aboutsummaryrefslogtreecommitdiffstats
path: root/security/vuxml
Commit message (Expand)AuthorAgeFilesLines
* - linux-flashplugin -- multiple vulnerabilitiesmnag2008-01-031-0/+42
* - Fix the last tcl/tk entry for portaudit.miwi2007-12-311-2/+5
* Document dovecot specific LDAP + auth cache configuration may mix up user log...delphij2007-12-301-0/+30
* Add more references to latest opera entry.simon2007-12-301-0/+5
* Make "gallery2 -- multiple vulnerabilities" follow the normal format forsimon2007-12-301-5/+40
* - Document gallery2 -- multiple vulnerabilitiesbeech2007-12-251-0/+26
* Update list if CVE names for latest wireshark entry.simon2007-12-221-9/+9
* - Document e2fsprogs -- heap buffer overflowmiwi2007-12-221-0/+37
* Document wireshark -- multiple vulnerabilities.simon2007-12-201-0/+83
* Document opera -- multiple vulnerabilities.simon2007-12-201-0/+43
* Document peercast -- buffer overflow vulnerability.simon2007-12-201-0/+32
* Unbreak vuln.xml: & -> &simon2007-12-181-1/+2
* Upgrade to Ganglia 3.0.6.brooks2007-12-181-0/+28
* Sort references section for last commit.remko2007-12-151-1/+2
* - Mark latest linux-firefox/seamonkey-devel snapshots as safesat2007-12-141-6/+20
* Document qemu -- Translation Block Local Denial of Service Vulnerabilitynox2007-12-131-0/+34
* Document drupal -- SQL injection vulnerabilityremko2007-12-121-0/+37
* Document samba -- buffer overflow vulnerability.remko2007-12-121-0/+36
* Remove redundant "A" in the latest entryremko2007-12-121-1/+1
* - Fix previous commitmiwi2007-12-121-6/+8
* - Missed a section - smbftpdbeech2007-12-121-1/+1
* - Document smbftpd - format string vulnerability.beech2007-12-121-0/+27
* Document jetty - multiple vulnerabilitiesremko2007-12-101-0/+44
* Update to 2007.12.07 with fix security issue.nork2007-12-091-1/+2
* Document liveMedia -- DoS vulnerabilityremko2007-12-091-0/+34
* Update to reflect the squid issue has been assigneddelphij2007-12-071-1/+2
* - Update gnu-finger entrymiwi2007-12-051-1/+1
* http://nvd.nist.gov/nvd.cfm?cvename=CVE-1999-1165: gnu-finger is old,linimon2007-12-051-0/+28
* Update to reflect an updated www/squid30 version which is nodelphij2007-12-051-1/+1
* Update to reflect an updated www/squid version which is nodelphij2007-12-051-1/+2
* Document squid denial of service vulnerability. This can bedelphij2007-12-051-0/+31
* Remove the rsync entry for now. Better way of handlingdelphij2007-12-021-39/+0
* Document rsync security bypass vulnerability.delphij2007-12-021-0/+39
* Make the rubygem-rails -- JSON XSS vulnerability entry valid UTF-8 (atsimon2007-12-011-2/+2
* Also cover rubygem-activesupport which is part of rails and isdelphij2007-11-281-0/+5
* Document recent Ruby On Rails vulnerabilities.delphij2007-11-281-0/+56
* Document ikiwiki improper symlink verification vulnerability.brix2007-11-281-0/+29
* Document firefox multiple unspecified memory corruption vulnerabilities.delphij2007-11-281-0/+39
* - Document phpmyadmin -- Cross Site Scriptingmiwi2007-11-221-0/+28
* - Update last Samba entry,miwi2007-11-211-1/+3
* Document samba - multiple vulnerabilitiesmiwi2007-11-211-0/+40
* postnuke 0.763 is not vulnerable to 35f2679f-52d7-11db-8f1a-000a48049292delphij2007-11-181-2/+2
