSD Foundation uses different package names [2], [3]. For both entries the modification date was bumped. Reported by: Gabor Kovesdan (on #bsdports) [1] David Robillard <david dot robillard at gmail dot com> [2] Tim Zingelman <zingelman at fnal dot gov> Notes: svn path=/head/; revision=172890
* Document linux-flashplugin7 -- arbitrary code execution vulnerabilities.Simon L. B. Nielsen2006-09-121-0/+38
| | | | Notes: svn path=/head/; revision=172886
* Mark jakarta-tomcat5 as fixed since 5.0.30,5 regarding minor XSS issue.Sam Lawrance2006-09-111-1/+3
| | | | Notes: svn path=/head/; revision=172778
* Add an info about GNUTLS-SA-2006-3.Roman Bogorodskiy2006-09-101-0/+38
| | | | Notes: svn path=/head/; revision=172717
* - mailman -- Multiple VulnerabilitiesMarcus Alves Grando2006-09-041-0/+44
| | | | Notes: svn path=/head/; revision=172187
* Bump modification date for last jabber entry changeRenato Botelho2006-09-031-1/+1
| | | | | | | Noted by: remko Notes: svn path=/head/; revision=172050
* Fix jabber entryRenato Botelho2006-09-031-1/+1
| | | | Notes: svn path=/head/; revision=172044
* Document hlstats -- multiple cross site scripting vulnerabilities.Remko Lodder2006-09-021-0/+26
| | | | Notes: svn path=/head/; revision=171910
* Document gtetrinet -- remote code executionRemko Lodder2006-09-021-0/+29
| | | | Notes: svn path=/head/; revision=171905
* Bump modified date in the entry changed by garga.Remko Lodder2006-09-021-1/+1
| | | | | | | Forgotten by: garga Notes: svn path=/head/; revision=171902
* net-im/jabber -- Mark the correct versions with fd_set vulnerability, authorRenato Botelho2006-09-021-1/+2
| | | | | | | | fixed the problem on trunk and 2 new releases (1.4.3.1 and 1.4.4.1) is comming soon Notes: svn path=/head/; revision=171892
* Update the latest FreeBSD-SA entry, ppp got replaced by sppp.Remko Lodder2006-08-301-5/+6
| | | | | | | | Also implement a suggestion from Simon, mark all versions before the latest version vulnerable. Notes: svn path=/head/; revision=171677
* Document joomla -- multiple vulnerabilitiesRemko Lodder2006-08-301-0/+30
| | | | | | | | | | | Note that I only documented the high level threats, there are several others which can be found at the link provided [1] Reference: http://www.joomla.org/content/view/1841/78/ [1] Notes: svn path=/head/; revision=171664
* Document FreeBSD-SA-06:18.pppRemko Lodder2006-08-231-0/+41
| | | | Notes: svn path=/head/; revision=171294
* Minor whitespace cleanup (we need a blank line every after </entry>Remko Lodder2006-08-201-0/+1
| | | | | | | so that we can easily see the different entries). Notes: svn path=/head/; revision=171022
* - Add imp to the previous entry.Shaun Amott2006-08-181-0/+6
| | | | | | | - Add some SecurityFocus BIDs too. Notes: svn path=/head/; revision=170920
* Document horde -- Phishing and Cross-Site Scripting Vulnerabilities.Shaun Amott2006-08-171-0/+40
| | | | Notes: svn path=/head/; revision=170914
* Convert 8 spaces to tab as per the FDP for the latestRemko Lodder2006-08-151-15/+15
| | | | | | | entry. Notes: svn path=/head/; revision=170746
* Add entry for globus tmpfile creation bugs.Brooks Davis2006-08-151-0/+42
| | | | Notes: svn path=/head/; revision=170744
* The lang/f2c port has been updated, update affected versions.Christian Brueffer2006-08-151-2/+2
| | | | | | | Reviewed by: simon Notes: svn path=/head/; revision=170743
* Document x11vnc -- authentication bypass vulnerability.Remko Lodder2006-08-131-0/+28
| | | | | | | The 1.1111th commit, yay. Notes: svn path=/head/; revision=170490
* Document alsaplayer -- multiple vulnerabilities.Remko Lodder2006-08-131-0/+50
| | | | Notes: svn path=/head/; revision=170486
* Document postgresql -- encoding based SQL injection.Remko Lodder2006-08-131-0/+50
| | | | | | | Reported by: Radim Kolar <hsn at netmag dot cz> Notes: svn path=/head/; revision=170479
* Bump modified date in the older entry I just corrected.Remko Lodder2006-08-131-0/+1
| | | | | | | Spotted by: simon (again) Notes: svn path=/head/; revision=170471
* Document postgresql -- multiple vulnerabilities.Remko Lodder2006-08-131-1/+43
| | | | | | | | | | These are all older vulnerabilities which had not yet been documented by the Security Team. Also fix a minor mistake in an older PostgreSQL entry. Notes: svn path=/head/; revision=170467
* Fix the discovery date in the latest MySQL entry.Remko Lodder2006-08-131-1/+1
| | | | | | | Spotted by: simon Notes: svn path=/head/; revision=170464
* Document mysql -- format string vulnerability.Remko Lodder2006-08-131-0/+30
| | | | Notes: svn path=/head/; revision=170463
* OK after some more discussions with Simon it appeared that the ,2Remko Lodder2006-08-121-1/+4
| | | | | | | | | | | | | | | | | | marked all future releases of squirrelmail as vulnerable. The negative side-effect of PORTEPOCH. Split the previous entry into two seperated entries again, restoring the old entry for squirrelmail, and having the 'new' entry for ja-squirrelmail. This would grab any future versions of ja-squirrelmail if it were to be readded, and does not conflict with future versions of squirrelmail. For more information about the portepoch discussion etc: http://lists.freebsd.org/pipermail/freebsd-vuxml/2006-July/000185.html Notes: svn path=/head/; revision=170431
* Simon provided me with the necessary clue to mark the appropriate portsRemko Lodder2006-08-121-4/+1
| | | | | | | as vulnerable. I was soo close.. Notes: svn path=/head/; revision=170430
generated by cgit v1.2.3 (git 2.25.1) at 2024-10-16 08:49:19 +0000