aboutsummaryrefslogtreecommitdiffstats
path: root/security/vuxml
Commit message (Expand)AuthorAgeFilesLines
* - Document restructuredText "csv_table" Information Disclosure in zopesat2006-09-221-0/+33
* - Document stack-based buffer overflow in libmmssat2006-09-221-0/+36
* - Document Opera SSL RSA Signature Forgerysat2006-09-221-0/+45
* Bump modified data which was missed in last commit.simon2006-09-221-0/+1
* - Mark latest linux-{firefox,seamonkey}-devel safesat2006-09-221-1/+7
* Document mozilla -- multiple vulnerabilities.simon2006-09-151-0/+80
* In the PHP entry, replace mod-php with mod_php [1].remko2006-09-141-8/+9
* Try to explain a bit better that users who have the Quicktime pluginremko2006-09-141-0/+2
* Document win32-codecs -- multiple vulnerabilitiesremko2006-09-141-1/+37
* Attempt two:remko2006-09-141-0/+63
* OK, I do not know WHAT went wrong but it went wrong, revert to the oldremko2006-09-141-802/+739
* Document php -- multiple vulnerabilitiesremko2006-09-141-739/+802
* Cancel latest gnutls entry (GNUTLS-SA-2006-3) - it is a false alarm:novel2006-09-141-37/+1
* Upgrade drupal-pubcookie to the latest version fixing a security holebrooks2006-09-141-0/+29
* Style neats for the latest gnutls entry.novel2006-09-131-8/+10
* correct the tomcat entry (change the ,5 to _5 since we talk about PORTREVISIONremko2006-09-131-3/+7
* Document linux-flashplugin7 -- arbitrary code execution vulnerabilities.simon2006-09-131-0/+38
* Mark jakarta-tomcat5 as fixed since 5.0.30,5 regarding minor XSS issue.lawrance2006-09-111-1/+3
* Add an info about GNUTLS-SA-2006-3.novel2006-09-111-0/+38
* - mailman -- Multiple Vulnerabilitiesmnag2006-09-041-0/+44
* Bump modification date for last jabber entry changegarga2006-09-031-1/+1
* Fix jabber entrygarga2006-09-031-1/+1
* Document hlstats -- multiple cross site scripting vulnerabilities.remko2006-09-031-0/+26
* Document gtetrinet -- remote code executionremko2006-09-031-0/+29
* Bump modified date in the entry changed by garga.remko2006-09-031-1/+1
* net-im/jabber -- Mark the correct versions with fd_set vulnerability, authorgarga2006-09-031-1/+2
* Update the latest FreeBSD-SA entry, ppp got replaced by sppp.remko2006-08-311-5/+6
* Document joomla -- multiple vulnerabilitiesremko2006-08-301-0/+30
* Document FreeBSD-SA-06:18.pppremko2006-08-241-0/+41
* Minor whitespace cleanup (we need a blank line every after </entry>remko2006-08-201-0/+1
* - Add imp to the previous entry.shaun2006-08-181-0/+6
* Document horde -- Phishing and Cross-Site Scripting Vulnerabilities.shaun2006-08-181-0/+40
* Convert 8 spaces to tab as per the FDP for the latestremko2006-08-161-15/+15
* Add entry for globus tmpfile creation bugs.brooks2006-08-161-0/+42
* The lang/f2c port has been updated, update affected versions.brueffer2006-08-161-2/+2
* Document x11vnc -- authentication bypass vulnerability.remko2006-08-141-0/+28
* Document alsaplayer -- multiple vulnerabilities.remko2006-08-141-0/+50
* Document postgresql -- encoding based SQL injection.remko2006-08-141-0/+50
* Bump modified date in the older entry I just corrected.remko2006-08-131-0/+1
* Document postgresql -- multiple vulnerabilities.remko2006-08-131-1/+43
* Fix the discovery date in the latest MySQL entry.remko2006-08-131-1/+1
