FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
84237895-8f39-11d8-8b29-0020ed76ef5a	neon format string vulnerabilities Greuff reports that the neon WebDAV client library contains several format string bugs within error reporting code. A malicious server may exploit these bugs by sending specially crafted PROPFIND or PROPPATCH responses. Although several applications include neon, such as cadaver and subversion, the FreeBSD Ports of these applications are not impacted. They are specifically configured to NOT use the included neon. Only packages listed as affected in this notice are believed to be impacted. Discovery 2004-04-14 Entry 2004-04-15 Modified 2004-06-25 neon < 0.24.5 tla < 1.2_1 sitecopy <= 0.13.4_1 CVE-2004-0179 http://www.webdav.org/neon/ http://secunia.com/advisories/11785

VuXML ID

Description

84237895-8f39-11d8-8b29-0020ed76ef5a

neon format string vulnerabilities

Greuff reports that the neon WebDAV client library contains several format string bugs within error reporting code. A malicious server may exploit these bugs by sending specially crafted PROPFIND or PROPPATCH responses.

Although several applications include neon, such as cadaver and subversion, the FreeBSD Ports of these applications are not impacted. They are specifically configured to NOT use the included neon. Only packages listed as affected in this notice are believed to be impacted.

Discovery 2004-04-14
Entry 2004-04-15
Modified 2004-06-25
neon

< 0.24.5

tla

< 1.2_1

sitecopy

<= 0.13.4_1

CVE-2004-0179
http://www.webdav.org/neon/
http://secunia.com/advisories/11785