aboutsummaryrefslogtreecommitdiffstats
path: root/security/vuxml
Commit message (Expand)AuthorAgeFilesLines
* Fix range for sql-ledger entry which I missed in my original review.simon2007-03-171-1/+1
* Document sql-ledger vulnerabilitylth2007-03-161-0/+41
* Document cacti -- remote injection exploitremko2007-03-161-0/+30
* Correct two tdiary entries:remko2007-03-161-5/+16
* Document two long forgotten Samba vulnerabilities.remko2007-03-161-0/+73
* ktorrent -- multiple vulnerabilities:markus2007-03-151-1/+3
* Spell out multiple vulnerabilities instead of specifying the exactremko2007-03-121-1/+3
* Fix typo in PHP entrymarkus2007-03-121-1/+1
* Document ktorrent -- two vulnerabilitiesmarkus2007-03-121-0/+33
* Add ja-trac-*.kuriyama2007-03-101-0/+4
* - fix typomiwi2007-03-091-1/+1
* - Add entry for mplayer -- DMO File Parsing Buffer Overflow Vulnerabilitymiwi2007-03-091-0/+35
* - Add entry for Trac "download wiki page as text" Cross-Site Scripting Vulner...miwi2007-03-091-0/+31
* Correct affected versions in "mod_jk -- long URL stack overflowsimon2007-03-061-1/+2
* Document mod_jk -- long URL stack overflow vulnerability.simon2007-03-061-0/+37
* For recent "mozilla -- multiple vulnerabilities" entry:simon2007-03-021-2/+5
* Document bind -- Multiple Denial of Service vulnerabilitiesremko2007-02-281-0/+50
* Document FreeBSD -- Jail rc.d script privilege escalationremko2007-02-281-0/+60
* Document: gtar -- name mangling symlink vulnerabilityremko2007-02-281-0/+39
* Document FreeBSD -- Kernel memory disclosure in firewire(4).remko2007-02-281-0/+47
* Document libarchive -- Infinite loop in corrupt archives handling inremko2007-02-271-5/+41
* Document FreeBSD SA 06:23 OpenSSL - Multiple problems in crypto (3).remko2007-02-271-0/+63
* - Bump modified date for last update in mozilla entry.simon2007-02-261-1/+2
* Extend the latest gecko vulnerabilities to mail/lightning.ahze2007-02-261-0/+4
* Fix whitespace which I forgot before committing the last update.simon2007-02-251-7/+7
* Document mozilla -- multiple vulnerabilities.simon2007-02-251-0/+82
* Document snort -- DCE/RPC preprocessor vulnerability.simon2007-02-221-0/+45
* Document rar -- password prompt buffer overflow vulnerability.simon2007-02-171-0/+46
* Mark 5.2.1_2 as the first safe version for the recent "php -- multiplesimon2007-02-171-1/+1
* Document php -- multiple vulnerabilities.simon2007-02-171-0/+70
* joomla -- multiple remote vulnerabilitiesgabor2007-01-181-0/+41
* Document two sircd vulnerabilities:gabor2007-01-151-0/+62
* - Document multple net/cacti vulnerabilities.sem2007-01-121-0/+29
* Add mplayer RealMedia RTSP streams buffer overflow entry.itetcu2007-01-091-0/+40
* Document two fetchmail vulnerabilities.barner2007-01-061-0/+75
* Document opera -- multiple vulnerabilities.simon2007-01-061-0/+58
* Upgrade drupal to 4.7.5 fixing a couple security issues.brooks2007-01-061-0/+41
* Unbreak file by using & in w3m entry.simon2007-01-041-3/+3
* Document a format string vulnerability of w3m.nobutaka2007-01-021-0/+35
* - Document www/plone vulnerabilitygabor2006-12-281-0/+29
* - Update the www/zope entry to indicate it is fixed nowgabor2006-12-281-2/+3
* phpbb -- NULL byte injection vulnerability has been fixed indelphij2006-12-241-2/+2
