SHA256ify

Approved by: krion@

Document local root exploit in SGE.

Document "fetchmail -- crash when bouncing a message" DOS vulnerability.

Reviewed by:    secteam (simon)

- Update description and references for "clamav -- possible heap
  overflow in the UPX code" now that more information is available.
- Remove some EOL whitespace.

Add an entry for clamav/clamav-devel

Reviewed by:    simon (secteam)

Document milter-bogom -- headerless message crash.

Reported by:    Victor Balada Diaz <victor@bsdes.net>

Mark latest bnc version as fixed wrt. to "fd_set -- bitmap index
overflow in multiple applications".

Reported by:    Christian Elmerot <Chreo At chreo , net>

Document two bogofilter vulnerabilities.

Submitted by:   Matthias Andree <matthias.andree@gmx.de>

Add an entry for rxvt-unicode < 6.3: root privileges were not restored
before the call to openpty(), so the permissions on the pty device node
remain root:wheel 666 after opening a new terminal.

Discovered by:  Ryan Beasley <ryanb (at) rainbowdevilsland.co.uk>

  `ru-apache' and `ru-apache+mod_ssl' was patchet against CAN-2005-3352
 
(http://www.FreeBSD.org/ports/portaudit/9fff8dc8-7aa7-11da-bf72-00123f589060.html)

  Yes, changes are validated with xmllint at this time.

Correct a little typo.

Document apache -- mod_imap cross-site scripting flaw.

I expanded the diff from the PR a bit to denote other
affected apache ports as well.  Therefor mistakes in
that should be redirected to me.

Also bump the copyright year for the vuxml file.

PR:                     ports/91157 (based on)
Submitted by:           KOMATSU Shinichiro <koma2 at lovepeers dot org>

Fix the affected versions of 9b4facec-6761-11da-99f6-00123ffe8333.

PR:             ports/91156
Submitted by:   KOMATSU Shinichiro (koma2 at lovepeers dot org)

Add missing "</package>" tag from rev. 1.917, which caused the file to
be invalid XML and in turn caused the portaudit database to be only
partially built.

Bump modification date of all entries which had modification date on
the 23'rd to make sure VuXML consumers catch the updates.

Portaudit problem reported by:  Peter Vohmann
Pointy hat to:                  lev

  russian/apache13 and russian/apache13-modssl were updated and new version
doesn't
contain any known vulnerabilities.

Bump modification date for entries touched by last commit.

Update the phpSysInfo entries, PR ports/90849 will solve the documented
issues.

Requested by:           Babak Farrokhi <babak at farrokhi dot net>

Fix another typo in my nbd entry.

Spotted by:             Linus Nordberg <linus at nordberg dot se>

Correct a typo.

Submitted by:           Linus Nordberg <linus at nordberg dot se>

Update the affected range.

Prodded by:     erwin

The previous entry should have read:
Document ndb-server -- buffer overflow vulnerability

:

- Register scponly-4.1 vulnerabilities

PR:             ports/90813
Submitted by:   maintainer
Security:      
https://lists.ccs.neu.edu/pipermail/scponly/2005-December/001027.html

Correct the recent horde entries as per the FDP
(made the entries max 72 chars wide).

Document fetchmail vulnerability:
http://fetchmail.berlios.de/fetchmail-SA-2005-03.txt (CVE-2005-4348)

Reviewed by:    secteam (simon@)

Document the following mantis vulnerabilities:

o "t_core_path" file inclusion vulnerability
o "view_filters_page.php" cross-site scripting vulnerability

- Add entries for several XSS vulnerabilities in Horde, Kronolith, Nag
  Turba and Mnemo;

- Fix a typo in the previous Horde entry.

Add curl -- URL buffer overflow vulnerability

Reviewed by:    simon

Add phpmyadmin -- register_globals emulation "import_blacklist" manipulation
Add phpmyadmin -- XSS vulnerabilities

Add ffmpeg -- libavcodec buffer overflow vulnerability

Reviewed by:    simon

Add trac -- search module SQL injection vulnerability

Reviewed by:    simon

Add drupal -- multiple vulnerabilities

Reviewed by:    simon

Document opera -- multiple vulnerabilities.

