aboutsummaryrefslogtreecommitdiffstats
path: root/security/vuxml
Commit message (Expand)AuthorAgeFilesLines
* - Add entry for www/opera 9.26rafan2008-04-051-0/+36
* Document mozilla multiple vulnerabilities.delphij2008-03-301-0/+68
* Document buffer overflow in silc-client and silc-server.wxs2008-03-271-0/+38
* Document bzip2 crash with certain malformed archive filesdelphij2008-03-211-0/+31
* - Ups remove duplicate urlmiwi2008-03-121-1/+1
* - Fix previos commitmiwi2008-03-121-6/+8
* Document qemu -- unchecked block read/write vulnerabilitynox2008-03-121-0/+34
* - Fix previous commitmiwi2008-03-101-5/+6
* - Add entry for dovecotbeech2008-03-101-0/+30
* - Fix 2 typos form the previous commitmiwi2008-03-071-2/+2
* - Document mplayer - multiple vulnerabilitiesmiwi2008-03-071-0/+54
* - Entry for ghostscrip-gpl 8.61rafan2008-03-051-0/+33
* - Document phpmyadmin -- SQL injection vulnerabilitytabthorpe2008-03-051-0/+37
* - Document pcre -- buffer overflow vulnerabilitytabthorpe2008-03-011-0/+29
* - Document libxine -- buffer overflow vulnerabilitytabthorpe2008-02-281-0/+28
* - Mark mail/up-imapproxy as safemiwi2008-02-271-2/+2
* - Document coppermine -- multiple vulnerabilities.tabthorpe2008-02-261-0/+32
* - Fix previous commit (use now <bid>)miwi2008-02-261-1/+2
* - Document moinmoin -- multiple vulnerabilities.tabthorpe2008-02-261-0/+38
* Document opera -- multiple vulnerabilities.simon2008-02-221-0/+40
* Document mozilla -- multiple vulnerabilities.simon2008-02-221-0/+82
* Document openldap modrdn DoS vulnerabilitydelphij2008-02-221-0/+29
* Document clamav -- ClamAV libclamav PE File Integer Overflow Vulnerabilityremko2008-02-151-0/+51
* - Fix previous commitmiwi2008-02-141-1/+1
* Bump modification date for latest change.remko2008-02-141-0/+1
* xfce4-panel, libxfce4gui - mark the security problem which existed in 4.4.1 "...oliver2008-02-131-1/+1
* - mark claws-mail as safemiwi2008-02-131-1/+2
* - Document a cacti vulnerabilitysem2008-02-121-0/+32
* Add entry for www/ikiwiki.brix2008-02-121-0/+29
* - Fix grammar for www/zenphoto descriptiontabthorpe2008-02-101-1/+1
* - Document www/zenphototabthorpe2008-02-091-0/+29
* - Fix a typomiwi2008-02-091-1/+1
* - Document jetty -- multiple vulnerabilitymiwi2008-02-041-0/+28
* - Bump modified from previous commitmiwi2008-01-311-1/+1
* Fix name of irc/dircproxy package.linimon2008-01-311-3/+3
* Document libxine -- buffer overflow vulnerability.nobutaka2008-01-291-0/+30
* Document xorg -- multiple vulnerabilities.flz2008-01-231-0/+52
* - Fix discovery line from the previous commit :(miwi2008-01-231-1/+1
* - Document xfce -- multiple vulnerabilitiesmiwi2008-01-231-0/+32
* - Document claws-mail -- insecure temporary file creationmiwi2008-01-231-0/+31
* - Add modified date for previous commitmiwi2008-01-201-0/+1
* - Fix freeradius-devel entry, narrow down range to prevent affect later versionslwhsu2008-01-201-1/+1
* - Fix previous commit (whitespaces, sorting)miwi2008-01-201-13/+11
* - Add entry for ircservicesbeech2008-01-201-0/+34
* Document libxine -- buffer overflow vulnerability.nobutaka2008-01-201-0/+31
* Update the "firebird" entry to properly match corrected versions.skv2008-01-191-1/+2
* - Fix <name> sections from both previous committsmiwi2008-01-161-1/+1
* - Fix previous commitmiwi2008-01-161-1/+2
* - Document XSS vulnerability in geeklog 1.4.0tabthorpe2008-01-161-0/+29
* - This vulnerability exists in PHP versions prior to 4.4.8, notstas2008-01-141-2/+2
* Document multiple drupal issues.simon2008-01-121-0/+116
* - Document maradns -- CNAME record resource rotation denial of servicemiwi2008-01-111-0/+33
* - Mark security/lsh as safemiwi2008-01-081-2/+2
* Update php multiple vulnerability entry: revalent bugs were fixed in PHP 4.4.8.delphij2008-01-051-2/+3
