This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-07-01 14:06:39 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
ba13dc13-340d-11d9-ac1b-000d614f7fad | samba -- potential remote DoS vulnerability Karol Wiesek at iDEFENSE reports:
Although samba.org classifies this as a DoS vulnerability, several members of the security community believe it may be exploitable for arbitrary code execution. Discovery 2004-09-30 Entry 2004-11-12 Modified 2008-09-26 samba gt 3.* lt 3.0.8 gt 3.*,1 lt 3.0.8,1 ports/73701 CVE-2004-0930 http://us4.samba.org/samba/security/CAN-2004-0930.html |
a63b15f9-97ff-11dc-9e48-0016179b2dd5 | samba -- multiple vulnerabilities The Samba Team reports:
Discovery 2007-11-15 Entry 2007-11-21 Modified 2008-09-26 samba samba3 ja-samba < 3.0.26a gt *,1 lt 3.0.26a_2,1 26454 CVE-2007-4572 CVE-2007-5398 http://secunia.com/advisories/27450/ http://us1.samba.org/samba/security/CVE-2007-4572.html http://us1.samba.org/samba/security/CVE-2007-5398.html |
2de14f7a-dad9-11d8-b59a-00061bc2ad93 | Multiple Potential Buffer Overruns in Samba Evgeny Demidov discovered that the Samba server has a buffer overflow in the Samba Web Administration Tool (SWAT) on decoding Base64 data during HTTP Basic Authentication. Versions 3.0.2 through 3.0.4 are affected. Another buffer overflow bug has been found in the code used to support the "mangling method = hash" smb.conf option. The default setting for this parameter is "mangling method = hash2" and therefore not vulnerable. Versions between 2.2.0 through 2.2.9 and 3.0.0 through 3.0.4 are affected. Discovery 2004-07-14 Entry 2004-07-21 Modified 2008-09-26 samba gt 3.* lt 3.0.5 gt 3.*,1 lt 3.0.5,1 < 2.2.10 ja-samba < 2.2.10.j1.0 CVE-2004-0600 CVE-2004-0686 http://www.securityfocus.com/archive/1/369698 http://www.securityfocus.com/archive/1/369706 http://www.samba.org/samba/whatsnew/samba-3.0.5.html http://www.samba.org/samba/whatsnew/samba-2.2.10.html http://www.osvdb.org/8190 http://www.osvdb.org/8191 http://secunia.com/advisories/12130 |
b168ddea-105a-11db-ac96-000c6ec775d9 | samba -- memory exhaustion DoS in smbd The Samba Team reports:
Discovery 2006-07-10 Entry 2006-07-10 samba ja-samba ge 3.0.1,1 lt 3.0.23,1 CVE-2006-3403 http://www.samba.org/samba/security/CAN-2006-3403.html |
ffcbd42d-a8c5-11dc-bec2-02e0185f8d72 | samba -- buffer overflow vulnerability Secuna Research reports:
Discovery 2007-12-10 Entry 2007-12-12 Modified 2008-09-26 samba samba3 ja-samba < 3.0.28 gt *,1 lt 3.0.28,1 CVE-2007-6015 http://secunia.com/advisories/27760/ |
3b3676be-52e1-11d9-a9e7-0001020eed82 | samba -- integer overflow vulnerability Greg MacManus, iDEFENSE Labs reports:
Discovery 2004-12-02 Entry 2004-12-21 Modified 2008-09-26 samba < 3.0.10 gt *,1 lt 3.0.10,1 ja-samba < 2.2.12.j1.0beta1_2 gt 3.* lt 3.0.10 gt 3.*,1 lt 3.0.10,1 CVE-2004-1154 http://www.idefense.com/application/poi/display?id=165&type=vulnerabilities http://www.samba.org/samba/security/CAN-2004-1154.html |
2bc96f18-683f-11dc-82b6-02e0185f8d72 | samba -- nss_info plugin privilege escalation vulnerability The Samba development team reports:
Discovery 2007-09-11 Entry 2007-09-21 Modified 2008-09-26 samba < 3.0.26a gt *,1 lt 3.0.26a,1 CVE-2007-4138 http://www.samba.org/samba/security/CVE-2007-4138.html |
f3d3f621-38d8-11d9-8fff-000c6e8f12ef | smbd -- buffer-overrun vulnerability Caused by improper bounds checking of certain trans2 requests, there is a possible buffer overrun in smbd. The attacker needs to be able to create files with very specific Unicode filenames on the share to take advantage of this issue. Discovery 2004-11-15 Entry 2004-11-17 Modified 2008-09-26 samba ge 3.* lt 3.0.8 ge 3.*,1 lt 3.0.8,1 CVE-2004-0882 11678 http://marc.theaimsgroup.com/?l=bugtraq&m=110055646329581 |
3546a833-03ea-11dc-a51d-0019b95d4f14 | samba -- multiple vulnerabilities The Samba Team reports:
Discovery 2007-05-14 Entry 2007-05-16 Modified 2008-09-26 samba ja-samba gt 3.* lt 3.0.25 gt 3.*,1 lt 3.0.25,1 CVE-2007-2444 CVE-2007-2446 CVE-2007-2447 http://de5.samba.org/samba/security/CVE-2007-2444.html http://de5.samba.org/samba/security/CVE-2007-2446.html http://de5.samba.org/samba/security/CVE-2007-2447.html |