* Improve JDK version coverage. We should consider PORTEPOCH'ed versiondelphij2007-11-171-4/+4
* Document PHP multiple vulnerabilities that are fixed by php 5.2.5.delphij2007-11-171-0/+44
* - Fix c93e4d41-75c5-11dc-b903-0016179b2dd5 entrymiwi2007-11-161-9/+8
* print/cups-base is vulnerable for all previous versions toerwin2007-11-151-1/+1
* Document mt-daapd -- denial of service vulnerability, alsoremko2007-11-141-1/+36
* - Update xpdf -- multiple remote Stream.CC vulnerabilitiesmiwi2007-11-141-1/+2
* o Add a patch for CVE-2007-5846, and add an entry for vuxml.kuriyama2007-11-141-0/+25
* - Document flac -- media file processing integer overflow vulnerabilitiesmiwi2007-11-131-0/+35
* Unbreak file by closing </li> tag.simon2007-11-131-1/+1
* Document xpdf arbitrary code execution vulnerability, as documented indelphij2007-11-131-0/+64
* dinoex@ has choosen to apply a vendor patch that has resolved CVE-2007-4351delphij2007-11-131-1/+2
* Document plone arbitrary code execution vulnerability.delphij2007-11-121-0/+30
* - Updated the last gftp entry (we have 2.0.18_6 in the portstree not 2.10.18_6)miwi2007-11-121-1/+2
* - Document phpmyadmin -- cross-site scripting vulnerabilitymiwi2007-11-111-0/+30
* Document gallery2 multiple vulnerabilities.delphij2007-11-101-0/+35
* - Document tikiwiki -- multiple vulnerabilitiesmiwi2007-11-091-0/+50
* Document cups-base remote buffer overflow vulnerability.delphij2007-11-091-0/+33
* Make perl entry to cover perl-threaded as well.delphij2007-11-081-1/+6
* - Document perl -- regular expressions unicode data buffer overflowmiwi2007-11-071-0/+29
* Document pcre arbitrary code execution vulnerability.delphij2007-11-071-0/+37
* - perdition entry - correct rangebeech2007-11-061-1/+1
* - Add entry for mail/perditionbeech2007-11-061-0/+31
* - gftp -- multiple vulnerabilitiesmiwi2007-11-061-0/+33
* - Update dirproxy -- remote denial of servicemiwi2007-11-051-1/+6
* - dirproxy -- remote denial of servicemiwi2007-11-041-0/+30
* - Fix discovery date on my previous commitmiwi2007-11-011-1/+1
* - document wordpress -- cross-site scriptingmiwi2007-11-011-0/+36
* Extend coverage to OpenLDAP 2.4.x series which is affected accordingdelphij2007-11-011-0/+2
* Document openldap multiple vulnerabilities.delphij2007-11-011-0/+29
* Bump modified date for entry updated in last commit.simon2007-11-011-1/+1
* Update vuxml to reflect that mod_jk and mod_jk-ap2 havegirgen2007-11-011-1/+4
* - Update mozilla -- code execution via Quicktime media-link filesmiwi2007-10-311-1/+2
* Document django DoS issue.delphij2007-10-291-0/+48
* - Fix day entry for 498a8731-7cfc-11dc-96e6-0012f06707f0miwi2007-10-271-1/+2
* - Document opera -- multiple vulnerabilitiesmiwi2007-10-261-0/+41
* - Document drupal --- multiple vulnerabilitiesmiwi2007-10-251-0/+84
* - Document ldapscripts -- Command Line User Credentials Disclosuremiwi2007-10-231-0/+31
* Modify firefox entry to cover linux-* variants.delphij2007-10-231-0/+6
* Document firefox JavaScript Entrapment vulnerabilities.delphij2007-10-221-0/+33
* - Fix year entry in 498a8731-7cfc-11dc-96e6-0012f06707f0miwi2007-10-211-2/+2
* - Add new line between entries.mnag2007-10-191-0/+2
