Document two long forgotten Samba vulnerabilities.

PR:             ports/109049
Submitted by:   KOMATSU Shinichiro <koma2 at lovepeers dot org>

ktorrent -- multiple vulnerabilities:
- Add CVE references
- Bump modification date

Spell out multiple vulnerabilities instead of specifying the exact
amount (we always do that). Also bump the modification date for
this entry and the PHP entry that had been touched

Fix typo in PHP entry

Document ktorrent -- two vulnerabilities

Add ja-trac-*.

- fix typo

- Add entry for mplayer -- DMO File Parsing Buffer Overflow Vulnerability

Reviewed by:    simon (secteam)

- Add entry for Trac "download wiki page as text" Cross-Site Scripting
Vulnerability.

Reviewed by:    simon@

Correct affected versions in "mod_jk -- long URL stack overflow
vulnerability" entry.

Noticed by:     Nick Barkas

Document mod_jk -- long URL stack overflow vulnerability.

For recent "mozilla -- multiple vulnerabilities" entry:

- Mark Seamonkey 1.1.1 as safe.  While mozilla.org does not clearly
  state this, it does seem to be the case. [1]
- Add another critical vulnerability which wasn't on the web site when
  the vuxml entry was initially added.

Reported by:    Volodymyr Kostyrko [1]

Document bind -- Multiple Denial of Service vulnerabilities
Now all Security Advisories are merged again in VuXML.

Document FreeBSD -- Jail rc.d script privilege escalation

Document: gtar -- name mangling symlink vulnerability

Document FreeBSD -- Kernel memory disclosure in firewire(4).

Document libarchive -- Infinite loop in corrupt archives handling in
libarchive.

This is also FreeBSD SA-06:24.libarchive, FreeBSD systems are not
affected, only specific STABLE versions which are not released!!

Document FreeBSD SA 06:23 OpenSSL - Multiple problems in crypto (3).

- Bump modified date for last update in mozilla entry.
- Bump file copyright year.

Extend the latest gecko vulnerabilities to mail/lightning.

Fix whitespace which I forgot before committing the last update.

Document mozilla -- multiple vulnerabilities.

Note that Seamonkey 1.1 is marked vulnerable under the "better safe than
sorry" principle, since it's not yet clear if Seamonkey 1.1 is
vulnerable to this batch of vulnerabilities.

Document snort -- DCE/RPC preprocessor vulnerability.

Document rar -- password prompt buffer overflow vulnerability.

Reminded by:    Nate Eldredge

Mark 5.2.1_2 as the first safe version for the recent "php -- multiple
vulnerabilities" entry since there was a bug in one of the fixes in
upstream 5.2.1 which port revision 5.2.1_2 fixed.

Document php -- multiple vulnerabilities.

joomla -- multiple remote vulnerabilities

Reviewed by:    secteam (remko)
Approved by:    erwin (mentor, implicit)

Document two sircd vulnerabilities:

  sircd -- remote reverse DNS buffer overflow
  sircd -- remote operator privilege escalation vulnerability

Reviewed by:    secteam (remko)
Approved by:    erwin (mentor)

- Document multple net/cacti vulnerabilities.

Add mplayer RealMedia RTSP streams buffer overflow entry.

PR:             ports/107217
Submitted by:   Thomas E. Zander (multimedia/mplayer maintainer)
Reviewed by:    simon@

Document two fetchmail vulnerabilities.

See also:       http://fetchmail.berlios.de/fetchmail-SA-2006-02.txt
                http://fetchmail.berlios.de/fetchmail-SA-2006-03.txt

Reported by:    Matthias Andree (upstream author)

Document opera -- multiple vulnerabilities.

Upgrade drupal to 4.7.5 fixing a couple security issues.
Upgrade drupal-pubcookie and drupal-textile to the 4.7 versions.

