Changeset View
Changeset View
Standalone View
Standalone View
security/vuxml/vuln.xml
- This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 Lines • Show All 4,269 Lines • ▼ Show 20 Lines | |||||
<range><lt>1.0.2_5</lt></range> | <range><lt>1.0.2_5</lt></range> | ||||
</package> | </package> | ||||
<package> | <package> | ||||
<name>mingw32-openssl</name> | <name>mingw32-openssl</name> | ||||
<range><ge>1.0.1</ge><lt>1.0.2e</lt></range> | <range><ge>1.0.1</ge><lt>1.0.2e</lt></range> | ||||
</package> | </package> | ||||
<package> | <package> | ||||
<name>linux-c6-openssl</name> | <name>linux-c6-openssl</name> | ||||
<range><ge>0</ge></range> | <range><lt>1.0.1e_7</lt></range> | ||||
</package> | </package> | ||||
</affects> | </affects> | ||||
<description> | <description> | ||||
<body xmlns="http://www.w3.org/1999/xhtml"> | <body xmlns="http://www.w3.org/1999/xhtml"> | ||||
<p>OpenSSL project reports:</p> | <p>OpenSSL project reports:</p> | ||||
<blockquote cite="https://www.openssl.org/news/secadv/20151203.txt"> | <blockquote cite="https://www.openssl.org/news/secadv/20151203.txt"> | ||||
<ol> | <ol> | ||||
<li>BN_mod_exp may produce incorrect results on x86_64 | <li>BN_mod_exp may produce incorrect results on x86_64 | ||||
Show All 15 Lines | <references> | ||||
<cvename>CVE-2015-3194</cvename> | <cvename>CVE-2015-3194</cvename> | ||||
<cvename>CVE-2015-3195</cvename> | <cvename>CVE-2015-3195</cvename> | ||||
<cvename>CVE-2015-3196</cvename> | <cvename>CVE-2015-3196</cvename> | ||||
<url>https://www.openssl.org/news/secadv/20151203.txt</url> | <url>https://www.openssl.org/news/secadv/20151203.txt</url> | ||||
</references> | </references> | ||||
<dates> | <dates> | ||||
<discovery>2015-12-03</discovery> | <discovery>2015-12-03</discovery> | ||||
<entry>2015-12-05</entry> | <entry>2015-12-05</entry> | ||||
<modified>2015-12-22</modified> | |||||
</dates> | </dates> | ||||
</vuln> | </vuln> | ||||
<vuln vid="8a90dc87-89f9-11e5-a408-00248c0c745d"> | <vuln vid="8a90dc87-89f9-11e5-a408-00248c0c745d"> | ||||
<topic>PHPmailer -- SMTP injection vulnerability</topic> | <topic>PHPmailer -- SMTP injection vulnerability</topic> | ||||
<affects> | <affects> | ||||
<package> | <package> | ||||
<name>phpmailer</name> | <name>phpmailer</name> | ||||
▲ Show 20 Lines • Show All 9,477 Lines • ▼ Show 20 Lines | <vuln vid="9c7177ff-1fe1-11e5-9a01-bcaec565249c"> | ||||
<topic>libxml2 -- Enforce the reader to run in constant memory</topic> | <topic>libxml2 -- Enforce the reader to run in constant memory</topic> | ||||
<affects> | <affects> | ||||
<package> | <package> | ||||
<name>libxml2</name> | <name>libxml2</name> | ||||
<range><lt>2.9.2_3</lt></range> | <range><lt>2.9.2_3</lt></range> | ||||
</package> | </package> | ||||
<package> | <package> | ||||
<name>linux-c6-libxml2</name> | <name>linux-c6-libxml2</name> | ||||
<range><ge>*</ge></range> | <range><lt>2.7.6_5</lt></range> | ||||
</package> | </package> | ||||
<package> | <package> | ||||
<name>linux-f10-libxml2</name> | <name>linux-f10-libxml2</name> | ||||
<range><ge>*</ge></range> | <range><ge>*</ge></range> | ||||
</package> | </package> | ||||
</affects> | </affects> | ||||
<description> | <description> | ||||
<body xmlns="http://www.w3.org/1999/xhtml"> | <body xmlns="http://www.w3.org/1999/xhtml"> | ||||
Show All 9 Lines | </blockquote> | ||||
</description> | </description> | ||||
<references> | <references> | ||||
