notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)Want a good monitor light? See my photosAll times are UTC		 Ukraine
I started running short on disk space for the non-production FreshPorts hosts. This time, I have decided to ask for donations. See my recent blog post which points to my Patreon account.
Port details
vuxml Vulnerability and eXposure Markup Language DTD
1.1_6 security on this many watch lists=35 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 1.1_6Version of this port present on the latest quarterly branch.
Maintainer: ports-secteam@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2004-02-12 14:24:23
Last Update: 2025-10-09 11:13:39
Commit Hash: 22e3c0a
People watching this port, also watch:: gnupg, nmap, libxml2, postfix, curl
Also Listed In: textproc
License: BSD2CLAUSE
WWW:
https://vuxml.freebsd.org/
Description:
VuXML (the Vulnerability and eXposure Markup Language) is an XML application for documenting security bugs and corrections within a software package collection such as the FreeBSD Ports Collection. This port installs the DTDs required for validating VuXML documents.
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (13 items)
Collapse this list.
  1. /usr/local/share/licenses/vuxml-1.1_6/catalog.mk
  2. /usr/local/share/licenses/vuxml-1.1_6/LICENSE
  3. /usr/local/share/licenses/vuxml-1.1_6/BSD2CLAUSE
  4. @xmlcatmgr share/xml/dtd/vuxml/catalog
  5. @xmlcatmgr share/xml/dtd/vuxml/catalog.xml
  6. share/xml/dtd/vuxml/vuxml-10.dtd
  7. share/xml/dtd/vuxml/vuxml-11.dtd
  8. share/xml/dtd/vuxml/vuxml-model-10.mod
  9. share/xml/dtd/vuxml/vuxml-model-11.mod
  10. share/xml/dtd/vuxml/xml1.dcl
  11. @owner
  12. @group
  13. @mode
Collapse this list.
USE_RC_SUBR (Service Scripts)
  • no SUBR information found for this port
Dependency lines:
  • vuxml>0:security/vuxml
To install the port:
cd /usr/ports/security/vuxml/ && make install clean
To add the package, run one of these commands:
  • pkg install security/vuxml
  • pkg install vuxml
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: vuxml
Flavors: there is no flavor information for this port.
distinfo:
SHA256 (vuxml/vuxml-10.dtd) = 6a635ad2cf45f52361c8c2a29a689157fad4d00519045485bc822d34e04a524e SIZE (vuxml/vuxml-10.dtd) = 2986 SHA256 (vuxml/vuxml-model-10.mod) = 051fed00b52bedde8ee901003fc29f7b95cd904157e31ceef34e6b06f2d1a14a

Expand this list (11 items)

Collapse this list.

SIZE (vuxml/vuxml-model-10.mod) = 10599 SHA256 (vuxml/vuxml-11.dtd) = 12b50061d7bb34cecffede2e08d439e4469324376d55aeb7c73eb6aab0f36af1 SIZE (vuxml/vuxml-11.dtd) = 3063 SHA256 (vuxml/vuxml-model-11.mod) = a40777208625a3029c6f416aeeea733f614802a6a5f26035a4e445a09e61a47c SIZE (vuxml/vuxml-model-11.mod) = 13282 SHA256 (vuxml/xml1.dcl) = 343efa94c4e1302e85e08b2d1791d86e50aac1ecdbc3161daecac100e4726847 SIZE (vuxml/xml1.dcl) = 7372 SHA256 (vuxml/catalog) = 479a69cf02995603443fd1f3b5b33f97811670931f87f53be99a727d664abc66 SIZE (vuxml/catalog) = 549 SHA256 (vuxml/catalog.xml) = 7b2e2850f57264eeba0ccd3d1fc161b9d5ce3071ae0ec51b9da7fa956f2a6509 SIZE (vuxml/catalog.xml) = 2150

Collapse this list.

Packages (timestamps in pop-ups are UTC):
vuxml
ABIaarch64amd64armv6armv7i386powerpcpowerpc64powerpc64le
FreeBSD:13:latest1.1_61.1_61.1_51.1_61.1_6-1.1_5-
FreeBSD:13:quarterly1.1_61.1_61.1_61.1_61.1_61.1_61.1_61.1_6
FreeBSD:14:latest1.1_61.1_61.1_61.1_61.1_61.1_6-1.1_6
FreeBSD:14:quarterly1.1_61.1_6-1.1_61.1_61.1_61.1_61.1_6
FreeBSD:15:latest1.1_61.1_6n/a1.1_6n/a1.1_61.1_61.1_6
FreeBSD:15:quarterly--n/a-n/a---
FreeBSD:16:latest-1.1_6n/a-n/a---
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Runtime dependencies:
  1. xmlcatmgr : textproc/xmlcatmgr
  2. xsltproc : textproc/libxslt
  3. VERSION : textproc/xhtml-modularization
  4. xhtml-basic10.dtd : textproc/xhtml-basic
  5. python3.11 : lang/python311
There are no ports dependent upon this port
Configuration Options:
No options to configure
Options name:
security_vuxml
USES:
python:run
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. http://www.vuxml.org/dtd/vuxml-1/
Collapse this list.

Number of commits found: 7770 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
1.1_6
09 Oct 2025 11:13:39
commit hash: 22e3c0a71e350eef0ed59ab655929c0442730f5fcommit hash: 22e3c0a71e350eef0ed59ab655929c0442730f5fcommit hash: 22e3c0a71e350eef0ed59ab655929c0442730f5fcommit hash: 22e3c0a71e350eef0ed59ab655929c0442730f5f files touched by this commit		 Guido Falsi (madpilot) search for other commits by this committer 
security/vuxml: Report mailpit information disclosure vuln

Obtained from:	https://github.com/axllent/mailpit/releases/tag/v1.27.10
1.1_6
07 Oct 2025 15:50:01
commit hash: 6362280e91dc7a3987f4959523453f362327e537commit hash: 6362280e91dc7a3987f4959523453f362327e537commit hash: 6362280e91dc7a3987f4959523453f362327e537commit hash: 6362280e91dc7a3987f4959523453f362327e537 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add Mozilla vulnerabilities
1.1_6
07 Oct 2025 06:21:45
commit hash: 06fc096ebd971cfb2461755fb6ee2a92ad66cba2commit hash: 06fc096ebd971cfb2461755fb6ee2a92ad66cba2commit hash: 06fc096ebd971cfb2461755fb6ee2a92ad66cba2commit hash: 06fc096ebd971cfb2461755fb6ee2a92ad66cba2 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Fix mongodb entries

Remove entry that only affects 8.1.x which we don't still have in the repo.
Modify an entry removing the 8.1.x entry from the affected packages

Reported by:	ronald-lists@klop.ws
Fixes:		7ec6fda16269
1.1_6
06 Oct 2025 16:34:20
commit hash: 9e279d1d0f3b9669275b55059cb7a5041a35b828commit hash: 9e279d1d0f3b9669275b55059cb7a5041a35b828commit hash: 9e279d1d0f3b9669275b55059cb7a5041a35b828commit hash: 9e279d1d0f3b9669275b55059cb7a5041a35b828 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add Mozilla vulnerabilities
1.1_6
06 Oct 2025 15:50:56
commit hash: c361c54f794ba73eff8afd4141fc47f624af5d02commit hash: c361c54f794ba73eff8afd4141fc47f624af5d02commit hash: c361c54f794ba73eff8afd4141fc47f624af5d02commit hash: c361c54f794ba73eff8afd4141fc47f624af5d02 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Remove redundant version information
1.1_6
06 Oct 2025 15:43:39
commit hash: 7ec6fda162694d1ef177aef2cc8f88174d4c8716commit hash: 7ec6fda162694d1ef177aef2cc8f88174d4c8716commit hash: 7ec6fda162694d1ef177aef2cc8f88174d4c8716commit hash: 7ec6fda162694d1ef177aef2cc8f88174d4c8716 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add mongodb vulnerabilities