* - Fix linux-realplayer new versionmnag2008-01-051-1/+1
* - Fix range for linux-flahspluginmnag2008-01-051-2/+2
* - linux-realplayer -- multiple vulnerabilitiesmnag2008-01-051-0/+48
* - linux-flashplugin -- multiple vulnerabilitiesmnag2008-01-031-0/+42
* - Fix the last tcl/tk entry for portaudit.miwi2007-12-311-2/+5
* Document dovecot specific LDAP + auth cache configuration may mix up user log...delphij2007-12-301-0/+30
* Add more references to latest opera entry.simon2007-12-301-0/+5
* Make "gallery2 -- multiple vulnerabilities" follow the normal format forsimon2007-12-301-5/+40
* - Document gallery2 -- multiple vulnerabilitiesbeech2007-12-251-0/+26
* Update list if CVE names for latest wireshark entry.simon2007-12-221-9/+9
* - Document e2fsprogs -- heap buffer overflowmiwi2007-12-221-0/+37
* Document wireshark -- multiple vulnerabilities.simon2007-12-201-0/+83
* Document opera -- multiple vulnerabilities.simon2007-12-201-0/+43
* Document peercast -- buffer overflow vulnerability.simon2007-12-201-0/+32
* Unbreak vuln.xml: & -> &amp;simon2007-12-181-1/+2
* Upgrade to Ganglia 3.0.6.brooks2007-12-181-0/+28
* Sort references section for last commit.remko2007-12-151-1/+2
* - Mark latest linux-firefox/seamonkey-devel snapshots as safesat2007-12-141-6/+20
* Document qemu -- Translation Block Local Denial of Service Vulnerabilitynox2007-12-131-0/+34
* Document drupal -- SQL injection vulnerabilityremko2007-12-121-0/+37
* Document samba -- buffer overflow vulnerability.remko2007-12-121-0/+36
* Remove redundant "A" in the latest entryremko2007-12-121-1/+1
* - Fix previous commitmiwi2007-12-121-6/+8
* - Missed a section - smbftpdbeech2007-12-121-1/+1
* - Document smbftpd - format string vulnerability.beech2007-12-121-0/+27
* Document jetty - multiple vulnerabilitiesremko2007-12-101-0/+44
* Update to 2007.12.07 with fix security issue.nork2007-12-091-1/+2
* Document liveMedia -- DoS vulnerabilityremko2007-12-091-0/+34
* Update to reflect the squid issue has been assigneddelphij2007-12-071-1/+2
* - Update gnu-finger entrymiwi2007-12-051-1/+1
* http://nvd.nist.gov/nvd.cfm?cvename=CVE-1999-1165: gnu-finger is old,linimon2007-12-051-0/+28
* Update to reflect an updated www/squid30 version which is nodelphij2007-12-051-1/+1
* Update to reflect an updated www/squid version which is nodelphij2007-12-051-1/+2
* Document squid denial of service vulnerability. This can bedelphij2007-12-051-0/+31
* Remove the rsync entry for now. Better way of handlingdelphij2007-12-021-39/+0
* Document rsync security bypass vulnerability.delphij2007-12-021-0/+39
* Make the rubygem-rails -- JSON XSS vulnerability entry valid UTF-8 (atsimon2007-12-011-2/+2
* Also cover rubygem-activesupport which is part of rails and isdelphij2007-11-281-0/+5
* Document recent Ruby On Rails vulnerabilities.delphij2007-11-281-0/+56
* Document ikiwiki improper symlink verification vulnerability.brix2007-11-281-0/+29
* Document firefox multiple unspecified memory corruption vulnerabilities.delphij2007-11-281-0/+39
* - Document phpmyadmin -- Cross Site Scriptingmiwi2007-11-221-0/+28
* - Update last Samba entry,miwi2007-11-211-1/+3
* Document samba - multiple vulnerabilitiesmiwi2007-11-211-0/+40
* postnuke 0.763 is not vulnerable to 35f2679f-52d7-11db-8f1a-000a48049292delphij2007-11-181-2/+2
* Improve JDK version coverage. We should consider PORTEPOCH'ed versiondelphij2007-11-171-4/+4
* Document PHP multiple vulnerabilities that are fixed by php 5.2.5.delphij2007-11-171-0/+44
* - Fix c93e4d41-75c5-11dc-b903-0016179b2dd5 entrymiwi2007-11-161-9/+8
* print/cups-base is vulnerable for all previous versions toerwin2007-11-151-1/+1
* Document mt-daapd -- denial of service vulnerability, alsoremko2007-11-141-1/+36