<cvename>CVE-2015-1819</cvename> | <cvename>CVE-2015-1819</cvename> | ||||
<url>https://git.gnome.org/browse/libxml2/commit/?id=213f1fe0d76d30eaed6e5853057defc43e6df2c9</url> | <url>https://git.gnome.org/browse/libxml2/commit/?id=213f1fe0d76d30eaed6e5853057defc43e6df2c9</url> | ||||
</references> | </references> | ||||
<dates> | <dates> | ||||
<discovery>2015-04-14</discovery> | <discovery>2015-04-14</discovery> | ||||
<entry>2015-07-01</entry> | <entry>2015-07-01</entry> | ||||
<modified>2015-07-15</modified> | <modified>2015-12-22</modified> | ||||
</dates> | </dates> | ||||
</vuln> | </vuln> | ||||
<vuln vid="2a8b7d21-1ecc-11e5-a4a5-002590263bf5"> | <vuln vid="2a8b7d21-1ecc-11e5-a4a5-002590263bf5"> | ||||
<topic>wesnoth -- disclosure of .pbl files with lowercase, uppercase, and mixed-case extension</topic> | <topic>wesnoth -- disclosure of .pbl files with lowercase, uppercase, and mixed-case extension</topic> | ||||
<affects> | <affects> | ||||
<package> | <package> | ||||
<name>wesnoth</name> | <name>wesnoth</name> | ||||
▲ Show 20 Lines • Show All 5,075 Lines • ▼ Show 20 Lines | |||||
<range><lt>1.5.1</lt></range> | <range><lt>1.5.1</lt></range> | ||||
</package> | </package> | ||||
<package> | <package> | ||||
<name>linux-c6-xorg-libs</name> | <name>linux-c6-xorg-libs</name> | ||||
<range><ge>*</ge></range> | <range><ge>*</ge></range> | ||||
</package> | </package> | ||||
<package> | <package> | ||||
<name>linux-f10-xorg-libs</name> | <name>linux-f10-xorg-libs</name> | ||||
<range><ge>*</ge></range> | <range><lt>7.4_4</lt></range> | ||||
</package> | </package> | ||||
</affects> | </affects> | ||||
<description> | <description> | ||||
<body xmlns="http://www.w3.org/1999/xhtml"> | <body xmlns="http://www.w3.org/1999/xhtml"> | ||||
<p>Alan Coopersmith reports:</p> | <p>Alan Coopersmith reports:</p> | ||||
<blockquote cite="http://lists.x.org/archives/xorg-announce/2015-March/002550.html"> | <blockquote cite="http://lists.x.org/archives/xorg-announce/2015-March/002550.html"> | ||||
<p>Ilja van Sprundel, a security researcher with IOActive, has | <p>Ilja van Sprundel, a security researcher with IOActive, has | ||||
discovered an issue in the parsing of BDF font files by libXfont. | discovered an issue in the parsing of BDF font files by libXfont. | ||||
Show All 14 Lines | <references> | ||||
<url>http://lists.x.org/archives/xorg-announce/2015-March/002550.html</url> | <url>http://lists.x.org/archives/xorg-announce/2015-March/002550.html</url> | ||||
<cvename>CVE-2015-1802</cvename> | <cvename>CVE-2015-1802</cvename> | ||||
<cvename>CVE-2015-1803</cvename> | <cvename>CVE-2015-1803</cvename> | ||||
<cvename>CVE-2015-1804</cvename> | <cvename>CVE-2015-1804</cvename> | ||||
</references> | </references> | ||||
<dates> | <dates> | ||||
<discovery>2015-03-17</discovery> | <discovery>2015-03-17</discovery> | ||||
<entry>2015-03-18</entry> | <entry>2015-03-18</entry> | ||||
<modified>2015-07-15</modified> | <modified>2015-12-22</modified> | ||||
</dates> | </dates> | ||||
</vuln> | </vuln> | ||||
<vuln vid="8b3ecff5-c9b2-11e4-b71f-00bd5af88c00"> | <vuln vid="8b3ecff5-c9b2-11e4-b71f-00bd5af88c00"> | ||||
<topic>Adobe Flash Player -- critical vulnerabilities</topic> | <topic>Adobe Flash Player -- critical vulnerabilities</topic> | ||||
<affects> | <affects> | ||||
<package> | <package> | ||||
<name>linux-c6-flashplugin</name> | <name>linux-c6-flashplugin</name> | ||||
▲ Show 20 Lines • Show All 32,759 Lines • Show Last 20 Lines |