FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
ac619d06-3ef8-11d9-8741-c942c075aa41	jdk/jre -- Security Vulnerability With Java Plugin The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote attackers to load unsafe classes and execute arbitrary code. Discovery 2004-11-24 Entry 2004-11-25 Modified 2005-04-27 jdk >= 1.4.0 le 1.4.2p6_6 >= 1.3.0 le 1.3.1p9_5 linux-jdk linux-sun-jdk >= 1.4.0 le 1.4.2.05 >= 1.3.0 le 1.3.1.13 linux-blackdown-jdk >= 1.3.0 le 1.4.2 linux-ibm-jdk >= 1.3.0 le 1.4.2 diablo-jdk diablo-jre >= 1.3.1.0 le 1.3.1.0_1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1&searchclause=%22category:security%22%20%22availability,%20security%22 http://www.securityfocus.com/archive/1/382072 CVE-2004-1029 http://marc.theaimsgroup.com/?l=bugtraq&m=110125046627909
c93e4d41-75c5-11dc-b903-0016179b2dd5	jdk/jre -- Applet Caching May Allow Network Access Restrictions to be Circumvented SUN reports: A vulnerability in the Java Runtime Environment (JRE) with applet caching may allow an untrusted applet that is downloaded from a malicious website to make network connections to network services on machines other than the one that the applet was downloaded from. This may allow network resources (such as web pages) and vulnerabilities (that exist on these network services) which are not otherwise normally accessible to be accessed or exploited. Discovery 2007-10-03 Entry 2007-10-08 Modified 2007-11-16 jdk >= 1.3.0 lt 1.6.0.3p3 >= 1.5.0,1 lt 1.5.0.13p7,1 linux-blackdown-jdk >= 1.3.0 linux-sun-jdk >= 1.3.0 lt 1.3.1.20 >= 1.4.0 lt 1.4.2.16 = 1.5.0.b1 = 1.5.0.b1,1 >= 1.5.0,2 lt 1.5.0.13,2 >= 1.6.0 lt 1.6.0.03 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103079-1 CVE-2007-5232

VuXML ID

Description

ac619d06-3ef8-11d9-8741-c942c075aa41

jdk/jre -- Security Vulnerability With Java Plugin

The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote attackers to load unsafe classes and execute arbitrary code.

Discovery 2004-11-24
Entry 2004-11-25
Modified 2005-04-27
jdk

>= 1.4.0 le 1.4.2p6_6

>= 1.3.0 le 1.3.1p9_5

linux-jdk
linux-sun-jdk

>= 1.4.0 le 1.4.2.05

>= 1.3.0 le 1.3.1.13

linux-blackdown-jdk

>= 1.3.0 le 1.4.2

linux-ibm-jdk

>= 1.3.0 le 1.4.2

diablo-jdk
diablo-jre

>= 1.3.1.0 le 1.3.1.0_1

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1&searchclause=%22category:security%22%20%22availability,%20security%22
http://www.securityfocus.com/archive/1/382072
CVE-2004-1029
http://marc.theaimsgroup.com/?l=bugtraq&m=110125046627909

c93e4d41-75c5-11dc-b903-0016179b2dd5

jdk/jre -- Applet Caching May Allow Network Access Restrictions to be Circumvented

SUN reports:

A vulnerability in the Java Runtime Environment (JRE) with applet caching may allow an untrusted applet that is downloaded from a malicious website to make network connections to network services on machines other than the one that the applet was downloaded from. This may allow network resources (such as web pages) and vulnerabilities (that exist on these network services) which are not otherwise normally accessible to be accessed or exploited.

Discovery 2007-10-03
Entry 2007-10-08
Modified 2007-11-16
jdk

>= 1.3.0 lt 1.6.0.3p3

>= 1.5.0,1 lt 1.5.0.13p7,1

linux-blackdown-jdk

>= 1.3.0

linux-sun-jdk

>= 1.3.0 lt 1.3.1.20

>= 1.4.0 lt 1.4.2.16

= 1.5.0.b1

= 1.5.0.b1,1

>= 1.5.0,2 lt 1.5.0.13,2

>= 1.6.0 lt 1.6.0.03

http://sunsolve.sun.com/search/document.do?assetkey=1-26-103079-1
CVE-2007-5232