 * CVE-2025-10061
 * CVE-2025-10060
 * CVE-2025-10059
 * CVE-2025-7259
1.1_6
05 Oct 2025 17:27:00
commit hash: 5c4e719056367c3ec3b6a7174eb8aedce2afef77commit hash: 5c4e719056367c3ec3b6a7174eb8aedce2afef77commit hash: 5c4e719056367c3ec3b6a7174eb8aedce2afef77commit hash: 5c4e719056367c3ec3b6a7174eb8aedce2afef77 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add mongodb6 vulnerability

 * CVE-2024-8654
1.1_6
04 Oct 2025 12:00:53
commit hash: 9cf9b7f5ed34d4ed3851db88fcfb5385a857b487commit hash: 9cf9b7f5ed34d4ed3851db88fcfb5385a857b487commit hash: 9cf9b7f5ed34d4ed3851db88fcfb5385a857b487commit hash: 9cf9b7f5ed34d4ed3851db88fcfb5385a857b487 files touched by this commit		 Muhammad Moinur Rahman (bofh) search for other commits by this committer 
security/vuxml: Add multiple CVEs for redis and valkey
1.1_6
04 Oct 2025 09:34:35
commit hash: 467dbc3ca689e904f03256f45b9c2b99edee5ffdcommit hash: 467dbc3ca689e904f03256f45b9c2b99edee5ffdcommit hash: 467dbc3ca689e904f03256f45b9c2b99edee5ffdcommit hash: 467dbc3ca689e904f03256f45b9c2b99edee5ffd files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: Add CVE-2025-61962 to fetchmail

add CVE-2025-61962 to existing fetchmail < 6.5.6 SMTP AUTH entry

Security:	21fba35e-a05f-11f0-a8b8-a1ef31191bc1
Security:	CVE-2025-61962
1.1_6
04 Oct 2025 03:09:08
commit hash: 3ed40657b3b00e87f57140c2deba7498450bec65commit hash: 3ed40657b3b00e87f57140c2deba7498450bec65commit hash: 3ed40657b3b00e87f57140c2deba7498450bec65commit hash: 3ed40657b3b00e87f57140c2deba7498450bec65 files touched by this commit		 Jason E. Hale (jhale) search for other commits by this committer 
security/vuxml: Add www/qt6-webengine < 6.9.3
1.1_6
03 Oct 2025 13:58:16
commit hash: 45aebb954a565df2b2fa813427a38c85d7bffe01commit hash: 45aebb954a565df2b2fa813427a38c85d7bffe01commit hash: 45aebb954a565df2b2fa813427a38c85d7bffe01commit hash: 45aebb954a565df2b2fa813427a38c85d7bffe01 files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: Add mail/fetchmail < 6.5.6 vuln (SMTP AUTH)

CVE requested from MITRE but not received yet.

URL:		https://www.fetchmail.info/fetchmail-SA-2025-01.txt
Security:	21fba35e-a05f-11f0-a8b8-a1ef31191bc1
1.1_6
03 Oct 2025 07:13:30
commit hash: 7d07016e1148eefad1830d21abab26c9853828fecommit hash: 7d07016e1148eefad1830d21abab26c9853828fecommit hash: 7d07016e1148eefad1830d21abab26c9853828fecommit hash: 7d07016e1148eefad1830d21abab26c9853828fe files touched by this commit		 Philip Paeps (philip) search for other commits by this committer 
security/vuxml: reference FreeBSD-SA-25:08.openssl

Add a reference to FreeBSD-SA-25:08.openssl (issued 2025-09-30) to the
vuxml entry for OpenSSL CVE-2025-9230, CVE-2025-9231 and CVE-2025-9232.

FreeBSD-SA-25:08.openssl affects all supported versions of FreeBSD
1.1_6
03 Oct 2025 07:03:05
commit hash: 49eb33007932646c9189087ce3c9f9665e5ec22ecommit hash: 49eb33007932646c9189087ce3c9f9665e5ec22ecommit hash: 49eb33007932646c9189087ce3c9f9665e5ec22ecommit hash: 49eb33007932646c9189087ce3c9f9665e5ec22e files touched by this commit		 Robert Nagy (rnagy) search for other commits by this committer 
security/vuxml: add www/*chromium < 141.0.7390.54

Obtained
from:	https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html
1.1_6
02 Oct 2025 23:17:17
commit hash: 6308a7fe250c1719f91537838474c13df85c7ac8commit hash: 6308a7fe250c1719f91537838474c13df85c7ac8commit hash: 6308a7fe250c1719f91537838474c13df85c7ac8commit hash: 6308a7fe250c1719f91537838474c13df85c7ac8 files touched by this commit		 Wen Heping (wen) search for other commits by this committer 
security/vuxml: Document Django's multiple vulnerabilities
1.1_6
01 Oct 2025 18:48:27
commit hash: 7f1aba1456a1055e2bc3d274eb62b48f1e5e0ac3commit hash: 7f1aba1456a1055e2bc3d274eb62b48f1e5e0ac3commit hash: 7f1aba1456a1055e2bc3d274eb62b48f1e5e0ac3commit hash: 7f1aba1456a1055e2bc3d274eb62b48f1e5e0ac3 files touched by this commit		 Bernard Spil (brnrd) search for other commits by this committer 
security/vuxml: Mark OpenSSL 3.6 and 3.3 QUICTLS vulnerable too
1.1_6
01 Oct 2025 09:44:24
commit hash: 810b7de4a97eabe84831064a04d78e5b2db57b40commit hash: 810b7de4a97eabe84831064a04d78e5b2db57b40commit hash: 810b7de4a97eabe84831064a04d78e5b2db57b40commit hash: 810b7de4a97eabe84831064a04d78e5b2db57b40 files touched by this commit		 Muhammad Moinur Rahman (bofh) search for other commits by this committer 
security/vuxml: Add entry for py-mysql-connector-python

PR:		289934
Reported by:	patrik@hildingsson.se
1.1_6
01 Oct 2025 06:52:15
commit hash: cf9db76f7273cdee90d0817325c5e05ed19c1995commit hash: cf9db76f7273cdee90d0817325c5e05ed19c1995commit hash: cf9db76f7273cdee90d0817325c5e05ed19c1995commit hash: cf9db76f7273cdee90d0817325c5e05ed19c1995 files touched by this commit		 Bernard Spil (brnrd) search for other commits by this committer 
security/vuxml: Register OpenSSL vulnerabilities
1.1_6
01 Oct 2025 06:43:48
commit hash: be87e90edaaec6b7ffb7582296c16ba353ababa3commit hash: be87e90edaaec6b7ffb7582296c16ba353ababa3commit hash: be87e90edaaec6b7ffb7582296c16ba353ababa3commit hash: be87e90edaaec6b7ffb7582296c16ba353ababa3 files touched by this commit		 Bernard Spil (brnrd) search for other commits by this committer 
security/vuxml: Register LibreSSL vulnerability
1.1_6
28 Sep 2025 16:16:39
commit hash: 2b0d9157cec0432e31918e523da2caf5702eb573commit hash: 2b0d9157cec0432e31918e523da2caf5702eb573commit hash: 2b0d9157cec0432e31918e523da2caf5702eb573commit hash: 2b0d9157cec0432e31918e523da2caf5702eb573 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: krb5-1.20 is not vulnerable to CVE-2023-39975

PR:		274159
Reported by:	wollman@FreeBSD.org
1.1_6
28 Sep 2025 16:03:03
commit hash: ba0e37e3255417721cc1f0061ca2c957a569e6f6commit hash: ba0e37e3255417721cc1f0061ca2c957a569e6f6commit hash: ba0e37e3255417721cc1f0061ca2c957a569e6f6commit hash: ba0e37e3255417721cc1f0061ca2c957a569e6f6 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: fix SQLite entry

Vulnerable version range for sqlite currently bundled in
linux_base-rl9 (CVE-2025-6595).