Document opera -- command line URL shell command injection.

Add entry to www/mambo

Reviewed by:    simon

Backup rev 1.9 which should not have been committed since it was just my
local hack.

Note to self: Do not commit before having at least two cups of coffee.

Pointy hat to:  simon

Mark flyspar 0.9.8 as fixed wrt. "flyspray -- cross-site scripting
vulnerabilities" since our port version of 0.9.8 includes update1 which
fixes the issue.

Reported by:    Volodymyr Kostyrko via pav

Change topic zope28 to zope (www/zope affected too)
Add <cvename> to zope entry
Change CAN-XXXX-XXXX to CVE-XXXX-XXXX

Reviewed by:    simon

Security fix: several shell scripts included in the Ghostscript package
allow local users to overwrite files via a symlink attack on temporary
files.

Security: CAN-2004-0967

Forced commit to notice that I also added some references to the
latest horde entry.

Standarize the horde -- Cross site scripting vulnerabilities in MIME
viewers entry as per the FDP-primer and the vuxml layout (topic).

Also correct the qpopper vulnerability to match 4.0 and above since
the 2.x range is listed as affected at the moment but has an entirely
different base.  After checking it appears that the information all
point to >= 4.0. [1]

Noticed by:     ache [1]

Add an entry for cross site scripting vulnerabilities in Horde's MIME
viewers.

phpmyadmin -- HTTP Response Splitting vulnerability

Reviewed by:    simon

Add CVE name to an old sudo entry.

Update latest phpSysInfo entry to reflect that 2.4 was in fact not fixed
(or rather, had an incorrect "fix").

Reported by:    Christopher Kunz (advisory author)
Security:       http://www.hardened-php.net/advisory_222005.81.html

- Micromedia -> Macromedia
- Standard FDP primer documentation rules apply
- Two dots fixed

Noted by:       remko

- Document phpSysInfo vulnerability

- Document flashplugin vulnerability

- Document p5-Mail-SpamAssassin vulnerabily (alread fixed in ports)
- Document flyspray cross-site scripting vulnerabilities

Update the recent gallery2 and webcalendar entries:

o Add a better topic (description)
o Reword the webcalendar entry to have some more usefull data
o Add references (bid's and CVE names).

Document qpopper -- multiple privilege escalation vulnerabilities.

Note that the current version is not affected anymore.

- Add missed </p> tag [1]
- Modify 594eb447-e398-11d9-a8bd-000cf18bbe54 entry:
  ruby 1.6.x is not affected this vulnerability,
  it have no XMLRPC support.

Pointy hat to:  simon [1]

Add a bit more info from the PEAR advisory about the vulnerability to
make the scope of the vulnerability a bit more clear.

Disussed with:  thierry

The two latest OpenVPN vulnerabilities were both only for 2.0 and
newer, so mark the correctly as such.

Submitted by:   Matthias Andree <matthias.andree@gmx.de>

Add an entry for pear-PEAR arbitrary code execution vulnerability.

Correct skype entry to match the correct fixed port version number.

Noted by:       Stefan Lambrev, cheffo FreeBSD-BG org

Document two OpenVPN vulnerabilities.

Submitted by:   Matthias Andree <matthias.andree@gmx.de>

As Peter Jeremy points out, the recent lynx vulnerability also concerns
lynx-ssl.

- Document skype vulnerabilities
- Document PHP vulnerabilities
- Convert first letters in titles from upcase to lowercase
  in my last additions.

- Document CVE-2005-3258:
    Squid FTP Server Response Handling Denial of Service

- Document a BASE Basic Analysis and Security Engine vulnerability

Back out the accidentally committed white-space modification parts of
rev.  1.869, but keep the lynx entry.

Pointy hat to:  naddy
OK'ed by:       naddy

Add entry for "fetchmail -- fetchmailconf local password exposure",
which was fixed with fetchmail-6.2.5.2_1 and above.

