FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-02-07 16:55:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
ce0f52e1-a174-11ef-9a62-002590c1f29c	FreeBSD -- Certificate revocation list fetch(1) option fails Problem Description: The fetch(3) library uses environment variables for passing certain information, including the revocation file pathname. The environment variable name used by fetch(1) to pass the filename to the library was incorrect, in effect ignoring the option. Impact: Fetch would still connect to a host presenting a certificate included in the revocation file passed to the --crl option. Discovery 2024-10-29 Entry 2024-11-13 FreeBSD >= 14.1 lt 14.1_6 >= 13.4 lt 13.4_2 >= 13.3 lt 13.3_8 CVE-2024-45289 SA-24:19.fetch

VuXML ID

Description

ce0f52e1-a174-11ef-9a62-002590c1f29c

FreeBSD -- Certificate revocation list fetch(1) option fails

Problem Description:

The fetch(3) library uses environment variables for passing certain information, including the revocation file pathname. The environment variable name used by fetch(1) to pass the filename to the library was incorrect, in effect ignoring the option.

Impact:

Fetch would still connect to a host presenting a certificate included in the revocation file passed to the --crl option.

Discovery 2024-10-29
Entry 2024-11-13
FreeBSD

>= 14.1 lt 14.1_6

>= 13.4 lt 13.4_2

>= 13.3 lt 13.3_8

CVE-2024-45289
SA-24:19.fetch