PR:		289358
Reported by:	jcfyecrayz@liamekaens.com
1.1_6
28 Sep 2025 15:55:04
commit hash: 8fa77d4f3c76ca00c21c02bad59d2e973057d4e6commit hash: 8fa77d4f3c76ca00c21c02bad59d2e973057d4e6commit hash: 8fa77d4f3c76ca00c21c02bad59d2e973057d4e6commit hash: 8fa77d4f3c76ca00c21c02bad59d2e973057d4e6 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Record textproc/goldendict vulnerability
1.1_6
26 Sep 2025 17:19:31
commit hash: 2cc390f6a901d4241033431cc321e3fabd5678c0commit hash: 2cc390f6a901d4241033431cc321e3fabd5678c0commit hash: 2cc390f6a901d4241033431cc321e3fabd5678c0commit hash: 2cc390f6a901d4241033431cc321e3fabd5678c0 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Fix some reporters

Reported by:	dan@langille.org
1.1_6
26 Sep 2025 16:17:33
commit hash: 91756ff4e1a05f595e7fe61d8caf0edf03c2a4cccommit hash: 91756ff4e1a05f595e7fe61d8caf0edf03c2a4cccommit hash: 91756ff4e1a05f595e7fe61d8caf0edf03c2a4cccommit hash: 91756ff4e1a05f595e7fe61d8caf0edf03c2a4cc files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer
Author: Pau Amma		 
security/vuxml: record security fixes in sysutils/libudisks 2.10.{2,91}

PR:		289689
Reported by:	pauamma@gundo.com
1.1_6
26 Sep 2025 15:59:40
commit hash: 72f395160f024f90ed09a24c98fdee7c9e35ef6ecommit hash: 72f395160f024f90ed09a24c98fdee7c9e35ef6ecommit hash: 72f395160f024f90ed09a24c98fdee7c9e35ef6ecommit hash: 72f395160f024f90ed09a24c98fdee7c9e35ef6e files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Fix entry

"SO-AND-SO" is not a valid reporter.

Fixes:	21c77e23be74b
1.1_6
26 Sep 2025 15:57:23
commit hash: 0b4ab02703d36a24dc55bf9b4839484a3c1fe639commit hash: 0b4ab02703d36a24dc55bf9b4839484a3c1fe639commit hash: 0b4ab02703d36a24dc55bf9b4839484a3c1fe639commit hash: 0b4ab02703d36a24dc55bf9b4839484a3c1fe639 files touched by this commit		 Florian Smeets (flo) search for other commits by this committer
Author: Ralf van der Enden		 
security/vuxml: Document net/quiche vulnerabilities

PR:		289810
1.1_6
26 Sep 2025 15:30:04
commit hash: 054583453e30d9f15ef804e58b6be1c7aa986d38commit hash: 054583453e30d9f15ef804e58b6be1c7aa986d38commit hash: 054583453e30d9f15ef804e58b6be1c7aa986d38commit hash: 054583453e30d9f15ef804e58b6be1c7aa986d38 files touched by this commit		 Florian Smeets (flo) search for other commits by this committer 
security/vuxml: Add 1.9.X branch of dnsdist to recent entry

PR:		289811
1.1_6
26 Sep 2025 06:37:21
commit hash: e9faa0bdb9eeb688080f9e65cddc06fa3038a1e3commit hash: e9faa0bdb9eeb688080f9e65cddc06fa3038a1e3commit hash: e9faa0bdb9eeb688080f9e65cddc06fa3038a1e3commit hash: e9faa0bdb9eeb688080f9e65cddc06fa3038a1e3 files touched by this commit		 Matthias Fechner (mfechner) search for other commits by this committer 
security/vuxml: gitlab vulnerabilities
1.1_6
25 Sep 2025 23:34:48
commit hash: ebd38b03a85ce7cf3a48324fc94c162b6258eca5commit hash: ebd38b03a85ce7cf3a48324fc94c162b6258eca5commit hash: ebd38b03a85ce7cf3a48324fc94c162b6258eca5commit hash: ebd38b03a85ce7cf3a48324fc94c162b6258eca5 files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: add openvpn-devel < 2.7beta2 vuln

PR:		289838
Security:	e5cf9f44-9a64-11f0-8241-93c889bb8de1
Security:	CVE-2025-10680
1.1_6
24 Sep 2025 18:28:18
commit hash: bc49b2190bef7ecac2082d1fa666a3ac50f8667acommit hash: bc49b2190bef7ecac2082d1fa666a3ac50f8667acommit hash: bc49b2190bef7ecac2082d1fa666a3ac50f8667acommit hash: bc49b2190bef7ecac2082d1fa666a3ac50f8667a files touched by this commit		 Florian Smeets (flo) search for other commits by this committer
Author: Ralf van der Enden		 
security/vuxml: Add dns/dnsdist vulnerability < 2.0.1
1.1_6
23 Sep 2025 21:00:20
commit hash: 8ff1e4729c620fbc3913cc133248f68de6f06f31commit hash: 8ff1e4729c620fbc3913cc133248f68de6f06f31commit hash: 8ff1e4729c620fbc3913cc133248f68de6f06f31commit hash: 8ff1e4729c620fbc3913cc133248f68de6f06f31 files touched by this commit		 Robert Nagy (rnagy) search for other commits by this committer 
security/vuxml: add www/*chromium < 140.0.7339.207

Obtained
from:	https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_23.html
1.1_6
22 Sep 2025 12:31:03
commit hash: 59e881240397247ebdbb8df07b875018fc79063dcommit hash: 59e881240397247ebdbb8df07b875018fc79063dcommit hash: 59e881240397247ebdbb8df07b875018fc79063dcommit hash: 59e881240397247ebdbb8df07b875018fc79063d files touched by this commit		 Robert Nagy (rnagy) search for other commits by this committer 
security/vuxml: add www/*chromium < 140.0.7339.185

Obtained
from:	https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_17.html
1.1_6
20 Sep 2025 08:08:22
commit hash: 470e666a6913eef26bccc28b7c7810137fa9d007commit hash: 470e666a6913eef26bccc28b7c7810137fa9d007commit hash: 470e666a6913eef26bccc28b7c7810137fa9d007commit hash: 470e666a6913eef26bccc28b7c7810137fa9d007 files touched by this commit		 Daniel Engberg (diizzy) search for other commits by this committer 
security/vuxml: Add pcre2 vulnerability

Document CVE-2025-58050
1.1_6
18 Sep 2025 21:11:18
commit hash: 541e919be46e40fd97ecafc99d4241d538f65eb9commit hash: 541e919be46e40fd97ecafc99d4241d538f65eb9commit hash: 541e919be46e40fd97ecafc99d4241d538f65eb9commit hash: 541e919be46e40fd97ecafc99d4241d538f65eb9 files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: update expat records