* - Update xpdf -- multiple remote Stream.CC vulnerabilitiesmiwi2007-11-141-1/+2
* o Add a patch for CVE-2007-5846, and add an entry for vuxml.kuriyama2007-11-141-0/+25
* - Document flac -- media file processing integer overflow vulnerabilitiesmiwi2007-11-131-0/+35
* Unbreak file by closing </li> tag.simon2007-11-131-1/+1
* Document xpdf arbitrary code execution vulnerability, as documented indelphij2007-11-131-0/+64
* dinoex@ has choosen to apply a vendor patch that has resolved CVE-2007-4351delphij2007-11-131-1/+2
* Document plone arbitrary code execution vulnerability.delphij2007-11-121-0/+30
* - Updated the last gftp entry (we have 2.0.18_6 in the portstree not 2.10.18_6)miwi2007-11-121-1/+2
* - Document phpmyadmin -- cross-site scripting vulnerabilitymiwi2007-11-111-0/+30
* Document gallery2 multiple vulnerabilities.delphij2007-11-101-0/+35
* - Document tikiwiki -- multiple vulnerabilitiesmiwi2007-11-091-0/+50
* Document cups-base remote buffer overflow vulnerability.delphij2007-11-091-0/+33
* Make perl entry to cover perl-threaded as well.delphij2007-11-081-1/+6
* - Document perl -- regular expressions unicode data buffer overflowmiwi2007-11-071-0/+29
* Document pcre arbitrary code execution vulnerability.delphij2007-11-071-0/+37
* - perdition entry - correct rangebeech2007-11-061-1/+1
* - Add entry for mail/perditionbeech2007-11-061-0/+31
* - gftp -- multiple vulnerabilitiesmiwi2007-11-061-0/+33
* - Update dirproxy -- remote denial of servicemiwi2007-11-051-1/+6
* - dirproxy -- remote denial of servicemiwi2007-11-041-0/+30
* - Fix discovery date on my previous commitmiwi2007-11-011-1/+1
* - document wordpress -- cross-site scriptingmiwi2007-11-011-0/+36
* Extend coverage to OpenLDAP 2.4.x series which is affected accordingdelphij2007-11-011-0/+2
* Document openldap multiple vulnerabilities.delphij2007-11-011-0/+29
* Bump modified date for entry updated in last commit.simon2007-11-011-1/+1
* Update vuxml to reflect that mod_jk and mod_jk-ap2 havegirgen2007-11-011-1/+4
* - Update mozilla -- code execution via Quicktime media-link filesmiwi2007-10-311-1/+2
* Document django DoS issue.delphij2007-10-291-0/+48
* - Fix day entry for 498a8731-7cfc-11dc-96e6-0012f06707f0miwi2007-10-271-1/+2
* - Document opera -- multiple vulnerabilitiesmiwi2007-10-261-0/+41
* - Document drupal --- multiple vulnerabilitiesmiwi2007-10-251-0/+84
* - Document ldapscripts -- Command Line User Credentials Disclosuremiwi2007-10-231-0/+31
* Modify firefox entry to cover linux-* variants.delphij2007-10-231-0/+6
* Document firefox JavaScript Entrapment vulnerabilities.delphij2007-10-221-0/+33
* - Fix year entry in 498a8731-7cfc-11dc-96e6-0012f06707f0miwi2007-10-211-2/+2
* - Add new line between entries.mnag2007-10-191-0/+2
* - Add entry about recent phpMyAdmin XSS server_status.php vulnerabilitystas2007-10-181-2/+31
* - Fix package name in 51b51d4a-7c0f-11dc-9e47-0011d861d5e2 andstas2007-10-171-2/+4
* - Add entry about phpMyAdmin XSS vulnerability.stas2007-10-171-0/+33
* nagios-plugins -- Long Location Header Buffer Overflow Vulnerabilitymiwi2007-10-131-0/+31
* Document png -- multiple vulnerabilitiesmiwi2007-10-121-0/+44
* Document ImageMagick - Multiple vulnerabilitiesremko2007-10-101-0/+55
* Correct mediawiki package names.remko2007-10-101-7/+1
* - Dokument jdk/jre -- Applet Caching May Allow Network Access Restrictions to...miwi2007-10-091-0/+46
* Document xfs -- multiple vulnerabilities.flz2007-10-081-0/+35
* - Document tcl/tk -- buffer overflow in ReadImage functionmiwi2007-10-051-0/+33
* Document firebird multiple remote buffer overflow vulnerabilitiesdelphij2007-10-051-0/+28
* Update the bugzilla and mediawiki entries to properly match their correctedremko2007-10-031-5/+6