* - Add entry about recent phpMyAdmin XSS server_status.php vulnerabilitystas2007-10-181-2/+31
* - Fix package name in 51b51d4a-7c0f-11dc-9e47-0011d861d5e2 andstas2007-10-171-2/+4
* - Add entry about phpMyAdmin XSS vulnerability.stas2007-10-171-0/+33
* nagios-plugins -- Long Location Header Buffer Overflow Vulnerabilitymiwi2007-10-131-0/+31
* Document png -- multiple vulnerabilitiesmiwi2007-10-121-0/+44
* Document ImageMagick - Multiple vulnerabilitiesremko2007-10-101-0/+55
* Correct mediawiki package names.remko2007-10-101-7/+1
* - Dokument jdk/jre -- Applet Caching May Allow Network Access Restrictions to...miwi2007-10-091-0/+46
* Document xfs -- multiple vulnerabilities.flz2007-10-081-0/+35
* - Document tcl/tk -- buffer overflow in ReadImage functionmiwi2007-10-051-0/+33
* Document firebird multiple remote buffer overflow vulnerabilitiesdelphij2007-10-051-0/+28
* Update the bugzilla and mediawiki entries to properly match their correctedremko2007-10-031-5/+6
* Update to reflect the fixed version of id3lib.delphij2007-10-021-1/+2
* Document id3lib insecure temporary file creation vulnerabilitydelphij2007-10-021-0/+29
* - modify mediawiki entry (add missing mediawiki18)miwi2007-09-231-0/+5
* Some PHP 5.x vulnerabilities is also found in PHP 4.x series,delphij2007-09-231-1/+6
* Document mediawiki -- cross site scripting vulnerability, our port versionsremko2007-09-211-0/+36
* Document wordpress -- remote sql injection vulnerability, our versions areremko2007-09-211-0/+36
* samba -- nss_info plugin privilege escalation vulnerability, the FreeBSDremko2007-09-211-0/+41
* Document bugzilla -- multiple vulnerabilitiesremko2007-09-211-0/+46
* Document clamav CVE-2007-4510 issue (Remote DoS).delphij2007-09-211-0/+28
* Document coppermine -- multiple vulnerabilities, the FreeBSDremko2007-09-201-0/+28
* Document openoffice -- arbitrary command execution vulnerability,remko2007-09-201-0/+37
* Document bugzilla -- "createmailregexp" security bypass vulnerability,remko2007-09-201-0/+32
* Spell Ulf Harnhammar (ASCII version of name) using UTF-8 instead of HTMLsimon2007-09-201-1/+1
* Document kdm -- passwordless login vulnerabilityremko2007-09-201-0/+65
* Document flyspray -- authentication bypassremko2007-09-201-0/+29
* Document mozilla -- code execution via Quicktime media-link files,remko2007-09-201-0/+57
* Update the PHP vulnerability entry:delphij2007-09-131-8/+51
* Correct a style nit and bump modification date.remko2007-09-121-1/+3
* Document Apache 2.0.x, 2.2.x series' vulnerabilities as welldelphij2007-09-111-0/+74
* There is no code of CVE-2007-3387 vulnerability in evince, therefore removemezz2007-09-111-4/+0
* - lighttpd -- FastCGI header overrun in mod_fastcgimnag2007-09-101-0/+31
* Fix mod_jk's version since PORTEPOCH came into play.remko2007-09-051-1/+2
* rkhunter -- insecure temporary file creationgabor2007-09-051-0/+36
* lsh -- multiple vulnerabilitiesgabor2007-09-051-1/+29
* Document fetchmail -- denial of service on reject of localsimon2007-09-021-0/+34
* Document gtar directory traversal vulnerability.naddy2007-09-021-0/+32
* - Marked sylpheed2 as safe.miwi2007-08-291-1/+2
* - Fix a typo.miwi2007-08-281-1/+1
* - Document Sylpheed / Sylpheed-Claws POP3 Format String Vulnerabilitymiwi2007-08-281-0/+37