* Add an entry for recently fixed proftpd remote code executiondelphij2006-12-211-0/+26
* Document gzip -- multiple vulnerabilities, this is FreeBSD-SA06:21.gzipremko2006-12-201-0/+48
* Document bind9 -- Denial of Service in named(8) which is also knownremko2006-12-201-0/+55
* Document openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3)remko2006-12-201-0/+46
* sql-ledger -- multiple vulnerabilitieslth2006-12-191-0/+39
* Update several entries, making them a bit clearer (Were possible),remko2006-12-161-36/+16
* Document the recent D-BUS vulnerability as described by CVE-2006-6107.marcus2006-12-151-0/+32
* - evince -- Buffer Overflow Vulnerabilitymnag2006-12-151-0/+31
* - Change spaces to tabs in <name> and <range>mnag2006-12-141-28/+24
* tDiary - Injection Vulnerabilitymiwi2006-12-141-0/+23
* - wv -- Multiple Integer Overflow Vulnerabilitiesmnag2006-12-131-0/+35
* - wv2 -- Integer Overflow Vulnerabilitymnag2006-12-131-0/+32
* - Fix tnftpd entry (made validate happy)miwi2006-12-131-1/+0
* tnftpd - remote root exploitmiwi2006-12-131-0/+24
* - clamav -- Multipart Nestings Denial of Servicemnag2006-12-131-0/+35
* Rewrite the libxine entry:remko2006-12-091-24/+17
* Add an entry for libxine multiple buffer overflow vulnerabilities.nobutaka2006-12-081-0/+45
* - Ok. gnupg-devel are not affected.mnag2006-12-071-4/+0
* - Add gnupg-devel package in last entrymnag2006-12-071-0/+5
* * Fix typo in the latest GnuPG entry, inherited from the original messagevd2006-12-071-2/+2
* Add CVE-2006-6235 entry for GnuPG.kuriyama2006-12-071-0/+60
* - Add a modified field for the entry, touched by the previous commitstas2006-12-051-0/+1
* - List all affected packages for the Novermber ruby cgi DOS vulnerabilitystas2006-12-051-1/+16
* - Documenet ruby cgi library vulnerabilitystas2006-12-051-0/+46
* - Document buffer overflow vulnerabilities in the libmusicbrainz.stas2006-12-031-0/+34
* Fix markup in last entry so the file is valid XML again.simon2006-12-031-3/+2
* - Add a entry for www/tDiary, www/tDiary-develmiwi2006-12-021-0/+25
* - Document the SGI Image File heap overflow vulnerability in ImageMagickstas2006-12-021-0/+34
* Document "gtar -- GNUTYPE_NAMES directory traversal vulnerability".naddy2006-12-011-0/+31
* Document 'kronolith -- arbitrary local file inclusion vulnerability'shaun2006-11-301-0/+33
* In latest gnupg entry:simon2006-11-281-10/+8
* Add recent gnupg one.kuriyama2006-11-281-0/+33
* Add <modified> tag to previous proftpd entry.shaun2006-11-211-0/+1
* Add proftpd-mysql to the previous entry.shaun2006-11-151-0/+1
* Document "proftpd -- Remote Code Execution Vulnerability".shaun2006-11-151-0/+32
* The Command Injection Vulnerability was corrected by awstats 6.5_2,1.delphij2006-11-151-2/+2
* Add archivers/unzoo Directory Traversal Vulnerability.ehaupt2006-11-141-0/+34
* Add bugzilla -- multiple vulnerabilities entry.simon2006-11-111-2/+57
* Add cvs+ipv6 to the cvsbug to the vulnerability.remko2006-11-091-0/+5
* - Document recent vulerabilties in the imlib2.stas2006-11-091-0/+38
* - Document recent vulnerability in the ruby CGI library.stas2006-11-051-0/+35
* - pgp < 3.0 and pgpin does not support OpenPGP formatdinoex2006-11-031-2/+4
