FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-12-24 11:27:39 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
48cca164-e269-11e7-be51-6599c735afc8	global -- gozilla vulnerability MITRE reports: gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. Discovery 2017-12-11 Entry 2017-12-16 global >= 4.8.6 lt 6.6.1 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17531 http://lists.gnu.org/archive/html/info-global/2017-12/msg00001.html CVE-2017-17531

VuXML ID

Description

48cca164-e269-11e7-be51-6599c735afc8

global -- gozilla vulnerability

MITRE reports:

gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL.

Discovery 2017-12-11
Entry 2017-12-16
global

>= 4.8.6 lt 6.6.1

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17531
http://lists.gnu.org/archive/html/info-global/2017-12/msg00001.html
CVE-2017-17531