* Document mysql -- format string vulnerability.remko2006-08-131-0/+30
* OK after some more discussions with Simon it appeared that the ,2remko2006-08-131-1/+4
* Simon provided me with the necessary clue to mark the appropriate portsremko2006-08-131-4/+1
* Document squirrelmail -- random variable overwrite vulnerability.remko2006-08-131-0/+32
* Document rubygem-rails -- evaluation of ruby code.simon2006-08-111-0/+32
* Add CVE name to recent ClamAV entry.simon2006-08-091-0/+1
* Document clamav and clamav-devel vulnerabilitygarga2006-08-081-0/+43
* - Fix discovery date in latest entrymnag2006-08-081-2/+3
* Update drupal to 4.6.9 to fix yet another XSS vulnerability.brooks2006-08-031-0/+27
* Add recent gnupg issue.kuriyama2006-08-021-0/+28
* We are not affected by: CAN-2005-0018 in theremko2006-07-301-1/+1
* Unbreak latest ruby entry by adding missing </lt>.simon2006-07-301-1/+1
* Run make tidy to clean up some style issues.simon2006-07-301-159/+104
* Only sort on entry date, not modified date. It simply causes too muchsimon2006-07-301-1/+1
* - The last vulnerabilities was fixed in ruby18 portsem2006-07-301-1/+2
* OK, I misunderstood Simon with this one. The <gt>1.8.*</gt> entryremko2006-07-301-0/+1
* Fix my previous version commit. The two entries matched twice when youremko2006-07-301-2/+1
* Mark all 1.6 and 1.8 versions as vulnerable, we do not have a fixremko2006-07-301-2/+2
* Add a BID to the latest vuxml entry.remko2006-07-301-28/+16
* - Document Ruby vulnerability. [1]shaun2006-07-301-1/+53
* Add linux-thunderbird to mozilla -- multiple vulnerabilities entry.simon2006-07-291-1/+2
* Document apache -- mod_rewrite ldap buffer overflow vulnerability.simon2006-07-291-0/+99
* Fix error in latest mozilla entry which marked all firefox version assimon2006-07-281-1/+2
* Document mozilla -- multiple vulnerabilities.simon2006-07-271-0/+99
* Add "zope -- information disclosure vulnerability" entrygarga2006-07-141-0/+30
* For latest drupal entry:simon2006-07-141-14/+3
* Add entry for drupal issues.brooks2006-07-141-0/+42
* Add shoutcast crosssite scripting.erwin2006-07-111-0/+31
* Cancel VID 0a4cd819-0291-11db-bbf7-000c6ec775d9 / opera -- JPEGsimon2006-07-111-31/+1
* Correct dates in latest mambo entry by resetting entry date and addingsimon2006-07-111-1/+2
* Bump modified date for previous commit.itetcu2006-07-111-1/+1
* The two two SQL injection vulnerabilities in Mambo described initetcu2006-07-111-1/+1
* Fix markup breakage that slipped in just before commit of the latestsimon2006-07-111-0/+1
* Document samba -- memory exhaustion DoS in smbd.simon2006-07-111-0/+31
* - For the latest trac entry include information from the releasesimon2006-07-101-5/+11
* Document twiki -- multiple file extensions file upload vulnerability.simon2006-07-101-0/+40
* Improve markup for last entry. No content change.simon2006-07-101-2/+5
* Add trac DoS.kuriyama2006-07-101-0/+26
* Add an entry for Horde's latest vulnerabilities.thierry2006-07-061-0/+31
* Document mambo -- SQL injection vulnerabilities.simon2006-07-061-0/+31
* Document phpmyadmin -- cross site scripting vulnerabilitymiwi2006-07-031-0/+27
* Document webmin, usermin -- arbitrary file disclosure vulnerability.remko2006-07-021-0/+34