* The latest couple of firefox vulnerabilities should be fixed in thesimon2006-11-021-4/+4
* ru-apache and ru-apacvhe+mod_ssl were fixed.lev2006-11-011-1/+8
* Add a <modified> tag with the current date to reflect my previous change.vd2006-10-301-0/+1
* Fix typo: "Dmitri Lenev reports reports a privilege ..."vd2006-10-301-1/+1
* Document screen -- combined UTF-8 characters vulnerability.simon2006-10-301-0/+29
* Document two MySQL privilege escalations.simon2006-10-291-0/+60
* - Add entry for www/serendipity and www/serendipity-develmiwi2006-10-231-0/+35
* Document an integer overflow vulnerability in Qt and kdelibs, based on anmarkus2006-10-231-0/+39
* Add reference, which I missed the first time around, from Operasimon2006-10-211-0/+1
* Document opera -- URL parsing heap overflow vulnerability.simon2006-10-211-0/+37
* Minor correction to last commit; the NVIDIA driver version 1.0.8762simon2006-10-211-1/+1
* Update entry for nvidia-driver -- arbitrary root code executionsimon2006-10-211-4/+9
* Document asterisk -- remote heap overwrite vulnerabilityremko2006-10-201-0/+30
* Some style changes to the plone entry.remko2006-10-201-13/+11
* - Add a entry for www/plonemiwi2006-10-201-0/+37
* Document:shaun2006-10-191-0/+108
* Document "ingo -- local arbitrary shell command execution"shaun2006-10-191-0/+27
* Update php -- _ecalloc Integer Overflow Vulnerability entry withsimon2006-10-181-3/+20
* Mark multimedia/win32-codecs as not-vulnerable after the quicktime codecserwin2006-10-171-2/+2
* Document "nvidia-driver -- arbitrary root code execution vulnerability".simon2006-10-171-0/+36
* - Mark php open_basedir fixedsat2006-10-171-2/+3
* - clamav -- CHM unpacker and PE rebuilding vulnerabilitiesmnag2006-10-161-0/+38
* - Add some referencessat2006-10-161-6/+27
* - Document temporary file symlink privilege escalation in tkdiffsat2006-10-161-1/+28
* - Document multiple remote file inclusion vulnerabilities in vtigersat2006-10-151-0/+31
* - Document heap overflow in the KML engine in google-earthsat2006-10-141-0/+28
* devel/cscope was fixed in version 15.6 so use lt instead of le.erwin2006-10-111-2/+2
* Mark zgv as fixed wrt. "zgv, xzgv -- heap overflow vulnerability".simon2006-10-091-1/+2
* - Add php-suhosin to edabe438-542f-11db-a5ae-00508d6a62dfsat2006-10-091-1/+5
* - Fix python package naming in 6afa87d3-764b-11d9-b0e7-0000e249a0a2sat2006-10-081-3/+2
* Update versions affected by python -- buffer overrun in repr() forsimon2006-10-081-4/+7
* Fix whitespace in openssh -- multiple vulnerabilities entry, which Isimon2006-10-081-17/+17
* Update vuxml id 5a39a22e-5478-11db-8f1a-000a48049292tmclaugh2006-10-081-1/+1
* Remove mono-devel and mono-svn from 5a39a22e-5478-11db-8f1a-000a48049292tmclaugh2006-10-081-5/+0
* - Remove an empty url (a typo)sat2006-10-071-1/+0
* - Document User-Agent XSS Vulnerability in torrentfluxsat2006-10-071-0/+27
* - Document buffer overrun in repr() for unicode strings in pythonsat2006-10-071-0/+40
* devel/cscope was fixed in version 15.6erwin2006-10-071-1/+2
* - Document _ecalloc Integer Overflow Vulnerability in php5sat2006-10-061-0/+35
* - Update an old mambo advisory and document its new vulnerabilitiessat2006-10-061-1/+57
