FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
8e887b71-d769-11e4-b1c2-20cf30e32f6d	subversion -- DoS vulnerabilities Subversion Project reports: Subversion HTTP servers with FSFS repositories are vulnerable to a remotely triggerable excessive memory use with certain REPORT requests. Subversion mod_dav_svn and svnserve are vulnerable to a remotely triggerable assertion DoS vulnerability for certain requests with dynamically evaluated revision numbers. Subversion HTTP servers allow spoofing svn:author property values for new revisions. Discovery 2015-03-31 Entry 2015-03-31 mod_dav_svn >= 1.5.0 lt 1.7.20 >= 1.8.0 lt 1.8.13 subversion16 >= 1.0.0 lt 1.7.20 subversion17 >= 1.0.0 lt 1.7.20 subversion >= 1.0.0 lt 1.7.20 >= 1.8.0 lt 1.8.13 http://subversion.apache.org/security/ CVE-2015-0202 CVE-2015-0248 CVE-2015-0251 http://subversion.apache.org/security/CVE-2015-0202-advisory.txt http://subversion.apache.org/security/CVE-2015-0248-advisory.txt http://subversion.apache.org/security/CVE-2015-0251-advisory.txt
daadef86-a366-11e5-8b40-20cf30e32f6d	subversion -- multiple vulnerabilities Subversion Project reports: Remotely triggerable heap overflow and out-of-bounds read caused by integer overflow in the svn:// protocol parser. Remotely triggerable heap overflow and out-of-bounds read in mod_dav_svn caused by integer overflow when parsing skel-encoded request bodies. Discovery 2015-11-14 Entry 2015-12-15 subversion17 >= 1.7.0 lt 1.7.22_1 subversion18 >= 1.8.0 lt 1.8.15 subversion >= 1.9.0 lt 1.9.3 mod_dav_svn >= 1.7.0 lt 1.7.22_1 >= 1.8.0 lt 1.8.15 >= 1.9.0 lt 1.9.3 CVE-2015-5343 http://subversion.apache.org/security/CVE-2015-5343-advisory.txt CVE-2015-5259 http://subversion.apache.org/security/CVE-2015-5259-advisory.txt

VuXML ID

Description

8e887b71-d769-11e4-b1c2-20cf30e32f6d

subversion -- DoS vulnerabilities

Subversion Project reports:

Subversion HTTP servers with FSFS repositories are vulnerable to a remotely triggerable excessive memory use with certain REPORT requests.

Subversion mod_dav_svn and svnserve are vulnerable to a remotely triggerable assertion DoS vulnerability for certain requests with dynamically evaluated revision numbers.

Subversion HTTP servers allow spoofing svn:author property values for new revisions.

Discovery 2015-03-31
Entry 2015-03-31
mod_dav_svn

>= 1.5.0 lt 1.7.20

>= 1.8.0 lt 1.8.13

subversion16

>= 1.0.0 lt 1.7.20

subversion17

>= 1.0.0 lt 1.7.20

subversion

>= 1.0.0 lt 1.7.20

>= 1.8.0 lt 1.8.13

http://subversion.apache.org/security/
CVE-2015-0202
CVE-2015-0248
CVE-2015-0251
http://subversion.apache.org/security/CVE-2015-0202-advisory.txt
http://subversion.apache.org/security/CVE-2015-0248-advisory.txt
http://subversion.apache.org/security/CVE-2015-0251-advisory.txt

daadef86-a366-11e5-8b40-20cf30e32f6d

subversion -- multiple vulnerabilities

Subversion Project reports:

Remotely triggerable heap overflow and out-of-bounds read caused by integer overflow in the svn:// protocol parser.

Remotely triggerable heap overflow and out-of-bounds read in mod_dav_svn caused by integer overflow when parsing skel-encoded request bodies.

Discovery 2015-11-14
Entry 2015-12-15
subversion17

>= 1.7.0 lt 1.7.22_1

subversion18

>= 1.8.0 lt 1.8.15

subversion

>= 1.9.0 lt 1.9.3

mod_dav_svn

>= 1.7.0 lt 1.7.22_1

>= 1.8.0 lt 1.8.15

>= 1.9.0 lt 1.9.3

CVE-2015-5343
http://subversion.apache.org/security/CVE-2015-5343-advisory.txt
CVE-2015-5259
http://subversion.apache.org/security/CVE-2015-5259-advisory.txt