FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
da1d5d2e-3eca-11e7-8861-0018fe623f2b	miniupnpc -- integer signedness error Tintinweb reports: An integer signedness error was found in miniupnp's miniwget allowing an unauthenticated remote entity typically located on the local network segment to trigger a heap corruption or an access violation in miniupnp's http response parser when processing a specially crafted chunked-encoded response to a request for the xml root description url. Discovery 2017-05-09 Entry 2017-05-22 miniupnpc < 2.0.20170509 CVE-2017-8798 https://github.com/tintinweb/pub/tree/master/pocs/cve-2017-8798

VuXML ID

Description

da1d5d2e-3eca-11e7-8861-0018fe623f2b

miniupnpc -- integer signedness error

Tintinweb reports:

An integer signedness error was found in miniupnp's miniwget allowing an unauthenticated remote entity typically located on the local network segment to trigger a heap corruption or an access violation in miniupnp's http response parser when processing a specially crafted chunked-encoded response to a request for the xml root description url.

Discovery 2017-05-09
Entry 2017-05-22
miniupnpc

< 2.0.20170509

CVE-2017-8798
https://github.com/tintinweb/pub/tree/master/pocs/cve-2017-8798