FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-01-14 21:31:10 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
8eabaad9-641f-11d9-92a7-000a95bc6faehylafax -- unauthorized login vulnerability

A flaw in HylaFAX may allow an attacker to bypass normal authentication by spoofing their DNS PTR records.


Discovery 2005-01-11
Entry 2005-01-11
hylafax
< 4.2.1

CVE-2004-1182
http://marc.theaimsgroup.com/?l=bugtraq&m=110546971307585
3df5a920-6edc-11e9-a44b-0050562a4d7bcomms/hylafax -- Malformed fax sender remote code execution in JPEG support

A malicious sender that sets both JPEG and MH,MR,MMR or JBIG in the same DCS signal or sends a large JPEG page could lead to remote code execution.


Discovery 2018-08-24
Entry 2019-05-05
hylafax
< 6.0.7

CVE-2018-17141
ftp://ftp.hylafax.org/security/CVE-2018-17141.html
https://www.x41-dsec.de/lab/advisories/x41-2018-008-hylafax/
http://bugs.hylafax.org/show_bug.cgi?id=974
http://git.hylafax.org/HylaFAX?a=commit;h=c6cac8d8cd0dbe313689ba77023e12bc5b3027be