Document lynx remote buffer overflow in NNTP header handling.

- Fix a ruby vulnerabuility in the safe level settings.

Based on:       ports/87816
Submitted by:   Phil Oleson <oz@nixil.net>

Security:      
http://vuxml.FreeBSD.org/1daea60a-4719-11da-b5c6-0004614cc33d.html

Add more references to entry net-snmp -- remote DoS vulnerability.

- Mark linux-firefox 1.0.7 as fixed
  wrt. 8665ebb9-2237-11da-978e-0001020eed82 (Mozilla/firefox IDN buffer
  overflow) [1].
- Correct some of the the earlier linux-firefox entries to match
  versions before 1.0.7, not after (whoops)...

Prodded by:     Andrew P. <infofarmer@gmail.com> [1]

Add misc/compat5x to "openssl -- potential SSL 2.0 rollback".

Reviewed by:    simon

Also mark xli as vulnerable to xloadimage -- buffer overflows in NIFF
image title handling, and latest port version as fixed.

Reported by:    jkoshy

For entry libgadu -- multiple vulnerabilities:

- Mark latest centericq port version as fixed.
- Fix cite in description.

For entry zope28 -- expose RestructuredText functionality to untrusted
users:

- Do not match zope 2.7.8 which has been fixed. [1]
- Fix typo in topic.
- Add another reference.

Reported by:    Gerhard Schmidt <estartu augusta de> [1]

Add another reference to clamav -- arbitrary code execution and DoS
vulnerabilities entry.

Document x11/xloadimage buffer overflows in NIFF image title handling.

Rename all CAN-yyyy-nnnn to CVE-yyyy-nnnn, with the exception of text
inside <blockquote>s.
See <URL:http://www.cve.mitre.org/cve/renumber.html>.

For entry: snort -- Back Orifice preprocessor buffer overflow vulnerability:
- Sort references.
- Add ISS advisory to references.

- Document snort -- Back Orifice preprocessor buffer overflow vulnerability.
- Use standard topic format for webcalendar entry.
- Fix package name in webcalendar so it matches the actual package
  name.

- Document www/webcalendar vulnerability.

- Document www/gallery2 vulnerability.

Improve last couple of entries:
- Use standard topic format.
- Fix packagename in phpmyadmin and zone entries.
- Fix indention and remove EOL white-space.
- Make lead in a bit more verbose.
- Add more references to phpmyadmin issue.
- Remove some redundant quoted text in zope issue.

Add entry for openssl
Remove entry about safe mode in phpmyadmin

Add entry for phpmyadmin (PMASA-2005-4)

Fix typo with range values

Add entry from zope28

For libxine -- format string vulnerability entry:
- Add reference to xine security announcement.
- Fix indention on a few lines.

Add an entry for libxine format string vulnerability.

Mark older revisions linux_base-suse 9.3 as vulnerable to kdebase --
Kate backup file permission leak.

- Mark cfengine's arbitrary file overwriting vulnerability as fixed in 2.1.6_1
- Add another possible variant of package name - cfengine2

Add an entry for UW-IMAP Mailbox Name Handling Remote Buffer Overflow
Vulnerability (CAN-2005-2933).

Add credit for recent ftp/weex incident

Approved by:    novel (mentor)

rinetd >= 0.62_1 has no more vulnerabilities

Add references to three squid entries.

Submitted by:           Thomas-Martin Seck <tmseck at netcologne dot de>
                        (except for the bid's which i added myself).

Use the <freebsdpr> tag to markup a PR in weex -- remote format string
vulnerability entry.

Document a format string vulnerability in ftp/weex.

Document picasm -- buffer overflow vulnerability.

Add an URL to the entry of the japanese/uim.

Document japanese/uim privilege escalation vulnerability.

Document cfengine -- arbitrary file overwriting vulnerability.

Mark zsync <= 0.4.1 vulnerable to the zlib buffer overflow vulnerability.

Inspired by:            gordon's commit

Add more references to unace -- multiple vulnerabilities entry.

Add CVE name to an older ProZilla entry.