Reported by:	delphij
Fixes:		f0e1c34246486f53b0636ec39f73edb116a52f3f
1.1_6
18 Sep 2025 21:05:59
commit hash: f0e1c34246486f53b0636ec39f73edb116a52f3fcommit hash: f0e1c34246486f53b0636ec39f73edb116a52f3fcommit hash: f0e1c34246486f53b0636ec39f73edb116a52f3fcommit hash: f0e1c34246486f53b0636ec39f73edb116a52f3f files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: add expat2 vulnerability
1.1_6
17 Sep 2025 18:38:44
commit hash: 9e36425c890d8c478f2c2a9163d9524699b7b275commit hash: 9e36425c890d8c478f2c2a9163d9524699b7b275commit hash: 9e36425c890d8c478f2c2a9163d9524699b7b275commit hash: 9e36425c890d8c478f2c2a9163d9524699b7b275 files touched by this commit		 Li-Wen Hsu (lwhsu) search for other commits by this committer 
security/vuxml: Document Jenkins Security Advisory 2025-09-17

Sponsored by:	The FreeBSD Foundation
1.1_6
16 Sep 2025 14:55:43
commit hash: 817fbf37bfdbdaa6ec78931055244ed6c29d3b7bcommit hash: 817fbf37bfdbdaa6ec78931055244ed6c29d3b7bcommit hash: 817fbf37bfdbdaa6ec78931055244ed6c29d3b7bcommit hash: 817fbf37bfdbdaa6ec78931055244ed6c29d3b7b files touched by this commit		 Tijl Coosemans (tijl) search for other commits by this committer 
security/vuxml: Merge 2 entries for CUPS

Reported by:	osa
1.1_6
16 Sep 2025 07:24:15
commit hash: 29e24be904285c8ad259c6340cdef805c07e1281commit hash: 29e24be904285c8ad259c6340cdef805c07e1281commit hash: 29e24be904285c8ad259c6340cdef805c07e1281commit hash: 29e24be904285c8ad259c6340cdef805c07e1281 files touched by this commit		 Tijl Coosemans (tijl) search for other commits by this committer 
security/vuxml: Document CUPS vulnerabilities

CVE-2025-58060 cups: Authentication bypass with AuthType Negotiate
CVE-2025-58364 cups: Remote DoS via null dereference
1.1_6
14 Sep 2025 18:29:31
commit hash: 46690f115f8adce65ac9c18677a98fdd927f6df7commit hash: 46690f115f8adce65ac9c18677a98fdd927f6df7commit hash: 46690f115f8adce65ac9c18677a98fdd927f6df7commit hash: 46690f115f8adce65ac9c18677a98fdd927f6df7 files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: correct the product version with a security fix
1.1_6
14 Sep 2025 17:39:16
commit hash: 136fddc527ee7ecc2c2abb1ccdecc0ba23fccec1commit hash: 136fddc527ee7ecc2c2abb1ccdecc0ba23fccec1commit hash: 136fddc527ee7ecc2c2abb1ccdecc0ba23fccec1commit hash: 136fddc527ee7ecc2c2abb1ccdecc0ba23fccec1 files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: add www/unit-java vulnerability
1.1_6
13 Sep 2025 21:59:21
commit hash: f07fe7d978c3748da651dfbb05dbb1f5221d9f1ccommit hash: f07fe7d978c3748da651dfbb05dbb1f5221d9f1ccommit hash: f07fe7d978c3748da651dfbb05dbb1f5221d9f1ccommit hash: f07fe7d978c3748da651dfbb05dbb1f5221d9f1c files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: update cups vulnerabilities
1.1_6
12 Sep 2025 16:42:10
commit hash: 1fc296931426852ac667df658eff1d10a83c43decommit hash: 1fc296931426852ac667df658eff1d10a83c43decommit hash: 1fc296931426852ac667df658eff1d10a83c43decommit hash: 1fc296931426852ac667df658eff1d10a83c43de files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: add print/cups < 2.4.13
1.1_6
11 Sep 2025 08:27:28
commit hash: b0bee944f43709099d45361d81d3c6d88aad2eb8commit hash: b0bee944f43709099d45361d81d3c6d88aad2eb8commit hash: b0bee944f43709099d45361d81d3c6d88aad2eb8commit hash: b0bee944f43709099d45361d81d3c6d88aad2eb8 files touched by this commit		 Robert Nagy (rnagy) search for other commits by this committer 
security/vuxml: add www/*chromium < 140.0.7339.127

Obtained
from:	https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_9.html
1.1_6
11 Sep 2025 05:20:29
commit hash: 15ef27da630c4a83043c5e52d2d08627f98473eacommit hash: 15ef27da630c4a83043c5e52d2d08627f98473eacommit hash: 15ef27da630c4a83043c5e52d2d08627f98473eacommit hash: 15ef27da630c4a83043c5e52d2d08627f98473ea files touched by this commit		 Matthias Fechner (mfechner) search for other commits by this committer 
security/vuxml: document gitlab vulnerabilities
1.1_6
07 Sep 2025 09:51:29
commit hash: 3d004bae0d78917791519bb0c2dc240a4636154bcommit hash: 3d004bae0d78917791519bb0c2dc240a4636154bcommit hash: 3d004bae0d78917791519bb0c2dc240a4636154bcommit hash: 3d004bae0d78917791519bb0c2dc240a4636154b files touched by this commit		 Robert Nagy (rnagy) search for other commits by this committer 
security/vuxml: add www/*chromium < 140.0.7339.80

Obtained
from:	https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop.html
1.1_6
05 Sep 2025 14:46:52
commit hash: b3399ceded2bef0436a78bbb6cc33eb8b172568dcommit hash: b3399ceded2bef0436a78bbb6cc33eb8b172568dcommit hash: b3399ceded2bef0436a78bbb6cc33eb8b172568dcommit hash: b3399ceded2bef0436a78bbb6cc33eb8b172568d files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: adjust libxslt version

Please visit https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=289213
for details.
1.1_6
04 Sep 2025 07:12:01
commit hash: c5c9d253c030e9395b3c7fb711ea6c563b745c8fcommit hash: c5c9d253c030e9395b3c7fb711ea6c563b745c8fcommit hash: c5c9d253c030e9395b3c7fb711ea6c563b745c8fcommit hash: c5c9d253c030e9395b3c7fb711ea6c563b745c8f files touched by this commit		 Jason E. Hale (jhale) search for other commits by this committer 
security/vuxml: Add graphics/exiv2 < 0.28.6
1.1_6
04 Sep 2025 02:47:26
commit hash: 86cbd143db343e08ff1bde9be378a61000f5d7eecommit hash: 86cbd143db343e08ff1bde9be378a61000f5d7eecommit hash: 86cbd143db343e08ff1bde9be378a61000f5d7eecommit hash: 86cbd143db343e08ff1bde9be378a61000f5d7ee files touched by this commit		 Wen Heping (wen) search for other commits by this committer 
security/vuxml: Document Django's multiple vulnerabilities
1.1_6
03 Sep 2025 19:29:53
commit hash: 906980781617cda3b2084ad0c24f45126b8bb646commit hash: 906980781617cda3b2084ad0c24f45126b8bb646commit hash: 906980781617cda3b2084ad0c24f45126b8bb646commit hash: 906980781617cda3b2084ad0c24f45126b8bb646 files touched by this commit		 Palle Girgensohn (girgen) search for other commits by this committer 
security/vuxml: document shibboleth vulnerability
1.1_6
03 Sep 2025 15:38:54
commit hash: 78ab74a93060b71a4b45136121fd24af22129fbccommit hash: 78ab74a93060b71a4b45136121fd24af22129fbccommit hash: 78ab74a93060b71a4b45136121fd24af22129fbccommit hash: 78ab74a93060b71a4b45136121fd24af22129fbc files touched by this commit		 Nicola Vitale (nivit) search for other commits by this committer 
security/vuxml: Add www/linux-vieb < 12.4.0
1.1_6
29 Aug 2025 03:22:52
commit hash: 17a37be97c1032688c120ee3eed8d4607c880430commit hash: 17a37be97c1032688c120ee3eed8d4607c880430commit hash: 17a37be97c1032688c120ee3eed8d4607c880430commit hash: 17a37be97c1032688c120ee3eed8d4607c880430 files touched by this commit		 Matthias Fechner (mfechner) search for other commits by this committer 
security/vuxml: document gitlab vulnerabilities
1.1_6
28 Aug 2025 19:42:05
commit hash: 64e60d652c0e684a9a94b47950d05122f9af511fcommit hash: 64e60d652c0e684a9a94b47950d05122f9af511fcommit hash: 64e60d652c0e684a9a94b47950d05122f9af511fcommit hash: 64e60d652c0e684a9a94b47950d05122f9af511f files touched by this commit		 Renato Botelho (garga) search for other commits by this committer 
security/vuxml: Adjust affected kea versions