Submitted by:   Nick Hilliard <nick at foobar dot org> (upgrade to 4.7.4)
Security:       vid:3d8d3548-9d02-11db-a541-000ae42e9b93

Unbreak file by using & in w3m entry.

Pointy hat to:  nobutaka
Reported by:    Philipp Wuensche

Document a format string vulnerability of w3m.

- Document www/plone vulnerability

Reviewed by:    simon
Approved by:    erwin (mentor)

- Update the www/zope entry to indicate it is fixed now

PR:             ports/106505
Submitted by:   HAYASHI Yasushi <yasi@yasi.to>
Reviewed by:    simon
Approved by:    erwin (mentor)

phpbb -- NULL byte injection vulnerability has been fixed in
their 2.0.22, so mark it as safe.  Update to the port is pending.

Add an entry for recently fixed proftpd remote code execution
vulnerabilities.

Reviewed by:    remoko

Document gzip -- multiple vulnerabilities, this is FreeBSD-SA06:21.gzip

Document bind9 -- Denial of Service in named(8) which is also known
as FreeBSD-SA-06:20.bind

Notice: The previous commit was FreeBSD-SA-06:19.openssl

Document openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3)

sql-ledger -- multiple vulnerabilities

Reviewed by:    remko

Update several entries, making them a bit clearer (Were possible),
adjusting some package names, and collapsing some ruby entries that
can be combined. Also properly sort the <bid> and <cvename> tags.
b comes before c.

Document the recent D-BUS vulnerability as described by CVE-2006-6107.

Submitted by:   mnag

- evince -- Buffer Overflow Vulnerability

- Change spaces to tabs in <name> and <range>
- Remove some empty lines
- Respect 2 spaces between <body> and <p>
- Respect empty line between <vuln vid=""> entry.

tDiary - Injection Vulnerability

- wv -- Multiple Integer Overflow Vulnerabilities

- wv2 -- Integer Overflow Vulnerability

- Fix tnftpd entry (made validate happy)

tnftpd - remote root exploit

Reviewed by:    simon
Approved by:    secteam

- clamav -- Multipart Nestings Denial of Service

Rewrite the libxine entry:

o Use the FDP style to fill in the entry.
o Remove the secunia references and use the libxine information.
o Properly sort the references section
o Add the modified tag (since I changed it).

Add an entry for libxine multiple buffer overflow vulnerabilities.

- Ok. gnupg-devel are not affected.

- Add gnupg-devel package in last entry
- Add secunia reference in las entry

Forced commit to note that my last commit is:

Approved by:    secteam (remko)

* Fix typo in the latest GnuPG entry, inherited from the original message
* Fix the URL in references, the former one gives 404 Not found.
  Kuriyama, where did you get it from?

Add CVE-2006-6235 entry for GnuPG.

- Add a modified field for the entry, touched by the previous commit

- List all affected packages for the Novermber ruby cgi DOS vulnerability
- This vulnerability was not fixed in ruby_static

- Documenet ruby cgi library vulnerability

- Document buffer overflow vulnerabilities in the libmusicbrainz.

Fix markup in last entry so the file is valid XML again.

Pointy hat to:  simon

- Add a entry for www/tDiary, www/tDiary-devel

Reviewed by:    simon

- Document the SGI Image File heap overflow vulnerability in ImageMagick

Document "gtar -- GNUTYPE_NAMES directory traversal vulnerability".

Document 'kronolith -- arbitrary local file inclusion vulnerability'

In latest gnupg entry:
- Use "Werner Koch reports" instead of "Author reports" to follow
  normal style in vuln.xml.
- Fix some indentation and markup in body.

Add recent gnupg one.

Add <modified> tag to previous proftpd entry.

Requested by:   remko

Add proftpd-mysql to the previous entry.

Document "proftpd -- Remote Code Execution Vulnerability".

The Command Injection Vulnerability was corrected by awstats 6.5_2,1.

Submitted by:   Alex Samorukov
PR:             ports/105233

Add archivers/unzoo Directory Traversal Vulnerability.

