FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-29 03:23:07 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
2acdf364-9f8d-4aaf-8d1b-867fdfd771c6	py-kerberos -- DoS and MitM vulnerabilities macosforgebot reports: The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack. Discovery 2017-08-25 Entry 2023-04-10 py37-kerberos py38-kerberos py39-kerberos py310-kerberos py311-kerberos <= 1.3.1 CVE-2015-3206 https://osv.dev/vulnerability/PYSEC-2017-49

VuXML ID

Description

2acdf364-9f8d-4aaf-8d1b-867fdfd771c6

py-kerberos -- DoS and MitM vulnerabilities

macosforgebot reports:

The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.

Discovery 2017-08-25
Entry 2023-04-10
py37-kerberos
py38-kerberos
py39-kerberos
py310-kerberos
py311-kerberos

<= 1.3.1

CVE-2015-3206
https://osv.dev/vulnerability/PYSEC-2017-49