CVE-2025-40779 doesn't affect Kea 2.6.x, which is the version present on
quarterly branch.  On net/kea, it only affects 3.0.0 while it affects
3.1.0 and 2.7.x on net/kea-devel.
1.1_6
28 Aug 2025 19:32:40
commit hash: f094f8425566fffceee0f25f0161ce83301023e9commit hash: f094f8425566fffceee0f25f0161ce83301023e9commit hash: f094f8425566fffceee0f25f0161ce83301023e9commit hash: f094f8425566fffceee0f25f0161ce83301023e9 files touched by this commit		 Renato Botelho (garga) search for other commits by this committer
Author: Andrey Pevnev		 
security/vuxml: Add net/kea vulnerability

* CVE-2025-40779
1.1_6
28 Aug 2025 05:06:27
commit hash: e544b072152b2178db0ea8fb055af06a8e0cc67ecommit hash: e544b072152b2178db0ea8fb055af06a8e0cc67ecommit hash: e544b072152b2178db0ea8fb055af06a8e0cc67ecommit hash: e544b072152b2178db0ea8fb055af06a8e0cc67e files touched by this commit		 Jason E. Hale (jhale) search for other commits by this committer 
security/vuxml: Add devel/qt6-base < 6.9.2
1.1_6
28 Aug 2025 05:06:26
commit hash: b663d42d1cdafb02f43bef6b40754ad7e038f473commit hash: b663d42d1cdafb02f43bef6b40754ad7e038f473commit hash: b663d42d1cdafb02f43bef6b40754ad7e038f473commit hash: b663d42d1cdafb02f43bef6b40754ad7e038f473 files touched by this commit		 Jason E. Hale (jhale) search for other commits by this committer 
security/vuxml: Add www/qt6-webengine < 6.9.2
1.1_6
27 Aug 2025 17:02:53
commit hash: 64861d1b7e3dd9f8f77c0cf32eb1ed4f8c701239commit hash: 64861d1b7e3dd9f8f77c0cf32eb1ed4f8c701239commit hash: 64861d1b7e3dd9f8f77c0cf32eb1ed4f8c701239commit hash: 64861d1b7e3dd9f8f77c0cf32eb1ed4f8c701239 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Fix entry

Fixes:	35f7214f7a9ec
1.1_6
27 Aug 2025 17:00:06
commit hash: 0b5abbbf089bddb2e0e75c2eb8235a565d85dfcdcommit hash: 0b5abbbf089bddb2e0e75c2eb8235a565d85dfcdcommit hash: 0b5abbbf089bddb2e0e75c2eb8235a565d85dfcdcommit hash: 0b5abbbf089bddb2e0e75c2eb8235a565d85dfcd files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add SQLite vulnerability

 * CVE-2025-29088
1.1_6
24 Aug 2025 11:42:50
commit hash: 35f7214f7a9ec55b15024145c227dcb86b55be71commit hash: 35f7214f7a9ec55b15024145c227dcb86b55be71commit hash: 35f7214f7a9ec55b15024145c227dcb86b55be71commit hash: 35f7214f7a9ec55b15024145c227dcb86b55be71 files touched by this commit		 Rodrigo Osorio (rodrigo) search for other commits by this committer 
security/vuxml: add p5-Catalyst-Authentication-Credential-HTTP
1.1_6
22 Aug 2025 15:28:41
commit hash: e7f3ac4786b8939aaf3d8324efb8338738bfae5ecommit hash: e7f3ac4786b8939aaf3d8324efb8338738bfae5ecommit hash: e7f3ac4786b8939aaf3d8324efb8338738bfae5ecommit hash: e7f3ac4786b8939aaf3d8324efb8338738bfae5e files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add Mozilla vulnerabilities

 * CVE-2025-9187
 * CVE-2025-9184
 * CVE-2025-9185
 * CVE-2025-9183
 * CVE-2025-9182
 * CVE-2025-9181
 * CVE-2025-9180
 * CVE-2025-9179
1.1_6
15 Aug 2025 16:10:38
commit hash: 7a7f34e4d6aa705e423c8a1f0c6aee526cab32bdcommit hash: 7a7f34e4d6aa705e423c8a1f0c6aee526cab32bdcommit hash: 7a7f34e4d6aa705e423c8a1f0c6aee526cab32bdcommit hash: 7a7f34e4d6aa705e423c8a1f0c6aee526cab32bd files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: add www/nginx-devel < 1.29.1

Obtained from:	https://my.f5.com/manage/s/article/K000152786
1.1_6
14 Aug 2025 19:16:40
commit hash: 8bc173ea40edf74c15189f754b9cd94bb34e090ecommit hash: 8bc173ea40edf74c15189f754b9cd94bb34e090ecommit hash: 8bc173ea40edf74c15189f754b9cd94bb34e090ecommit hash: 8bc173ea40edf74c15189f754b9cd94bb34e090e files touched by this commit		 Robert Nagy (rnagy) search for other commits by this committer 
security/vuxml: add www/*chromium < 139.0.7258.127

Obtained
from:	https://chromereleases.googleblog.com/2025/08/stable-channel-update-for-desktop_12.html
1.1_6
14 Aug 2025 14:10:16
commit hash: bd39e99be4b9ed34cc30d5d75e5e3828d868f9edcommit hash: bd39e99be4b9ed34cc30d5d75e5e3828d868f9edcommit hash: bd39e99be4b9ed34cc30d5d75e5e3828d868f9edcommit hash: bd39e99be4b9ed34cc30d5d75e5e3828d868f9ed files touched by this commit		 Palle Girgensohn (girgen) search for other commits by this committer 
security/vuxml: Add vulnerabilities for PostgreSQL
1.1_6
14 Aug 2025 03:41:47
commit hash: ac49b013aa44fbaac4909a5831509a81d2e9201dcommit hash: ac49b013aa44fbaac4909a5831509a81d2e9201dcommit hash: ac49b013aa44fbaac4909a5831509a81d2e9201dcommit hash: ac49b013aa44fbaac4909a5831509a81d2e9201d files touched by this commit		 Matthias Fechner (mfechner) search for other commits by this committer 
security/vuxml: document gitlab vulnerabilities
1.1_6
13 Aug 2025 15:41:08
commit hash: 56b1f15f02ec64f28452a92319fbbd6c9005d2f2commit hash: 56b1f15f02ec64f28452a92319fbbd6c9005d2f2commit hash: 56b1f15f02ec64f28452a92319fbbd6c9005d2f2commit hash: 56b1f15f02ec64f28452a92319fbbd6c9005d2f2 files touched by this commit		 Ryan Steinmetz (zi) search for other commits by this committer 
security/vuxml: Document www/varnish7 DoS condition
1.1_6
13 Aug 2025 09:19:28
commit hash: 0f0638d4ab0bdc81a39a423f27f62fa3386e45b7commit hash: 0f0638d4ab0bdc81a39a423f27f62fa3386e45b7commit hash: 0f0638d4ab0bdc81a39a423f27f62fa3386e45b7commit hash: 0f0638d4ab0bdc81a39a423f27f62fa3386e45b7 files touched by this commit		 Rodrigo Osorio (rodrigo) search for other commits by this committer 
security/vuxml: add security/p5-Authen-SASL
1.1_6
11 Aug 2025 08:10:50
commit hash: 0aa8752f4444c824b2d6aa0487d447fc261a808fcommit hash: 0aa8752f4444c824b2d6aa0487d447fc261a808fcommit hash: 0aa8752f4444c824b2d6aa0487d447fc261a808fcommit hash: 0aa8752f4444c824b2d6aa0487d447fc261a808f files touched by this commit		 Robert Nagy (rnagy) search for other commits by this committer 
security/vuxml: add www/*chromium < 139.0.7258.66

