Page MenuHomeFreeBSD
Differential D3428 Diff 12754 security/vuxml/vuln.xml

Changeset View

Standalone View

View Options

security/vuxml/vuln.xml

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 4,269 Lines▼ Show 20 Lines
<range><lt>1.0.2_5</lt></range> <range><lt>1.0.2_5</lt></range>
</package> </package>
<package> <package>
<name>mingw32-openssl</name> <name>mingw32-openssl</name>
<range><ge>1.0.1</ge><lt>1.0.2e</lt></range> <range><ge>1.0.1</ge><lt>1.0.2e</lt></range>
</package> </package>
<package> <package>
<name>linux-c6-openssl</name> <name>linux-c6-openssl</name>
<range><ge>0</ge></range> <range><lt>1.0.1e_7</lt></range>
</package> </package>
</affects> </affects>
<description> <description>
<body xmlns="http://www.w3.org/1999/xhtml"> <body xmlns="http://www.w3.org/1999/xhtml">
<p>OpenSSL project reports:</p> <p>OpenSSL project reports:</p>
<blockquote cite="https://www.openssl.org/news/secadv/20151203.txt"> <blockquote cite="https://www.openssl.org/news/secadv/20151203.txt">
<ol> <ol>
<li>BN_mod_exp may produce incorrect results on x86_64 <li>BN_mod_exp may produce incorrect results on x86_64
Show All 15 Lines <references>
<cvename>CVE-2015-3194</cvename> <cvename>CVE-2015-3194</cvename>
<cvename>CVE-2015-3195</cvename> <cvename>CVE-2015-3195</cvename>
<cvename>CVE-2015-3196</cvename> <cvename>CVE-2015-3196</cvename>
<url>https://www.openssl.org/news/secadv/20151203.txt</url> <url>https://www.openssl.org/news/secadv/20151203.txt</url>
</references> </references>
<dates> <dates>
<discovery>2015-12-03</discovery> <discovery>2015-12-03</discovery>
<entry>2015-12-05</entry> <entry>2015-12-05</entry>
<modified>2015-12-22</modified>
</dates> </dates>
</vuln> </vuln>
<vuln vid="8a90dc87-89f9-11e5-a408-00248c0c745d"> <vuln vid="8a90dc87-89f9-11e5-a408-00248c0c745d">
<topic>PHPmailer -- SMTP injection vulnerability</topic> <topic>PHPmailer -- SMTP injection vulnerability</topic>
<affects> <affects>
<package> <package>
<name>phpmailer</name> <name>phpmailer</name>
▲ Show 20 LinesShow All 9,477 Lines▼ Show 20 Lines <vuln vid="9c7177ff-1fe1-11e5-9a01-bcaec565249c">
<topic>libxml2 -- Enforce the reader to run in constant memory</topic> <topic>libxml2 -- Enforce the reader to run in constant memory</topic>
<affects> <affects>
<package> <package>
<name>libxml2</name> <name>libxml2</name>
<range><lt>2.9.2_3</lt></range> <range><lt>2.9.2_3</lt></range>
</package> </package>
<package> <package>
<name>linux-c6-libxml2</name> <name>linux-c6-libxml2</name>
<range><ge>*</ge></range> <range><lt>2.7.6_5</lt></range>
</package> </package>
<package> <package>
<name>linux-f10-libxml2</name> <name>linux-f10-libxml2</name>
<range><ge>*</ge></range> <range><ge>*</ge></range>
</package> </package>
</affects> </affects>
<description> <description>
<body xmlns="http://www.w3.org/1999/xhtml"> <body xmlns="http://www.w3.org/1999/xhtml">
Show All 9 Lines </blockquote>
</description> </description>
<references> <references>
<cvename>CVE-2015-1819</cvename> <cvename>CVE-2015-1819</cvename>
<url>https://git.gnome.org/browse/libxml2/commit/?id=213f1fe0d76d30eaed6e5853057defc43e6df2c9</url> <url>https://git.gnome.org/browse/libxml2/commit/?id=213f1fe0d76d30eaed6e5853057defc43e6df2c9</url>
</references> </references>
<dates> <dates>
<discovery>2015-04-14</discovery> <discovery>2015-04-14</discovery>
<entry>2015-07-01</entry> <entry>2015-07-01</entry>
<modified>2015-07-15</modified> <modified>2015-12-22</modified>
</dates> </dates>
</vuln> </vuln>
<vuln vid="2a8b7d21-1ecc-11e5-a4a5-002590263bf5"> <vuln vid="2a8b7d21-1ecc-11e5-a4a5-002590263bf5">
<topic>wesnoth -- disclosure of .pbl files with lowercase, uppercase, and mixed-case extension</topic> <topic>wesnoth -- disclosure of .pbl files with lowercase, uppercase, and mixed-case extension</topic>
<affects> <affects>
<package> <package>
<name>wesnoth</name> <name>wesnoth</name>
▲ Show 20 LinesShow All 5,075 Lines▼ Show 20 Lines
<range><lt>1.5.1</lt></range> <range><lt>1.5.1</lt></range>
</package> </package>
<package> <package>
<name>linux-c6-xorg-libs</name> <name>linux-c6-xorg-libs</name>
<range><ge>*</ge></range> <range><ge>*</ge></range>
</package> </package>
<package> <package>
<name>linux-f10-xorg-libs</name> <name>linux-f10-xorg-libs</name>
<range><ge>*</ge></range> <range><lt>7.4_4</lt></range>
</package> </package>
</affects> </affects>
<description> <description>
<body xmlns="http://www.w3.org/1999/xhtml"> <body xmlns="http://www.w3.org/1999/xhtml">
<p>Alan Coopersmith reports:</p> <p>Alan Coopersmith reports:</p>
<blockquote cite="http://lists.x.org/archives/xorg-announce/2015-March/002550.html"> <blockquote cite="http://lists.x.org/archives/xorg-announce/2015-March/002550.html">
<p>Ilja van Sprundel, a security researcher with IOActive, has <p>Ilja van Sprundel, a security researcher with IOActive, has
discovered an issue in the parsing of BDF font files by libXfont. discovered an issue in the parsing of BDF font files by libXfont.
Show All 14 Lines <references>
<url>http://lists.x.org/archives/xorg-announce/2015-March/002550.html</url> <url>http://lists.x.org/archives/xorg-announce/2015-March/002550.html</url>
<cvename>CVE-2015-1802</cvename> <cvename>CVE-2015-1802</cvename>
<cvename>CVE-2015-1803</cvename> <cvename>CVE-2015-1803</cvename>
<cvename>CVE-2015-1804</cvename> <cvename>CVE-2015-1804</cvename>
</references> </references>
<dates> <dates>
<discovery>2015-03-17</discovery> <discovery>2015-03-17</discovery>
<entry>2015-03-18</entry> <entry>2015-03-18</entry>
<modified>2015-07-15</modified> <modified>2015-12-22</modified>
</dates> </dates>
</vuln> </vuln>
<vuln vid="8b3ecff5-c9b2-11e4-b71f-00bd5af88c00"> <vuln vid="8b3ecff5-c9b2-11e4-b71f-00bd5af88c00">
<topic>Adobe Flash Player -- critical vulnerabilities</topic> <topic>Adobe Flash Player -- critical vulnerabilities</topic>
<affects> <affects>
<package> <package>
<name>linux-c6-flashplugin</name> <name>linux-c6-flashplugin</name>
▲ Show 20 LinesShow All 32,759 LinesShow Last 20 Lines