* - Add linux-curl to a curl advisory and tweak versions a bitsat2006-10-061-1/+3
* - Add ja-lynx* to a lynx advisorysat2006-10-061-1/+2
* - chinese/tin was also vulnerablesat2006-10-061-0/+1
* - Document buffer overflow vulnerabilities in tinsat2006-10-061-0/+31
* - Use >0 for unpatched vulnerabilitiessat2006-10-051-5/+6
* - Document slapd acl selfwrite Security Issue in openldapsat2006-10-051-0/+35
* - Document "System.CodeDom.Compiler" Insecure Temporary Creation in monosat2006-10-051-0/+38
* - Document open_basedir Race Condition Vulnerability in phpsat2006-10-051-0/+63
* - Document NULL byte injection vulnerability in phpbbsat2006-10-051-0/+39
* - Add references and use earlier discovery date in fffa9257-3c17-11db-86ab-00...sat2006-10-041-1/+5
* - Add CVE names to 19b17ab4-51e0-11db-a5ae-00508d6a62dfsat2006-10-031-0/+3
* - Document admin section SQL injection in postnukesat2006-10-031-0/+31
* - Document LWFN Files Buffer Overflow Vulnerability in freetypesat2006-10-021-0/+39
* - Document Buffer Overflow Vulnerabilities in cscopesat2006-10-021-0/+41
* - Document RSA Signature Forgery Vulnerability in gnutlssat2006-10-021-0/+35
* - Document Search Unspecified XSS in MTsat2006-10-021-0/+34
* - Update dokuwiki advisoriessat2006-10-021-0/+13
* - Document latest XSRF vulnerabilities in phpmyadminsat2006-10-021-0/+31
* - Mark gtetrinet 0.7.10 safesat2006-10-011-1/+3
* Document openssh -- multiple vulnerabilities AKAsimon2006-10-011-0/+63
* - Document multiple vulnerabilities in dokuwikisat2006-09-301-0/+94
* - Document multiple vulnerabilities in tikiwikisat2006-09-301-0/+46
* - Document NULL byte injection vulnerability in punbbsat2006-09-301-0/+32
* - Concisify a Secunia reportsat2006-09-271-8/+1
* - Document (another) Denial of Service Vulnerability in freecivsat2006-09-261-0/+41
* - Document Packet Parsing Denial of Service Vulnerability in freecivsat2006-09-261-0/+36
* - Document multiple vulnerabilities in planssat2006-09-261-0/+49
* - Update the unace advisorysat2006-09-261-4/+24
* - Document multiple XSS security bugs in eyeOSsat2006-09-261-0/+28
* - Document restructuredText "csv_table" Information Disclosure in zopesat2006-09-221-0/+33
* - Document stack-based buffer overflow in libmmssat2006-09-221-0/+36
* - Document Opera SSL RSA Signature Forgerysat2006-09-221-0/+45
* Bump modified data which was missed in last commit.simon2006-09-221-0/+1
* - Mark latest linux-{firefox,seamonkey}-devel safesat2006-09-221-1/+7
* Document mozilla -- multiple vulnerabilities.simon2006-09-151-0/+80
* In the PHP entry, replace mod-php with mod_php [1].remko2006-09-141-8/+9
* Try to explain a bit better that users who have the Quicktime pluginremko2006-09-141-0/+2
* Document win32-codecs -- multiple vulnerabilitiesremko2006-09-141-1/+37
* Attempt two:remko2006-09-141-0/+63
* OK, I do not know WHAT went wrong but it went wrong, revert to the oldremko2006-09-141-802/+739
* Document php -- multiple vulnerabilitiesremko2006-09-141-739/+802
* Cancel latest gnutls entry (GNUTLS-SA-2006-3) - it is a false alarm:novel2006-09-141-37/+1
* Upgrade drupal-pubcookie to the latest version fixing a security holebrooks2006-09-141-0/+29