Obtained
from:	https://chromereleases.googleblog.com/2025/08/stable-channel-update-for-desktop.html
1.1_6
09 Aug 2025 14:19:07
commit hash: 33ef74eef2f054069750ccb4a7ace19f54204476commit hash: 33ef74eef2f054069750ccb4a7ace19f54204476commit hash: 33ef74eef2f054069750ccb4a7ace19f54204476commit hash: 33ef74eef2f054069750ccb4a7ace19f54204476 files touched by this commit		 Bernard Spil (brnrd) search for other commits by this committer 
security/vuxml: Document Apache httpd vulnerability
1.1_6
08 Aug 2025 01:20:58
commit hash: ab46eb7f8e69c5beceec377aaa86bdf3f77f1d36commit hash: ab46eb7f8e69c5beceec377aaa86bdf3f77f1d36commit hash: ab46eb7f8e69c5beceec377aaa86bdf3f77f1d36commit hash: ab46eb7f8e69c5beceec377aaa86bdf3f77f1d36 files touched by this commit		 Philip Paeps (philip) search for other commits by this committer 
security/vuxml: add FreeBSD SA issued on 2025-08-08

FreeBSD-SA-25:07.libarchive affects all supported versions of FreeBSD.
1.1_6
02 Aug 2025 16:57:24
commit hash: 1306e2c0edee451efe457fc147455716d018fc4ecommit hash: 1306e2c0edee451efe457fc147455716d018fc4ecommit hash: 1306e2c0edee451efe457fc147455716d018fc4ecommit hash: 1306e2c0edee451efe457fc147455716d018fc4e files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add Sqlite vulnerability

 * CVE-2025-3277
1.1_6
01 Aug 2025 09:51:05
commit hash: a2e68a806322513ec3cdc2b5e1089dc19ce7e02ecommit hash: a2e68a806322513ec3cdc2b5e1089dc19ce7e02ecommit hash: a2e68a806322513ec3cdc2b5e1089dc19ce7e02ecommit hash: a2e68a806322513ec3cdc2b5e1089dc19ce7e02e files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: navidrome < 0.56.0 CVE-2025-48948

This wasn't mentioned along with the other navidrome < 0.56
vuln and also has a wider affected version range.

Security:	CVE-2025-48948
Security:	95480188-6ebc-11f0-8a78-bf201f293bce
1.1_6
01 Aug 2025 09:45:34
commit hash: 1ba883ceae271337ab4532efc4e2fb6096f5d628commit hash: 1ba883ceae271337ab4532efc4e2fb6096f5d628commit hash: 1ba883ceae271337ab4532efc4e2fb6096f5d628commit hash: 1ba883ceae271337ab4532efc4e2fb6096f5d628 files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: fixup linux_base -> linux_base-rl9
1.1_6
01 Aug 2025 09:41:36
commit hash: 7296fd2fe2b0415f31fe4b843f05b942ae8f9819commit hash: 7296fd2fe2b0415f31fe4b843f05b942ae8f9819commit hash: 7296fd2fe2b0415f31fe4b843f05b942ae8f9819commit hash: 7296fd2fe2b0415f31fe4b843f05b942ae8f9819 files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: clean up sqlite3 version range mess

Several sqlite3 entries mentioned wrong version ranges
with respect to PORTEPOCH and/or forgot the linux-*-sqlite
or, more recently, linux_base port.

While auditing this, I saw several implausible tags that used <gt>
(greater-than) in ranges where I believe that <ge> (greater-or-equal)
would be more adequate.

Add relevant reminders to vuxml's Makefile.

Fix up sqlite3's 2025 entries.

linux_base-rl9 currently ships 3.34.1-7.el9_3, see
emulators/linux_base-rl9/Makefile.version - I don't know if that's
vulnerable or was patched inside Rocky Linux, but let's err on the safe side.
I'll leave it up to emulation@ to clean up this particular entry.
1.1_6
01 Aug 2025 08:52:38
commit hash: 4dac70c7e8ff70ca177f019caaa99b1a1461c74acommit hash: 4dac70c7e8ff70ca177f019caaa99b1a1461c74acommit hash: 4dac70c7e8ff70ca177f019caaa99b1a1461c74acommit hash: 4dac70c7e8ff70ca177f019caaa99b1a1461c74a files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: fix up range for sqlite3's CVE-2025-7458

Security:	f51077bd-6dd7-11f0-9d62-b42e991fc52e
Security:	CVE-2025-7458
1.1_6
31 Jul 2025 06:40:27
commit hash: 041f9ec0e5ce8ba6c3107bcb53b707d33e7f8d1ecommit hash: 041f9ec0e5ce8ba6c3107bcb53b707d33e7f8d1ecommit hash: 041f9ec0e5ce8ba6c3107bcb53b707d33e7f8d1ecommit hash: 041f9ec0e5ce8ba6c3107bcb53b707d33e7f8d1e files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add Sqlite vulnerability

CVE_ID=CVE-2025-7458
1.1_6
29 Jul 2025 20:22:43
commit hash: 9f5786f381e0c67bf6f026863f5971b3ebc11cbecommit hash: 9f5786f381e0c67bf6f026863f5971b3ebc11cbecommit hash: 9f5786f381e0c67bf6f026863f5971b3ebc11cbecommit hash: 9f5786f381e0c67bf6f026863f5971b3ebc11cbe files touched by this commit		 Rodrigo Osorio (rodrigo) search for other commits by this committer 
security/vuxml: Use of Cryptographically Weak Pseudo-Random Number Generator in
p5-Crypt-CBC

Also, fix typo missing space in previous report.
1.1_6
27 Jul 2025 12:31:03
commit hash: 4dc7640d9b8ef0d8fdf6661f8e56629c4f40d659commit hash: 4dc7640d9b8ef0d8fdf6661f8e56629c4f40d659commit hash: 4dc7640d9b8ef0d8fdf6661f8e56629c4f40d659commit hash: 4dc7640d9b8ef0d8fdf6661f8e56629c4f40d659 files touched by this commit		 Dan Langille (dvl) search for other commits by this committer 
security/vuxml: Add devel/viewvc-devel entry
1.1_6
25 Jul 2025 21:59:11
commit hash: 6488e4f3f8eeee8d84a5b869d93e54306b9304f6commit hash: 6488e4f3f8eeee8d84a5b869d93e54306b9304f6commit hash: 6488e4f3f8eeee8d84a5b869d93e54306b9304f6commit hash: 6488e4f3f8eeee8d84a5b869d93e54306b9304f6 files touched by this commit		 Yasuhiro Kimura (yasu) search for other commits by this committer 
security/vuxml: Document possible DoS valnerability in rubygem-resolv
1.1_6
24 Jul 2025 16:09:03
commit hash: 8b56cab1190826004df366df84e5f440b07b609bcommit hash: 8b56cab1190826004df366df84e5f440b07b609bcommit hash: 8b56cab1190826004df366df84e5f440b07b609bcommit hash: 8b56cab1190826004df366df84e5f440b07b609b files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add Mozilla vulnerabilities