* Document mutt -- Remote Buffer Overflow Vulnerability.shaun2006-07-011-0/+58
* Document joomla -- multiple vulnerabilitiesmiwi2006-07-011-0/+40
* Document hashcash -- heap overflow vulnerability.remko2006-06-281-0/+32
* Document gnupg -- user id integer overflow vulnerability.simon2006-06-261-0/+30
* Document opera -- JPEG processing integer overflow vulnerability.simon2006-06-231-0/+34
* Update the webcalendar entry, use alphabetic sorting, no functionalremko2006-06-171-1/+2
* Add an entry for Horde's latest XSS vulnerabilities.thierry2006-06-171-0/+39
* Add webcalendar -- information disclosure vulnerability.simon2006-06-171-0/+40
* Add FreeBSD-SA-06:17.sendmail to the VuXML database.remko2006-06-151-0/+39
* Bump modification date in the last entry and earn my own pointyhat.remko2006-06-121-0/+1
* Fix the latest entry by using the entity for &, this passes make validate.remko2006-06-121-3/+3
* - Added multiple dokuwiki vulnerabilitiesaaron2006-06-121-0/+30
* Add an entry for libxine -- buffer overflow vulnerability.nobutaka2006-06-111-0/+33
* Document FreeBSD-SA-06:15.ypserv and FreeBSD-SA-06:16.smbfs.remko2006-06-091-12/+111
* Document two freeradius issues, one newer and one older issue:remko2006-06-091-0/+71
* Mark graphics/fractorama 1.6.7_1 "clean". This port now links against libtiffehaupt2006-06-081-5/+21
* The awstats port has PORTEPOCH bumped, so update the vuxml entry awstatssimon2006-06-081-1/+2
* Mumble, back out local changes which should not have been committed.simon2006-06-061-6/+0
* Mark squirrelmail-1.4.6_1 as fixed for squirrelmail -- plugin.phpsimon2006-06-062-1/+8
* Document squirrelmail -- plugin.php local file inclusion vulnerability.simon2006-06-061-0/+31
* Document dokuwiki -- spellchecker remote PHP code execution.simon2006-06-061-0/+35
* Document drupal -- multiple vulnerabilities.simon2006-06-061-0/+39
* - Add last two MySQL vulnerabilitiesmnag2006-06-021-0/+94
* Document frontpage -- cross site scripting vulnerability and pointsimon2006-05-241-0/+48
* cscope -- buffer overflow vulnerabilitiesmnag2006-05-231-0/+32
* coppermine -- Multiple File Extensions Vulnerabilitymnag2006-05-221-0/+110
* phpmyadmin -- XSRF vulnerabilitiesmnag2006-05-211-0/+30
* - Normalize the topic of last entrypav2006-05-191-1/+1
* - Add VuXML entry for vnc 4.1.1pav2006-05-191-0/+28
* - Add vulnerabilities in last topic.mnag2006-05-141-1/+1
* phpldapadmin -- Cross-Site Scripting and Script Insertionmnag2006-05-141-0/+40
* Modify the entry for p5-DBI insecure temporary files creation to reflecttobez2006-05-121-2/+7
* Add www/fswiki vulnerability.kuriyama2006-05-061-0/+25
* - Add missing s in latest awstats entry's title.simon2006-05-061-1/+36
* - Cancel last rsync entry. Does not affect FreeBSD port.mnag2006-05-061-32/+1
* Document awstat -- arbitrary command execution vulnerability.simon2006-05-061-1/+44
* phpwebftp -- "language" Local File Inclusionmnag2006-05-041-0/+34
* Document firefox -- denial of service vulnerabilityvd2006-05-031-0/+38
* trac -- Wiki Macro Script Insertion Vulnerabilitymnag2006-05-031-0/+34
* rsync -- "xattrs.diff" Patch Integer Overflow Vulnerabilitymnag2006-05-031-0/+35
* clamav -- Freshclam HTTP Header Buffer Overflow Vulnerabilitymnag2006-05-031-0/+40
* - Add last jabberd entry:mnag2006-05-011-0/+33