* Style neats for the latest gnutls entry.novel2006-09-131-8/+10
* correct the tomcat entry (change the ,5 to _5 since we talk about PORTREVISIONremko2006-09-131-3/+7
* Document linux-flashplugin7 -- arbitrary code execution vulnerabilities.simon2006-09-131-0/+38
* Mark jakarta-tomcat5 as fixed since 5.0.30,5 regarding minor XSS issue.lawrance2006-09-111-1/+3
* Add an info about GNUTLS-SA-2006-3.novel2006-09-111-0/+38
* - mailman -- Multiple Vulnerabilitiesmnag2006-09-041-0/+44
* Bump modification date for last jabber entry changegarga2006-09-031-1/+1
* Fix jabber entrygarga2006-09-031-1/+1
* Document hlstats -- multiple cross site scripting vulnerabilities.remko2006-09-031-0/+26
* Document gtetrinet -- remote code executionremko2006-09-031-0/+29
* Bump modified date in the entry changed by garga.remko2006-09-031-1/+1
* net-im/jabber -- Mark the correct versions with fd_set vulnerability, authorgarga2006-09-031-1/+2
* Update the latest FreeBSD-SA entry, ppp got replaced by sppp.remko2006-08-311-5/+6
* Document joomla -- multiple vulnerabilitiesremko2006-08-301-0/+30
* Document FreeBSD-SA-06:18.pppremko2006-08-241-0/+41
* Minor whitespace cleanup (we need a blank line every after </entry>remko2006-08-201-0/+1
* - Add imp to the previous entry.shaun2006-08-181-0/+6
* Document horde -- Phishing and Cross-Site Scripting Vulnerabilities.shaun2006-08-181-0/+40
* Convert 8 spaces to tab as per the FDP for the latestremko2006-08-161-15/+15
* Add entry for globus tmpfile creation bugs.brooks2006-08-161-0/+42
* The lang/f2c port has been updated, update affected versions.brueffer2006-08-161-2/+2
* Document x11vnc -- authentication bypass vulnerability.remko2006-08-141-0/+28
* Document alsaplayer -- multiple vulnerabilities.remko2006-08-141-0/+50
* Document postgresql -- encoding based SQL injection.remko2006-08-141-0/+50
* Bump modified date in the older entry I just corrected.remko2006-08-131-0/+1
* Document postgresql -- multiple vulnerabilities.remko2006-08-131-1/+43
* Fix the discovery date in the latest MySQL entry.remko2006-08-131-1/+1
* Document mysql -- format string vulnerability.remko2006-08-131-0/+30
* OK after some more discussions with Simon it appeared that the ,2remko2006-08-131-1/+4
* Simon provided me with the necessary clue to mark the appropriate portsremko2006-08-131-4/+1
* Document squirrelmail -- random variable overwrite vulnerability.remko2006-08-131-0/+32
* Document rubygem-rails -- evaluation of ruby code.simon2006-08-111-0/+32
* Add CVE name to recent ClamAV entry.simon2006-08-091-0/+1
* Document clamav and clamav-devel vulnerabilitygarga2006-08-081-0/+43
* - Fix discovery date in latest entrymnag2006-08-081-2/+3
* Update drupal to 4.6.9 to fix yet another XSS vulnerability.brooks2006-08-031-0/+27
* Add recent gnupg issue.kuriyama2006-08-021-0/+28
* We are not affected by: CAN-2005-0018 in theremko2006-07-301-1/+1
* Unbreak latest ruby entry by adding missing </lt>.simon2006-07-301-1/+1
* Run make tidy to clean up some style issues.simon2006-07-301-159/+104
* Only sort on entry date, not modified date. It simply causes too muchsimon2006-07-301-1/+1
* - The last vulnerabilities was fixed in ruby18 portsem2006-07-301-1/+2