 * CVE-2025-8027
 * CVE-2025-8028
 * CVE-2025-8029
 * CVE-2025-8030
 * CVE-2025-8031
 * CVE-2025-8032
 * CVE-2025-8033
 * CVE-2025-8034
 * CVE-2025-8035
 * CVE-2025-8036
 * CVE-2025-8037
 * CVE-2025-8038
 * CVE-2025-8039
 * CVE-2025-8040
 * CVE-2025-8043
 * CVE-2025-8044
1.1_6
24 Jul 2025 16:04:14
commit hash: a3ec65f53174fa30c4e3827ef9dd5808f075bae4commit hash: a3ec65f53174fa30c4e3827ef9dd5808f075bae4commit hash: a3ec65f53174fa30c4e3827ef9dd5808f075bae4commit hash: a3ec65f53174fa30c4e3827ef9dd5808f075bae4 files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: document gdk-pixbuf2 vulnerability
1.1_6
24 Jul 2025 13:08:36
commit hash: ee336d30650bace075385d207fa8ce05e44ced2dcommit hash: ee336d30650bace075385d207fa8ce05e44ced2dcommit hash: ee336d30650bace075385d207fa8ce05e44ced2dcommit hash: ee336d30650bace075385d207fa8ce05e44ced2d files touched by this commit		 Hiroki Tagato (tagattie) search for other commits by this committer
Author: Ralf van der Enden		 
security/vuxml: add dns/powerdns-recursor entry for CVE-2025-30192

PR:		288384
Reported by:	Ralf van der Enden <tremere@cainites.net>
Obtained from:	https://blog.powerdns.com/powerdns-security-advisory-2025-04
1.1_6
24 Jul 2025 03:27:52
commit hash: 33e4ed62ad939c7f92a029db0d1502518cc5635ccommit hash: 33e4ed62ad939c7f92a029db0d1502518cc5635ccommit hash: 33e4ed62ad939c7f92a029db0d1502518cc5635ccommit hash: 33e4ed62ad939c7f92a029db0d1502518cc5635c files touched by this commit		 Matthias Fechner (mfechner) search for other commits by this committer 
security/vuxml: document gitlab vulnerabilities
1.1_6
23 Jul 2025 19:29:20
commit hash: 723a9561ff7c93472186e1d9441358bf897209a9commit hash: 723a9561ff7c93472186e1d9441358bf897209a9commit hash: 723a9561ff7c93472186e1d9441358bf897209a9commit hash: 723a9561ff7c93472186e1d9441358bf897209a9 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add sqlite3 vulnerability

CVE-2025-6965
1.1_6
22 Jul 2025 18:33:02
commit hash: 9cbd5217b0266c260588a6a448670f005e9fba43commit hash: 9cbd5217b0266c260588a6a448670f005e9fba43commit hash: 9cbd5217b0266c260588a6a448670f005e9fba43commit hash: 9cbd5217b0266c260588a6a448670f005e9fba43 files touched by this commit		 Max Brazhnikov (makc) search for other commits by this committer 
security/vuxml: Document 7-zip vulnerability

Prompted by:	asomers@
1.1_6
21 Jul 2025 20:44:53
commit hash: 6599ca7e495f6121655ffdcd0ee70681f3d0d27ecommit hash: 6599ca7e495f6121655ffdcd0ee70681f3d0d27ecommit hash: 6599ca7e495f6121655ffdcd0ee70681f3d0d27ecommit hash: 6599ca7e495f6121655ffdcd0ee70681f3d0d27e files touched by this commit		 Daniel Engberg (diizzy) search for other commits by this committer 
security/vuxml: Adjust affected versions for openh264 (CVE-2025-27091)

Adjust range to since port uses PORTEPOCH

Fixes:		13dd451
1.1_6
20 Jul 2025 04:32:53
commit hash: b71de8a92cc443f09b53a9241eb82be2a7ec1957commit hash: b71de8a92cc443f09b53a9241eb82be2a7ec1957commit hash: b71de8a92cc443f09b53a9241eb82be2a7ec1957commit hash: b71de8a92cc443f09b53a9241eb82be2a7ec1957 files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: document libwasmtime vulnerability
1.1_6
18 Jul 2025 21:03:08
commit hash: 3fc96e7182a5eaa780e486c17b362f7c3d2b418ccommit hash: 3fc96e7182a5eaa780e486c17b362f7c3d2b418ccommit hash: 3fc96e7182a5eaa780e486c17b362f7c3d2b418ccommit hash: 3fc96e7182a5eaa780e486c17b362f7c3d2b418c files touched by this commit		 Hiroki Tagato (tagattie) search for other commits by this committer
Author: Jaap Akkerhuis		 
security/vuxml: document unbound cache poisoning via the ECS-enabled rebirthday
attack

PR:		288276
Reported by:	Jaap Akkerhuis <jaap@NLnetLabs.nl>
1.1_6
16 Jul 2025 20:06:13
commit hash: 8cc2e449b7a6485a9bb1dbb30815e59c356f3816commit hash: 8cc2e449b7a6485a9bb1dbb30815e59c356f3816commit hash: 8cc2e449b7a6485a9bb1dbb30815e59c356f3816commit hash: 8cc2e449b7a6485a9bb1dbb30815e59c356f3816 files touched by this commit		 Michael Osipov (michaelo) search for other commits by this committer 
security/vuxml: Fix ranges for Tomcat vulnerabilities

Approved by:	otis (mentor), jbeich, vvd (maintainer)
Differential Revision:	https://reviews.freebsd.org/D51323
1.1_6
15 Jul 2025 18:37:23
commit hash: 3483eb36894aec0df199affa3096674d5d5f8263commit hash: 3483eb36894aec0df199affa3096674d5d5f8263commit hash: 3483eb36894aec0df199affa3096674d5d5f8263commit hash: 3483eb36894aec0df199affa3096674d5d5f8263 files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: libxml2 fixed version is 2.14.5.