* Also mark linux-seamonkey vulnerable to recent mozillasimon2006-04-271-1/+2
* cacti -- ADOdb "server.php" Insecure Test Script Security Issuemnag2006-04-271-0/+30
* amaya -- Attribute Value Buffer Overflow Vulnerabilitiesmnag2006-04-271-0/+35
* lifetype -- ADOdb "server.php" Insecure Test Script Security Issuemnag2006-04-271-2/+33
* ethereal -- Multiple Protocol Dissector Vulnerabilitiesmnag2006-04-271-0/+47
* My 100th commit to the vuln.xml file:remko2006-04-261-0/+29
* Change paraview checks to be < 2.4.3 now that paraview uses system libtiff.anholt2006-04-261-5/+20
* Document zgv, xzgv -- heap overflow vulnerability.remko2006-04-241-0/+39
* Document crossfire-server -- denial of service and remote code executionremko2006-04-231-0/+34
* Document p5-DBI -- insecure temporary file creation vulnerability.remko2006-04-231-0/+32
* Document wordpress -- full path disclosure.remko2006-04-231-0/+30
* Document xine -- multiple remote string vulnerabilities.remko2006-04-231-0/+33
* Add an entry for cyrus-sasl -- DIGEST-MD5 Pre-Authenticationume2006-04-221-0/+25
* Also mark all other versions of FreeBSD (That were released) asremko2006-04-201-0/+2
* Add FreeBSD -- FPU information disclosure (SA-06:14) to theremko2006-04-201-0/+50
* Add some CERT references to latest Mozilla entry.simon2006-04-191-0/+13
* plone -- "member_id" Parameter Portrait Manipulation Vulnerabilitymnag2006-04-181-0/+31
* Fix copy/paste error in last commit and mark linux-mozilla < 1.7.13 assimon2006-04-171-1/+1
* Document mozilla/firefox/thunderbirds's latest attempt at Internetsimon2006-04-171-0/+118
* Update entry for sysutils/heartbeat. The insecure temporary file creationehaupt2006-04-161-1/+2
* mailman -- Private Archive Script Cross-Site Scriptingmnag2006-04-161-0/+35
* Document f2c -- insecure temporary files.remko2006-04-111-0/+29
* mplayer -- Multiple integer overflowsmnag2006-04-081-0/+38
* - Add Secunia references for last phpMyAdmin issue.mnag2006-04-071-0/+2
* Document kaffeine -- buffer overflow vulnerability.remko2006-04-071-0/+30
* Document thunderbird -- javascript execution.remko2006-04-071-0/+29
* Update the latest zoo entry to match the latest update to the port.remko2006-04-071-1/+2
* phpmyadmin -- XSS vulnerabilitiesmnag2006-04-071-0/+58
* clamav -- Multiple Vulnerabilitiesmnag2006-04-061-0/+43
* Add cvename to the recent OpenVPN entry.remko2006-04-061-0/+2
* Document mediawiki -- hardcoded placeholder string security bypassremko2006-04-061-0/+30
* Document netpbm -- buffer overflow in pnmtopng.remko2006-04-061-0/+31
* Document zoo -- stack based buffer overflow.remko2006-04-061-0/+30
* Document mediawiki -- cross site scripting vulnerability.remko2006-04-061-0/+30
* dia -- XFig Import Plugin Buffer Overflowmnag2006-04-061-0/+34
* openvpn -- LD_PRELOAD code execution on client through malicious or compromis...mnag2006-04-051-0/+35
* samba -- Exposure of machine account credentials in winbind log filesmnag2006-04-051-0/+44
* Upgrade pubcookie from 3.3.0-beta2 to 3.3.0a fixing serious XSSbrooks2006-04-051-0/+93
* Fill in the version numbers for the vidsedwin2006-04-011-2/+2
* For horde -- remote code execution vulnerability in the help viewersimon2006-03-301-4/+8
* freeradius -- EAP-MSCHAPv2 Authentication Bypassmnag2006-03-301-0/+32
