This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-09-07 14:16:01 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
d3921810-3c80-11e1-97e8-00215c6a37bb | php -- multiple vulnerabilities php development team reports:
Discovery 2011-12-29 Entry 2012-01-11 Modified 2012-01-19 php5 php5-exif < 5.3.9 php52 < 5.2.17_5 php52-exif < 5.2.17_6 CVE-2011-4566 CVE-2011-4885 http://www.nruns.com/_downloads/advisory28122011.pdf |
7fe7df75-6568-11e6-a590-14dae9d210b8 | End of Life Ports These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take caution and find alternative software as soon as possible. Discovery 2016-08-18 Entry 2016-08-18 Modified 2016-10-18 python32 python31 python30 python26 python25 python24 python23 python22 python21 python20 python15 ge 0 php54 php53 php52 php5 php4 ge 0 perl5 < 5.18 perl5.16 perl5.14 perl5.12 perl ge 0 ruby ruby_static < 2.1,1 unifi2 unifi3 ge 0 apache21 apache20 apache13 ge 0 tomcat55 tomcat41 ge 0 mysql51-client mysql51-server mysql50-client mysql50-server mysql41-client mysql41-server mysql40-client mysql40-server ge 0 postgresql90-client postgresql90-server postgresql84-client postgresql84-server postgresql83-client postgresql83-server postgresql82-client postgresql82-server postgresql81-client postgresql81-server postgresql80-client postgresql80-server postgresql74-client postgresql74-server postgresql73-client postgresql73-server postgresql72-client postgresql72-server postgresql71-client postgresql71-server postgresql7-client postgresql7-server ge 0 ports/211975 |
3761df02-0f9c-11e0-becc-0022156e8794 | php -- NULL byte poisoning PHP-specific version of NULL-byte poisoning was briefly described by ShAnKaR:
PHP developers report that branch 5.3 received a fix:
Discovery 2010-12-10 Entry 2011-01-13 Modified 2012-11-25 php5 < 5.3.4 php52 < 5.2.17_12 CVE-2006-7243 http://www.securityfocus.com/archive/1/archive/1/445788/100/0/threaded http://artofhacking.com/files/phrack/phrack55/P55-07.TXT |
bdab0acd-d4cd-11e1-8a1c-14dae9ebcf89 | php -- potential overflow in _php_stream_scandir The PHP Development Team reports:
Discovery 2012-07-19 Entry 2012-07-23 Modified 2013-01-15 php5 gt 5.4 lt 5.4.5 ge 5.3 lt 5.3.15 ge 5.2 lt 5.2.17_10 php53 < 5.3.15 php52 < 5.2.17_10 CVE-2012-2688 http://www.php.net/archive/2012.php#id2012-07-19-1 |
918f38cd-f71e-11e1-8bd8-0022156e8794 | php5 -- header splitting attack via carriage-return character Rui Hirokawa reports:
Discovery 2011-11-06 Entry 2012-09-05 Modified 2012-09-19 php5 ge 5.2 lt 5.2.17_11 ge 5.3 lt 5.3.11 ge 5.4 lt 5.4.1 php52 < 5.2.17_11 php53 < 5.3.11 CVE-2011-1398 https://bugs.php.net/bug.php?id=60227 |
59b68b1e-9c78-11e1-b5e0-000c299b62e1 | php -- multiple vulnerabilities The PHP Development Team reports:
Discovery 2012-05-08 Entry 2012-05-12 php5 gt 5.4 lt 5.4.3 < 5.3.13 php53 < 5.3.13 php52 < 5.2.17_9 CVE-2012-1823 CVE-2012-2311 CVE-2012-2329 |
9b2a5e88-02b8-11e2-92d1-000d601460a4 | php5 -- Denial of Service in php_date_parse_tzfile() MITRE CVE team reports:
Discovery 2010-12-08 Entry 2012-09-19 php5 ge 5.2 lt 5.2.17_11 ge 5.3 lt 5.3.9 php52 < 5.2.17_11 php53 < 5.3.9 CVE-2012-0789 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0789 https://bugs.php.net/bug.php?id=53502 |
60de13d5-95f0-11e1-806a-001143cd36d8 | php -- vulnerability in certain CGI-based setups php development team reports:
Discovery 2012-05-03 Entry 2012-05-05 php5 gt 5.4 lt 5.4.2 < 5.3.12 php53 < 5.3.12 php4 < 4.4.10 php52 < 5.2.17_8 CVE-2012-1823 |