Security:	abbc8912-5efa-11f0-ae84-99047d0a6bcc
1.1_6
14 Jul 2025 18:44:35
commit hash: 683501481217bba56b832ea358a87fae2567fadacommit hash: 683501481217bba56b832ea358a87fae2567fadacommit hash: 683501481217bba56b832ea358a87fae2567fadacommit hash: 683501481217bba56b832ea358a87fae2567fada files touched by this commit		 Bernard Spil (brnrd) search for other commits by this committer 
security/vuxml: Document liboqs vulnerability
1.1_6
14 Jul 2025 09:49:43
commit hash: 0fd8c0634733b737b980c7982a49ac0f96d3bd72commit hash: 0fd8c0634733b737b980c7982a49ac0f96d3bd72commit hash: 0fd8c0634733b737b980c7982a49ac0f96d3bd72commit hash: 0fd8c0634733b737b980c7982a49ac0f96d3bd72 files touched by this commit		 Tijl Coosemans (tijl) search for other commits by this committer 
security/vuxml: Document GnuTLS SA 2025-07-08
1.1_6
12 Jul 2025 09:40:26
commit hash: fa129ae393bdd8a9d388a7b8acf6150a4d75781fcommit hash: fa129ae393bdd8a9d388a7b8acf6150a4d75781fcommit hash: fa129ae393bdd8a9d388a7b8acf6150a4d75781fcommit hash: fa129ae393bdd8a9d388a7b8acf6150a4d75781f files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
security/vuxml: extend libxml2/libxslt vuln to linux-* ports
1.1_6
12 Jul 2025 09:13:36
commit hash: dceb46fc8a6eea281dbafc46e6452a9d82550b09commit hash: dceb46fc8a6eea281dbafc46e6452a9d82550b09commit hash: dceb46fc8a6eea281dbafc46e6452a9d82550b09commit hash: dceb46fc8a6eea281dbafc46e6452a9d82550b09 files touched by this commit		 Matthias Andree (mandree) search for other commits by this committer 
textproc/libxml2, textproc/libxslt: vulnerable

Note that libxslt is vulnerable, unfixed, and without maintainer.
Two of four vulnerabilities have been fixed.

Note that libxml2 in our ports is vulnerable and there is no upstream
release fixing these bugs, they need cherry-picks.

Deprecate textproc/xmlto and textproc/minixmlto,
which both depend on the unmaintained and vulnerable libxslt.
I have filed https://pagure.io/xmlto/issue/15 to ask the xmlto
upstream to switch to different XML/XSLT libraries.

Two issues are undisclosed and do not seem to have a CVE assigned yet.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
1.1_6
11 Jul 2025 21:35:16
commit hash: 88df7e7efe3519f4605933b9ca2a82d4021c1bc1commit hash: 88df7e7efe3519f4605933b9ca2a82d4021c1bc1commit hash: 88df7e7efe3519f4605933b9ca2a82d4021c1bc1commit hash: 88df7e7efe3519f4605933b9ca2a82d4021c1bc1 files touched by this commit		 Bernard Spil (brnrd) search for other commits by this committer 
security/vuxml: Document mod_http2 vulnerabilities
1.1_6
11 Jul 2025 21:15:09
commit hash: f29f9d6723b139e3d9dfc29e0db92da20cbb3417commit hash: f29f9d6723b139e3d9dfc29e0db92da20cbb3417commit hash: f29f9d6723b139e3d9dfc29e0db92da20cbb3417commit hash: f29f9d6723b139e3d9dfc29e0db92da20cbb3417 files touched by this commit		 Bernard Spil (brnrd) search for other commits by this committer 
security/vuxml: Document Apache httpd vulnerabilities
1.1_6
10 Jul 2025 21:24:29
commit hash: e021f7c2c5cb428f54e3590d8889ce6fec957163commit hash: e021f7c2c5cb428f54e3590d8889ce6fec957163commit hash: e021f7c2c5cb428f54e3590d8889ce6fec957163commit hash: e021f7c2c5cb428f54e3590d8889ce6fec957163 files touched by this commit		 Sergey A. Osokin (osa) search for other commits by this committer 
security/vuxml: document tomcat vulnerabilities
1.1_6
10 Jul 2025 04:28:58
commit hash: 15e5b4c7274ab4d022d661fe8414682f1ebb412ccommit hash: 15e5b4c7274ab4d022d661fe8414682f1ebb412ccommit hash: 15e5b4c7274ab4d022d661fe8414682f1ebb412ccommit hash: 15e5b4c7274ab4d022d661fe8414682f1ebb412c files touched by this commit		 Matthias Fechner (mfechner) search for other commits by this committer 
security/vuxml: document gitlab vulnerabilities
1.1_6
08 Jul 2025 17:19:09
commit hash: 1bd91518d50c9abade64445524c272d17f9aa43ccommit hash: 1bd91518d50c9abade64445524c272d17f9aa43ccommit hash: 1bd91518d50c9abade64445524c272d17f9aa43ccommit hash: 1bd91518d50c9abade64445524c272d17f9aa43c files touched by this commit		 Renato Botelho (garga) search for other commits by this committer 
security/vuxml: Add multiple git vulnerabilities

* CVE-2025-27613
* CVE-2025-27614
* CVE-2025-46835
* CVE-2025-48384
* CVE-2025-48385
* CVE-2025-48386

Sponsored by:	Rubicon Communications, LLC ("Netgate")
1.1_6
08 Jul 2025 16:10:55
commit hash: 22962d7e27390e11f507ca89c2d0b2f2fc63691bcommit hash: 22962d7e27390e11f507ca89c2d0b2f2fc63691bcommit hash: 22962d7e27390e11f507ca89c2d0b2f2fc63691bcommit hash: 22962d7e27390e11f507ca89c2d0b2f2fc63691b files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Fix mongodb entry

Remove mongodb80 entry since it is not affected.

Reported by:	ronald-lists@klop.ws
Fixes:		fbefcec73997
1.1_6
08 Jul 2025 15:46:14
commit hash: fbefcec73997ad82cd59a76a23ad3ee0d8f055e3commit hash: fbefcec73997ad82cd59a76a23ad3ee0d8f055e3commit hash: fbefcec73997ad82cd59a76a23ad3ee0d8f055e3commit hash: fbefcec73997ad82cd59a76a23ad3ee0d8f055e3 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add mongodb* vulnerabilities

 * CVE-2025-6711
 * CVE-2025-6712
 * CVE-2025-6713
 * CVE-2025-6714
 * CVE-2025-7259
1.1_6
08 Jul 2025 06:30:12
commit hash: 661a3ac7ab2c30437a9fc37c6443b27fce3d9184commit hash: 661a3ac7ab2c30437a9fc37c6443b27fce3d9184commit hash: 661a3ac7ab2c30437a9fc37c6443b27fce3d9184commit hash: 661a3ac7ab2c30437a9fc37c6443b27fce3d9184 files touched by this commit		 Fernando Apesteguía (fernape) search for other commits by this committer 
security/vuxml: Add ModSecurity vulnerability

 * CVE-2025-52891
1.1_6
07 Jul 2025 19:22:05
commit hash: c3574ad8eb341427cebbe54e55c4bb47aa88844ccommit hash: c3574ad8eb341427cebbe54e55c4bb47aa88844ccommit hash: c3574ad8eb341427cebbe54e55c4bb47aa88844ccommit hash: c3574ad8eb341427cebbe54e55c4bb47aa88844c files touched by this commit		 Yasuhiro Kimura (yasu) search for other commits by this committer 
security/vuxml: Document multiple vlunerabilities in redis and valky

Number of commits found: 7770 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
Security Policy
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
mailpitOct 09
firefoxOct 07
firefoxOct 07
firefox-esrOct 07
mongodb60*Oct 07
mongodb70*Oct 07
thunderbirdOct 07
thunderbirdOct 07
firefoxOct 06
firefox-esrOct 06
mongodb60Oct 06
mongodb60Oct 06
mongodb70Oct 06
mongodb70Oct 06
mongodb80Oct 06

25 vulnerabilities affecting 341 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last processed:
2025-10-09 11:16:17 UTC


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)

Calculated hourly:
Port count 33755
Broken 125
Deprecated 214
Ignore 244
Forbidden 0
Restricted 2
No CDROM 1
Vulnerable 37
Expired 10
Set to expire 160
Interactive 0
new 24 hours 6
new 48 hours13
new 7 days47
new fortnight105
new month175
Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD 		Valid HTML, CSS, and RSS. Copyright © 2000-2025 Dan Langille. All rights reserved.