* Add an entry about Horde's remote code execution vulnerability in thethierry2006-03-291-0/+31
* linux-realplayer -- buffer overrunmnag2006-03-281-0/+69
* s/8 spaces/tab/ in the sendmail entry.remko2006-03-251-1/+1
* Record that our sendmail port was also vulnerable.remko2006-03-251-0/+5
* Update the 'Evolution - remote format string vulnerabilities' entry.remko2006-03-241-1/+2
* Document the latest three FreeBSD Security Advisories:remko2006-03-241-0/+127
* xorg-server -- privilege escalationlesi2006-03-221-0/+30
* - heimdal -- Multiple vulnerabilitiesmnag2006-03-201-0/+44
* Document ftp/curl's TFTP packet buffer overflow vulnerabilityvd2006-03-201-0/+35
* Add drupal <= 4.6.5 vulns.brooks2006-03-181-0/+52
* Add an entry for Horde < 3.1 (SA19246).thierry2006-03-161-0/+38
* Document linux-flashplugin -- arbitrary code execution vulnerability.simon2006-03-151-0/+39
* Document nfs -- remote denial of service (FreeBSD: SA-06:10)remko2006-03-131-0/+51
* Add OpenSSH Remote Denial of Service (FreeBSD SA-06:09.openssh) to theremko2006-03-131-0/+71
* Correct the gpg entry wrt. style.remko2006-03-111-34/+34
* Update to 1.4.2.2.kuriyama2006-03-101-0/+34
* Document multimedia/mplayer's heap overflow in the ASF demuxervd2006-03-091-0/+35
* Add the ssh2-nox11 slave port to the list of ports affected bymarius2006-03-061-0/+2
* Document a SSH.COM SFTP server format string vulnerability affectingmarius2006-03-051-0/+33
* Document GNU tar invalid headers buffer overflow.naddy2006-03-041-0/+27
* Remove the pinentry entry. It was gentoo specific and I overlookedremko2006-02-281-33/+0
* Document Bugzilla [2.*, 2.20.1) vulnerabilities.skv2006-02-271-0/+25
* Document squirrelmail (< 1.4.6) vulnerabilities:delphij2006-02-251-0/+25
* Remove the latest squid entry, it already existed.remko2006-02-211-28/+0
* Document gedit -- format string vulnerability.remko2006-02-211-0/+28
* Add koffice to the RTF import issue.remko2006-02-201-1/+7
* Documenet WebCalendar -- unauthorized access vulnerability.remko2006-02-201-0/+27
* Document abiword -- stack based buffer overflow vulnerabilities.remko2006-02-201-0/+30
* Document pinentry -- local privilege escalation.remko2006-02-201-1/+34
* Document squid -- dns lookup spoofing.remko2006-02-201-0/+28
* Document postgresql81-server -- SET ROLE privilege escalation.simon2006-02-181-0/+30
* Document gnupg -- false positive signature verification.simon2006-02-171-0/+39
* Document rssh -- privilege escalation vulnerability.remko2006-02-161-0/+33
* Document tor -- malicious tor server can locate a hidden service.remko2006-02-161-0/+29
* Document sudo -- arbitrary command execution.remko2006-02-161-0/+36
* Document libtomcrypt -- weak signature scheme with ECC keys.remko2006-02-161-0/+25
* Document mantis -- "view_filters_page.php" cross site scripting vulnerability.remko2006-02-161-0/+33
* Document phpbb -- multiple vulnerabilities.remko2006-02-161-0/+43
* Document postgresql -- character conversion and tsearch2 vulnerabilities.remko2006-02-161-0/+46
* Document heartbeat -- insecure temporary file creation vulnerability.remko2006-02-161-0/+28
* Document kpdf -- heap based buffer overflowremko2006-02-151-0/+29
* Document perl, webmin, usermin -- perl format string integer wrap vulnerabilityremko2006-02-151-0/+46
