FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
1d3a2737-7eb7-11d9-acf7-000854d03344unace -- multiple vulnerabilities

Ulf Härnhammar reports:

  • There are buffer overflows when extracting, testing or listing specially prepared ACE archives.
  • There are directory traversal bugs when extracting ACE archives.
  • There are also buffer overflows when dealing with long (>17000 characters) command line arguments.

Secunia reports:

The vulnerabilities have been confirmed in version 1.2b. One of the buffer overflow vulnerabilities have also been reported in version 2.04, 2.2 and 2.5. Other versions may also be affected.

Successful exploitation may allow execution of arbitrary code.


Discovery 2005-02-14
Entry 2005-02-22
Modified 2006-09-26
unace
< 1.2b_2

linux-unace
> 0

215006
CVE-2005-0160
CVE-2005-0161
http://marc.theaimsgroup.com/?l=full-disclosure&m=110911451613135
http://secunia.com/advisories/14359/