* From latest Opera entry:simon2007-08-261-10/+3
* linux-opera and (for the moment defunct) opera-devel are also affected byitetcu2007-08-241-0/+2
* Update vuln.xml for rsync 2.6.9_1 which fixed CVE-2007-4091delphij2007-08-231-1/+2
* Document rsync off-by-one stack overflow vulnerability.delphij2007-08-221-0/+30
* - Update the wordpress -- unmoderated comments disclosure entry. Is safe with...miwi2007-08-161-1/+2
* Add info about www/opera's JavaScript vulnerabilityitetcu2007-08-151-0/+34
* Fix the flac entry by specificing the correct fixed version.remko2007-08-101-1/+2
* - Document fsplib -- multiple vulnerabilitiesmiwi2007-08-031-0/+35
* Document joomla -- multiple vulnerabilitiesmiwi2007-08-031-0/+40
* Use the superseded attribute in the cancelled tcpdump entry.remko2007-08-021-1/+1
* Document FreeBSD -- Buffer overflow in tcpdump(1).remko2007-08-021-30/+43
* Bump modification date for: SA-07:04.fileremko2007-08-021-1/+1
* Correct the fixed version for the jail advisory which was revised yesterday.remko2007-08-021-3/+4
* Document FreeBSD -- Predictable query ids in named(8)remko2007-08-021-0/+39
* - Marked phpSysInfo as safemiwi2007-08-021-1/+1
* Update phpSysInfo entry: the current version (2.5.3) is affected.shaun2007-08-011-1/+2
* Update mozilla entrymiwi2007-08-011-1/+2
* Update the xpdf entrymiwi2007-07-311-1/+1
* Update xpdf entrymiwi2007-07-311-1/+5
* - Fix tcpdump entrymiwi2007-07-311-1/+1
* Document xpdf -- stack based buffer overflowmiwi2007-07-311-0/+55
* - Fix a typomiwi2007-07-311-1/+1
* - Document tcpdump -- remote integer underflow vulnerabilitymiwi2007-07-311-0/+33
* - Document mutt -- buffer overflow vulnerabilitymiwi2007-07-301-0/+35
* - Document p5-Net-DNS -- multiple Vulnerabilitiesmiwi2007-07-291-0/+34
* - Document phpsysinfo -- url Cross-Site Scriptingmiwi2007-07-291-0/+28
* - Document drupal -- Cross site request forgeriesmiwi2007-07-281-0/+70
* - Document vim -- Command Format String Vulnerabilitymiwi2007-07-281-0/+32
* - Document libvorbis - Multiple memory corruption flawsmiwi2007-07-271-0/+29
* Document XSS vulnerabilities in several tomcat versions;delphij2007-07-241-0/+44
* The previous vuxml entry applies to jakarta-tomcat 4.0.x as well, so markdelphij2007-07-241-0/+4
* Document multiple vulnerabilities found in www/tomcat41delphij2007-07-241-0/+30
* Document dokuwiki spellchecker XSS vulnerabilitiesdelphij2007-07-241-0/+37
* Fix last commit: the name tag was empty.simon2007-07-211-1/+1
* Document lighttpd multiple vulnerabilitiesdelphij2007-07-211-0/+31
* Add another reference to mozilla -- multiple vulnerabilities.simon2007-07-201-0/+1
* - Document opera -- multiple vulnerabilities.simon2007-07-201-6/+82
* Document mozilla -- multiple vulnerabilities.simon2007-07-201-0/+76
* Document linuxflashplugin critical vulnerabilities.delphij2007-07-181-0/+34
* - Fix the versions number of typespeed from 4.1.0 to 0.4.1miwi2007-07-091-1/+2
* - Fix the latest wireshark entries by correcting a typo and addingsat2007-07-071-2/+7
* - Document wireshark - Multiple problemsmiwi2007-07-061-0/+30
* - Document typespeed arbitrary code executiongabor2007-07-041-0/+29
* - Fix a typo vcl -> vlcmiwi2007-06-301-1/+1