* Document phpicalendar -- cross site scripting vulnerability andremko2006-02-151-0/+54
* Document FreeBSD -- Infinite loop in SACK handling (FreeBSD SA 06.08)remko2006-02-141-0/+36
* Document pf -- IP fragment handling panic, FreeBSD SA 06.07remko2006-02-141-0/+41
* Document FreeBSD -- Local kernel memory disclosureremko2006-02-141-0/+38
* Document IEEE 802.11 -- buffer overflow (FreeBSD SA 06.05).remko2006-02-141-0/+35
* Add FreeBSD SA 06.04.ipfw to the vuln.xml list.remko2006-02-141-0/+36
* Mark ivtools 1.2.3 as fixed for jpeg vulnerabilities. Note that thissimon2006-02-081-10/+25
* Document kpopup -- local root exploit and local denial of service.simon2006-02-081-0/+41
* Oops. Forgot to modify the discovery date.remko2006-01-281-1/+2
* Add 4 FreeBSD advisories to the VuXML database.remko2006-01-271-0/+188
* SHA256ifyedwin2006-01-241-2/+9
* Document local root exploit in SGE.brooks2006-01-241-0/+28
* Document "fetchmail -- crash when bouncing a message" DOS vulnerability.barner2006-01-231-0/+32
* - Update description and references for "clamav -- possible heapsimon2006-01-151-4/+16
* Add an entry for clamav/clamav-develehaupt2006-01-101-0/+30
* Document milter-bogom -- headerless message crash.simon2006-01-101-0/+29
* Mark latest bnc version as fixed wrt. to "fd_set -- bitmap indexsimon2006-01-101-2/+6
* Document two bogofilter vulnerabilities.simon2006-01-071-0/+69
* Add an entry for rxvt-unicode < 6.3: root privileges were not restoredthierry2006-01-051-0/+30
* `ru-apache' and `ru-apache+mod_ssl' was patchet against CAN-2005-3352lev2006-01-041-1/+8
* Correct a little typo.remko2006-01-031-2/+2
* Document apache -- mod_imap cross-site scripting flaw.remko2006-01-021-1/+68
* Fix the affected versions of 9b4facec-6761-11da-99f6-00123ffe8333.hrs2006-01-011-1/+2
* Add missing "</package>" tag from rev. 1.917, which caused the file tosimon2005-12-261-4/+5
* russian/apache13 and russian/apache13-modssl were updated and new version d...lev2005-12-231-3/+8
* Bump modification date for entries touched by last commit.simon2005-12-231-1/+2
* Update the phpSysInfo entries, PR ports/90849 will solve the documentedremko2005-12-231-2/+2
* Fix another typo in my nbd entry.remko2005-12-231-1/+2
* Correct a typo.remko2005-12-231-1/+1
* Update the affected range.remko2005-12-231-1/+1
* :remko2005-12-231-0/+25
* - Register scponly-4.1 vulnerabilitiesgarga2005-12-231-0/+48
* Correct the recent horde entries as per the FDPremko2005-12-221-30/+40
* Document fetchmail vulnerability:barner2005-12-191-0/+36
* Document the following mantis vulnerabilities:remko2005-12-151-0/+64
* - Add entries for several XSS vulnerabilities in Horde, Kronolith, Nagthierry2005-12-121-2/+148
* Add curl -- URL buffer overflow vulnerabilitymnag2005-12-091-0/+46
* Add phpmyadmin -- register_globals emulation "import_blacklist" manipulationmnag2005-12-081-0/+67
* Add ffmpeg -- libavcodec buffer overflow vulnerabilitymnag2005-12-071-0/+39
* Add trac -- search module SQL injection vulnerabilitymnag2005-12-071-0/+32
* Add drupal -- multiple vulnerabilitiesmnag2005-12-021-0/+56
* Document opera -- multiple vulnerabilities.simon2005-12-011-0/+50
generated by cgit (git 2.34.1) at 2025-01-05 02:16:18 +0800