* Update to reflect the fixed version of id3lib.delphij2007-10-021-1/+2
* Document id3lib insecure temporary file creation vulnerabilitydelphij2007-10-021-0/+29
* - modify mediawiki entry (add missing mediawiki18)miwi2007-09-231-0/+5
* Some PHP 5.x vulnerabilities is also found in PHP 4.x series,delphij2007-09-231-1/+6
* Document mediawiki -- cross site scripting vulnerability, our port versionsremko2007-09-211-0/+36
* Document wordpress -- remote sql injection vulnerability, our versions areremko2007-09-211-0/+36
* samba -- nss_info plugin privilege escalation vulnerability, the FreeBSDremko2007-09-211-0/+41
* Document bugzilla -- multiple vulnerabilitiesremko2007-09-211-0/+46
* Document clamav CVE-2007-4510 issue (Remote DoS).delphij2007-09-211-0/+28
* Document coppermine -- multiple vulnerabilities, the FreeBSDremko2007-09-201-0/+28
* Document openoffice -- arbitrary command execution vulnerability,remko2007-09-201-0/+37
* Document bugzilla -- "createmailregexp" security bypass vulnerability,remko2007-09-201-0/+32
* Spell Ulf Harnhammar (ASCII version of name) using UTF-8 instead of HTMLsimon2007-09-201-1/+1
* Document kdm -- passwordless login vulnerabilityremko2007-09-201-0/+65
* Document flyspray -- authentication bypassremko2007-09-201-0/+29
* Document mozilla -- code execution via Quicktime media-link files,remko2007-09-201-0/+57
* Update the PHP vulnerability entry:delphij2007-09-131-8/+51
* Correct a style nit and bump modification date.remko2007-09-121-1/+3
* Document Apache 2.0.x, 2.2.x series' vulnerabilities as welldelphij2007-09-111-0/+74
* There is no code of CVE-2007-3387 vulnerability in evince, therefore removemezz2007-09-111-4/+0
* - lighttpd -- FastCGI header overrun in mod_fastcgimnag2007-09-101-0/+31
* Fix mod_jk's version since PORTEPOCH came into play.remko2007-09-051-1/+2
* rkhunter -- insecure temporary file creationgabor2007-09-051-0/+36
* lsh -- multiple vulnerabilitiesgabor2007-09-051-1/+29
* Document fetchmail -- denial of service on reject of localsimon2007-09-021-0/+34
* Document gtar directory traversal vulnerability.naddy2007-09-021-0/+32
* - Marked sylpheed2 as safe.miwi2007-08-291-1/+2
* - Fix a typo.miwi2007-08-281-1/+1
* - Document Sylpheed / Sylpheed-Claws POP3 Format String Vulnerabilitymiwi2007-08-281-0/+37
* From latest Opera entry:simon2007-08-261-10/+3
* linux-opera and (for the moment defunct) opera-devel are also affected byitetcu2007-08-241-0/+2
* Update vuln.xml for rsync 2.6.9_1 which fixed CVE-2007-4091delphij2007-08-231-1/+2
* Document rsync off-by-one stack overflow vulnerability.delphij2007-08-221-0/+30
* - Update the wordpress -- unmoderated comments disclosure entry. Is safe with...miwi2007-08-161-1/+2
* Add info about www/opera's JavaScript vulnerabilityitetcu2007-08-151-0/+34
* Fix the flac entry by specificing the correct fixed version.remko2007-08-101-1/+2
* - Document fsplib -- multiple vulnerabilitiesmiwi2007-08-031-0/+35
* Document joomla -- multiple vulnerabilitiesmiwi2007-08-031-0/+40
* Use the superseded attribute in the cancelled tcpdump entry.remko2007-08-021-1/+1
* Document FreeBSD -- Buffer overflow in tcpdump(1).remko2007-08-021-30/+43
* Bump modification date for: SA-07:04.fileremko2007-08-021-1/+1
* Correct the fixed version for the jail advisory which was revised yesterday.remko2007-08-021-3/+4
* Document FreeBSD -- Predictable query ids in named(8)remko2007-08-021-0/+39
* - Marked phpSysInfo as safemiwi2007-08-021-1/+1
* Update phpSysInfo entry: the current version (2.5.3) is affected.shaun2007-08-011-1/+2
* Update mozilla entrymiwi2007-08-011-1/+2
* Update the xpdf entrymiwi2007-07-311-1/+1
* Update xpdf entrymiwi2007-07-311-1/+5
* - Fix tcpdump entrymiwi2007-07-311-1/+1