* - Document vlc - format string vulnerability and integer overflowmiwi2007-06-291-0/+30
* - Document flac123 - stack overflow in comment parsingmiwi2007-06-291-0/+27
* Document gd -- multiple vulnerabilitiesremko2007-06-291-0/+67
* Document that CVE-2007-3257 was fixed with evolution-data-serverdelphij2007-06-281-1/+3
* - Fix modified date in mod_perl entrysat2007-06-281-1/+1
* Mark www/mod_perl2 fixed in version 2.0.3_2,3erwin2007-06-281-2/+2
* Document evolution-data-server remote arbitrary code executiondelphij2007-06-251-0/+30
* The XMLRPC SQL Injection issue with wordpress was addressed in theerwin2007-06-241-1/+2
* Document xpcd buffer overflow vulnerability.gabor2007-06-221-0/+32
* Document clamav -- multiple vulnerabilities.remko2007-06-201-0/+40
* Document SpamAssassin vulnerability CVE-2007-2873, a localdelphij2007-06-181-0/+28
* - Document cups -- Incomplete SSL Negotiation Denial of Service.miwi2007-06-131-0/+29
* - Fix other duplicate entry.miwi2007-06-101-4/+0
* - Document c-ares -- DNS Cache Poisoning Vulnerabilitymiwi2007-06-101-0/+29
* - Fix duplicate entry de-wordpress -> zh-wordpress.miwi2007-06-101-1/+1
* Add zh-wordpress as affected by the last two wordpress entries.gabor2007-06-101-0/+2
* wordpress -- XMLRPC SQL Injectiongabor2007-06-091-0/+71
* - Document webmin -- cross site scriptingmiwi2007-06-091-0/+31
* - The fixed mplayer version number is 0.99.10_10, mark it as such. [1]simon2007-06-081-7/+13
* - Fix mplayer portversion.miwi2007-06-071-1/+1
* - Document mplayer -- cddb stack overflow.miwi2007-06-071-0/+31
* - Note that plone is also affected by 34414a1e-e377-11db-b8ab-000c76189c4cgabor2007-06-061-1/+6
* - gzip 1.3.12 has been patched and is not affected bygabor2007-06-061-1/+2
* Document an information disclosure vulnerability in mod_jk < 1.2.23.erwin2007-06-051-0/+32
* Add an entry for an email header injection vulnerability inerwin2007-06-051-0/+30
* - Document phppgadmin - Cross Site Scripting Vulnerability.miwi2007-06-041-0/+31
* - Add entry for findutils -- GNU locate heap buffer overrun.trasz2007-06-021-0/+32
* Mark file < 4.21 as vulnerable to the heap overflow.delphij2007-05-311-0/+5
* Add an entry for the recent Freetype heap overflow vulnerability.marcus2007-05-251-0/+30
* Document FreeBSD-SA-07:04.file (heap overflow in file(1))remko2007-05-241-0/+40
* - Document squirrelmail -- Cross site scripting in HTML filtermiwi2007-05-221-0/+30
* Document png -- DoS crash vulnerability.simon2007-05-171-0/+32
* Document samba -- multiple vulnerabilities.simon2007-05-171-0/+63
* Backout last change.simon2007-05-111-4/+0
* Update PHP entry to include the vulnerable version so the entry issimon2007-05-112-2/+33
* Document a lot of PHP vulnerabilities, mark all php4 and php5 (+cli,cgi)remko2007-05-071-0/+69
* Bump modification date for the latest mod_perl entry, this was forgottenremko2007-05-071-0/+1
* Standarize the latest entry (qemu) a bit more and add a forgotten 'a'remko2007-05-031-4/+5
* Document multiple qemu vulnerabilitiesnox2007-05-021-0/+53
* Update to 0.57 - fixes possible overflow vulnerability regarding malformedlbr2007-05-011-0/+33
* Document FreeBSD -- IPv6 Routing Header 0 is dangerousremko2007-04-291-0/+44
