FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-27 12:04:33 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
30cb4522-b94d-11e0-8182-485d60cb5385libsoup -- unintentionally allow access to entire local filesystem

Dan Winship reports:

Fixed a security hole that caused some SoupServer users to unintentionally allow accessing the entire local filesystem when they thought they were only providing access to a single directory.


Discovery 2011-06-23
Entry 2011-07-28
libsoup
< 2.32.2_3

CVE-2011-2054
http://mail.gnome.org/archives/ftp-release-list/2011-July/msg00176.html
https://bugzilla.gnome.org/show_bug.cgi?id=653258
8e7bbddd-8338-11e7-867f-b499baebfeaflibsoup -- stack based buffer overflow

Tobias Mueller reports:

libsoup is susceptible to a stack based buffer overflow attack when using chunked encoding. Regardless of libsoup being used as a server or client.


Discovery 2017-08-17
Entry 2017-08-17
Modified 2017-08-20
libsoup
< 2.52.2_1

http://seclists.org/oss-sec/2017/q3/304
CVE-2017-2885