* OK, I misunderstood Simon with this one. The <gt>1.8.*</gt> entryremko2006-07-301-0/+1
* Fix my previous version commit. The two entries matched twice when youremko2006-07-301-2/+1
* Mark all 1.6 and 1.8 versions as vulnerable, we do not have a fixremko2006-07-301-2/+2
* Add a BID to the latest vuxml entry.remko2006-07-301-28/+16
* - Document Ruby vulnerability. [1]shaun2006-07-301-1/+53
* Add linux-thunderbird to mozilla -- multiple vulnerabilities entry.simon2006-07-291-1/+2
* Document apache -- mod_rewrite ldap buffer overflow vulnerability.simon2006-07-291-0/+99
* Fix error in latest mozilla entry which marked all firefox version assimon2006-07-281-1/+2
* Document mozilla -- multiple vulnerabilities.simon2006-07-271-0/+99
* Add "zope -- information disclosure vulnerability" entrygarga2006-07-141-0/+30
* For latest drupal entry:simon2006-07-141-14/+3
* Add entry for drupal issues.brooks2006-07-141-0/+42
* Add shoutcast crosssite scripting.erwin2006-07-111-0/+31
* Cancel VID 0a4cd819-0291-11db-bbf7-000c6ec775d9 / opera -- JPEGsimon2006-07-111-31/+1
* Correct dates in latest mambo entry by resetting entry date and addingsimon2006-07-111-1/+2
* Bump modified date for previous commit.itetcu2006-07-111-1/+1
* The two two SQL injection vulnerabilities in Mambo described initetcu2006-07-111-1/+1
* Fix markup breakage that slipped in just before commit of the latestsimon2006-07-111-0/+1
* Document samba -- memory exhaustion DoS in smbd.simon2006-07-111-0/+31
* - For the latest trac entry include information from the releasesimon2006-07-101-5/+11
* Document twiki -- multiple file extensions file upload vulnerability.simon2006-07-101-0/+40
* Improve markup for last entry. No content change.simon2006-07-101-2/+5
* Add trac DoS.kuriyama2006-07-101-0/+26
* Add an entry for Horde's latest vulnerabilities.thierry2006-07-061-0/+31
* Document mambo -- SQL injection vulnerabilities.simon2006-07-061-0/+31
* Document phpmyadmin -- cross site scripting vulnerabilitymiwi2006-07-031-0/+27
* Document webmin, usermin -- arbitrary file disclosure vulnerability.remko2006-07-021-0/+34
* Document mutt -- Remote Buffer Overflow Vulnerability.shaun2006-07-011-0/+58
* Document joomla -- multiple vulnerabilitiesmiwi2006-07-011-0/+40
* Document hashcash -- heap overflow vulnerability.remko2006-06-281-0/+32
* Document gnupg -- user id integer overflow vulnerability.simon2006-06-261-0/+30
* Document opera -- JPEG processing integer overflow vulnerability.simon2006-06-231-0/+34
* Update the webcalendar entry, use alphabetic sorting, no functionalremko2006-06-171-1/+2
* Add an entry for Horde's latest XSS vulnerabilities.thierry2006-06-171-0/+39
* Add webcalendar -- information disclosure vulnerability.simon2006-06-171-0/+40
* Add FreeBSD-SA-06:17.sendmail to the VuXML database.remko2006-06-151-0/+39
* Bump modification date in the last entry and earn my own pointyhat.remko2006-06-121-0/+1
* Fix the latest entry by using the entity for &, this passes make validate.remko2006-06-121-3/+3
* - Added multiple dokuwiki vulnerabilitiesaaron2006-06-121-0/+30
* Add an entry for libxine -- buffer overflow vulnerability.nobutaka2006-06-111-0/+33
* Document FreeBSD-SA-06:15.ypserv and FreeBSD-SA-06:16.smbfs.remko2006-06-091-12/+111