Reviewed by:    simon

Add bugzilla -- multiple vulnerabilities entry.

Update earleir bugzilla entry with better topic, add ja-bugzilla as
also potentially vulnerable (thought the version currently in
ja-bugzilla isn't), and add more references.

Add cvs+ipv6 to the cvsbug to the vulnerability.

PR:                     ports/104638
Submitted by:           KIMURA Yasuhiro <yasu at utahime dot org>

- Document recent vulerabilties in the imlib2.

- Document recent vulnerability in the ruby CGI library.

Reviewed by:    simon

- pgp < 3.0 and pgpin does not support OpenPGP format
no user given symetric key encryption
Submitted by:   dinoex

The latest couple of firefox vulnerabilities should be fixed in the
2.0 release, so mark 2.0 as fixed.

Prodded by:     ahze

 ru-apache and ru-apacvhe+mod_ssl were fixed.

Add a <modified> tag with the current date to reflect my previous change.
I knew I should ask someone before committing, however trivial was the change.

Spotted by:     remko
Approved by:    portmgr (implicit)

Fix typo: "Dmitri Lenev reports reports a privilege ..."

Approved by:    portmgr (implicit)

Document screen -- combined UTF-8 characters vulnerability.

Approved by:    portmgr (secteam blanket)

Document two MySQL privilege escalations.

PR:             ports/104890
Submitted by:   Henrik Brix Andersen <henrik@brixandersen.dk>
Approved by:    portmgr (secteam blanket)

- Add entry for www/serendipity and www/serendipity-devel

Reviewed by:    markus@
Approved by:    portmgr (implicit VuXML), secteam (Remko (not reviewed yet))

Document an integer overflow vulnerability in Qt and kdelibs, based on an
entry by sat

Approved by:    portmgr (erwin)

Add reference, which I missed the first time around, from Opera
Software to opera -- URL parsing heap overflow vulnerability entry,

Approved by:    portmgr (secteam blanket)

Document opera -- URL parsing heap overflow vulnerability.

Approved by:    portmgr (secteam blanket)

Minor correction to last commit; the NVIDIA driver version 1.0.8762
was also affected, so mark it as such.

Approved by:            portmgr (secteam blanket)

Update entry for nvidia-driver -- arbitrary root code execution
vulnerability:

- Add new info about vulnerable versions from NVIDIA.
- Add workaround.
- Add more references.
- Remove suggestion to move to "nv" driver now that we have a simpler
  workaround.

Approved by:            portmgr (secteam blanket)
Parts submitted by:     mnag

Document asterisk -- remote heap overwrite vulnerability

Approved by:            portmgr (VuXML blanket)
Submitted by:           Thomas Sandford
Facilitated by:         Snow B.V.

Some style changes to the plone entry.

Previous commit was also reviewed by myself.

Approved by:            portmgr (Blanket VuXML)
Facilitated by:         Snow B.V.

- Add a entry for www/plone

Approved by:    portmgr (erwin)

Document:
  drupal -- HTML attribute injection
  drupal -- cross site request forgeries
  drupal -- multiple XSS vulnerabilities

Submitted by:   brooks
Reviewed by:    remko
Approved by:    portmgr (erwin)

Document "ingo -- local arbitrary shell command execution"

Submitted by:   thierry
Reviewed by:    remko
Approved by:    portmgr (erwin)

Update php -- _ecalloc Integer Overflow Vulnerability entry with
details from Steffan Essers advisory about the implications of this
issue.  The advisory was not public when this issue was initially
fixed.

Approved by:    portmgr (secteam blanket)

Mark multimedia/win32-codecs as not-vulnerable after the quicktime codecs
were optional. The quicktime codecs are still vulnerable though, but we
rely on the conditional FORBIDDEN statement in the ports Makefile for this.

Approved by:    portmgr (self), secteam (simon)