* Document xpdf -- stack based buffer overflowmiwi2007-07-311-0/+55
* - Fix a typomiwi2007-07-311-1/+1
* - Document tcpdump -- remote integer underflow vulnerabilitymiwi2007-07-311-0/+33
* - Document mutt -- buffer overflow vulnerabilitymiwi2007-07-301-0/+35
* - Document p5-Net-DNS -- multiple Vulnerabilitiesmiwi2007-07-291-0/+34
* - Document phpsysinfo -- url Cross-Site Scriptingmiwi2007-07-291-0/+28
* - Document drupal -- Cross site request forgeriesmiwi2007-07-281-0/+70
* - Document vim -- Command Format String Vulnerabilitymiwi2007-07-281-0/+32
* - Document libvorbis - Multiple memory corruption flawsmiwi2007-07-271-0/+29
* Document XSS vulnerabilities in several tomcat versions;delphij2007-07-241-0/+44
* The previous vuxml entry applies to jakarta-tomcat 4.0.x as well, so markdelphij2007-07-241-0/+4
* Document multiple vulnerabilities found in www/tomcat41delphij2007-07-241-0/+30
* Document dokuwiki spellchecker XSS vulnerabilitiesdelphij2007-07-241-0/+37
* Fix last commit: the name tag was empty.simon2007-07-211-1/+1
* Document lighttpd multiple vulnerabilitiesdelphij2007-07-211-0/+31
* Add another reference to mozilla -- multiple vulnerabilities.simon2007-07-201-0/+1
* - Document opera -- multiple vulnerabilities.simon2007-07-201-6/+82
* Document mozilla -- multiple vulnerabilities.simon2007-07-201-0/+76
* Document linuxflashplugin critical vulnerabilities.delphij2007-07-181-0/+34
* - Fix the versions number of typespeed from 4.1.0 to 0.4.1miwi2007-07-091-1/+2
* - Fix the latest wireshark entries by correcting a typo and addingsat2007-07-071-2/+7
* - Document wireshark - Multiple problemsmiwi2007-07-061-0/+30
* - Document typespeed arbitrary code executiongabor2007-07-041-0/+29
* - Fix a typo vcl -> vlcmiwi2007-06-301-1/+1
* - Document vlc - format string vulnerability and integer overflowmiwi2007-06-291-0/+30
* - Document flac123 - stack overflow in comment parsingmiwi2007-06-291-0/+27
* Document gd -- multiple vulnerabilitiesremko2007-06-291-0/+67
* Document that CVE-2007-3257 was fixed with evolution-data-serverdelphij2007-06-281-1/+3
* - Fix modified date in mod_perl entrysat2007-06-281-1/+1
* Mark www/mod_perl2 fixed in version 2.0.3_2,3erwin2007-06-281-2/+2
* Document evolution-data-server remote arbitrary code executiondelphij2007-06-251-0/+30
* The XMLRPC SQL Injection issue with wordpress was addressed in theerwin2007-06-241-1/+2
* Document xpcd buffer overflow vulnerability.gabor2007-06-221-0/+32
* Document clamav -- multiple vulnerabilities.remko2007-06-201-0/+40
* Document SpamAssassin vulnerability CVE-2007-2873, a localdelphij2007-06-181-0/+28
* - Document cups -- Incomplete SSL Negotiation Denial of Service.miwi2007-06-131-0/+29
* - Fix other duplicate entry.miwi2007-06-101-4/+0
* - Document c-ares -- DNS Cache Poisoning Vulnerabilitymiwi2007-06-101-0/+29
* - Fix duplicate entry de-wordpress -> zh-wordpress.miwi2007-06-101-1/+1
* Add zh-wordpress as affected by the last two wordpress entries.gabor2007-06-101-0/+2
* wordpress -- XMLRPC SQL Injectiongabor2007-06-091-0/+71
* - Document webmin -- cross site scriptingmiwi2007-06-091-0/+31
* - The fixed mplayer version number is 0.99.10_10, mark it as such. [1]simon2007-06-081-7/+13
* - Fix mplayer portversion.miwi2007-06-071-1/+1
* - Document mplayer -- cddb stack overflow.miwi2007-06-071-0/+31
* - Note that plone is also affected by 34414a1e-e377-11db-b8ab-000c76189c4cgabor2007-06-061-1/+6
* - gzip 1.3.12 has been patched and is not affected bygabor2007-06-061-1/+2
* Document an information disclosure vulnerability in mod_jk < 1.2.23.erwin2007-06-051-0/+32
* Add an entry for an email header injection vulnerability inerwin2007-06-051-0/+30
generated by cgit (git 2.34.1) at 2024-12-16 03:14:18 +0800