* Rework the mod_perl entry to note that Mandriva originally releasederwin2007-04-261-2/+7
* Minor wordsmithing in the last mod_perl entry.erwin2007-04-261-3/+3
* Add entry for mod_perl -- remote DOS in PATH_INFO parsingerwin2007-04-261-0/+29
* p5-Crypt-OpenPGP 1.03_1 should not be vulnerable to CVE-2005-0366.tobez2007-04-231-2/+2
* - Mark latest firefox and seamonkey snapshots as safesat2007-04-191-3/+9
* - Add entry for claws-mail - APOP vulnerabilitymiwi2007-04-191-0/+29
* lighttpd -- DOS when access files with mtime 0mnag2007-04-141-0/+63
* - Add freeradius-mysql to the list of affected packages of the recentstas2007-04-131-0/+1
* Mark Google Earth >= 4.0.2414 as safe.flz2007-04-131-1/+2
* - Document recent remote dos vulnerability in freeradius.stas2007-04-131-0/+33
* Add an extra reference to the old "gnupg -- OpenPGP symmetricsimon2007-04-111-1/+2
* Document fetchmail's "insecure APOP authentication" issue (fixed in 6.3.8).barner2007-04-101-0/+35
* Stylify the latest zope entry:remko2007-04-091-20/+21
* Add entry for exploitable buffer overflow in mcweject.stefan2007-04-091-0/+30
* Add entry for webcalendar "noSet" variable overwrite vulnerability.stefan2007-04-081-0/+35
* Add entry for Zope2 cross-site scripting vulnerability.stefan2007-04-081-0/+33
* Remove f951cf4a-a1fe-11db-98f9-0004aca3703d entry. It's duplicate tosem2007-04-011-30/+0
* - Fix versions and dates in latest squid entrysat2007-03-221-4/+4
* Standarise the latest Squid entry.remko2007-03-221-8/+8
* - Add entry for squid TRACE method handling denial of servicemiwi2007-03-211-0/+33
* Fix range for sql-ledger entry which I missed in my original review.simon2007-03-171-1/+1
* Document sql-ledger vulnerabilitylth2007-03-161-0/+41
* Document cacti -- remote injection exploitremko2007-03-161-0/+30
* Correct two tdiary entries:remko2007-03-161-5/+16
* Document two long forgotten Samba vulnerabilities.remko2007-03-161-0/+73
* ktorrent -- multiple vulnerabilities:markus2007-03-151-1/+3
* Spell out multiple vulnerabilities instead of specifying the exactremko2007-03-121-1/+3
* Fix typo in PHP entrymarkus2007-03-121-1/+1
* Document ktorrent -- two vulnerabilitiesmarkus2007-03-121-0/+33
* Add ja-trac-*.kuriyama2007-03-101-0/+4
* - fix typomiwi2007-03-091-1/+1
* - Add entry for mplayer -- DMO File Parsing Buffer Overflow Vulnerabilitymiwi2007-03-091-0/+35
* - Add entry for Trac "download wiki page as text" Cross-Site Scripting Vulner...miwi2007-03-091-0/+31
* Correct affected versions in "mod_jk -- long URL stack overflowsimon2007-03-061-1/+2
* Document mod_jk -- long URL stack overflow vulnerability.simon2007-03-061-0/+37
* For recent "mozilla -- multiple vulnerabilities" entry:simon2007-03-021-2/+5
* Document bind -- Multiple Denial of Service vulnerabilitiesremko2007-02-281-0/+50
* Document FreeBSD -- Jail rc.d script privilege escalationremko2007-02-281-0/+60
* Document: gtar -- name mangling symlink vulnerabilityremko2007-02-281-0/+39
* Document FreeBSD -- Kernel memory disclosure in firewire(4).remko2007-02-281-0/+47
* Document libarchive -- Infinite loop in corrupt archives handling inremko2007-02-271-5/+41
generated by cgit (git 2.34.1) at 2024-12-04 08:12:34 +0800