FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-12-16 22:24:57 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
3092668e-97e4-11ef-bdd9-4ccc6adda413qt5-webengine -- Multiple vulnerabilities

Backports for 15 security bugs in Chromium:

  • CVE-2024-4761: Out of bounds write in V8
  • CVE-2024-5158: Type confusion in V8
  • CVE-2024-7532: Out of bounds memory access in ANGLE
  • CVE-2024-7965: Inappropriate implementation in V8
  • CVE-2024-7967: Heap buffer overflow in Fonts
  • CVE-2024-7971: Type confusion in V8
  • CVE-2024-8198: Heap buffer overflow in Skia
  • CVE-2024-8636: Heap buffer overflow in Skia
  • CVE-2024-9123: Integer overflow in Skia
  • CVE-2024-9602: Type confusion in V8
  • CVE-2024-9603: Type confusion in V8
  • CVE-2024-10229: Inappropriate implementation in Extensions
  • CVE-2024-45490: Negative length in libexpat
  • CVE-2024-45491: Integer overflow in libexpat
  • CVE-2024-45492: Integer overflow in libexpat

Discovery 2024-09-18
Entry 2024-10-31
qt5-webengine
< 5.15.18p2

CVE-2024-5158
CVE-2024-7532
CVE-2024-7965
CVE-2024-7967
CVE-2024-7971
CVE-2024-8198
CVE-2024-8636
CVE-2024-9123
CVE-2024-9602
CVE-2024-9603
CVE-2024-10229
CVE-2024-45490
CVE-2024-45491
CVE-2024-45492
CVE-2024-4761
https://code.qt.io/cgit/qt/qtwebengine-chromium.git/log/?h=87-based
16e472d5-a8aa-11ef-b680-4ccc6adda413qt5-webengine -- Use after free in Serial

Qt qtwebengine-chromium repo reports:

Backports for 1 security bug in Chromium:

  • CVE-2024-10827: Use after free in Serial

Discovery 2024-10-24
Entry 2024-11-22
qt5-webengine
< 5.15.18p5

CVE-2024-10827
https://code.qt.io/cgit/qt/qtwebengine-chromium.git/log/?h=87-based