From owner-svn-ports-all@freebsd.org Tue Aug 9 21:18:19 2016 Return-Path: Delivered-To: svn-ports-all@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6DA1FBB4DD5; Tue, 9 Aug 2016 21:18:19 +0000 (UTC) (envelope-from feld@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 10A1A1B4A; Tue, 9 Aug 2016 21:18:18 +0000 (UTC) (envelope-from feld@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u79LIIQk007403; Tue, 9 Aug 2016 21:18:18 GMT (envelope-from feld@FreeBSD.org) Received: (from feld@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id u79LIIRD007402; Tue, 9 Aug 2016 21:18:18 GMT (envelope-from feld@FreeBSD.org) Message-Id: <201608092118.u79LIIRD007402@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: feld set sender to feld@FreeBSD.org using -f From: Mark Felder Date: Tue, 9 Aug 2016 21:18:18 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r419971 - head/security/vuxml X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-all@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: SVN commit messages for the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Aug 2016 21:18:19 -0000 Author: feld Date: Tue Aug 9 21:18:18 2016 New Revision: 419971 URL: https://svnweb.freebsd.org/changeset/ports/419971 Log: Change all FreeBSD SA entries in vuxml from to Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Tue Aug 9 21:04:50 2016 (r419970) +++ head/security/vuxml/vuln.xml Tue Aug 9 21:18:18 2016 (r419971) @@ -31919,7 +31919,7 @@ Notes: file 5.21 - + FreeBSD 8.48.4_20 9.19.1_23 @@ -31927,7 +31927,7 @@ Notes: 9.39.3_6 10.010.0_13 10.110.1_1 - + @@ -36142,13 +36142,13 @@ Notes: mingw32-openssl 1.0.11.0.1h - + FreeBSD 8.08.4_12 9.19.1_15 9.29.2_8 10.010.0_5 - + @@ -37321,14 +37321,14 @@ Notes: mingw32-openssl 1.0.11.0.1g - + FreeBSD 8.38.3_15 8.48.4_8 9.19.1_11 9.29.2_4 10.010.0_1 - + @@ -37463,10 +37463,10 @@ Notes: mingw32-openssl 1.0.11.0.1g - + FreeBSD 10.010.0_1 - + @@ -41545,12 +41545,12 @@ affected..

FreeBSD -- Cross-mount links between nullfs(5) mounts - + FreeBSD 9.19.1_7 8.48.4_4 8.38.3_11 - + @@ -41586,12 +41586,12 @@ affected..

FreeBSD -- Insufficient credential checks in network ioctl(2) - + FreeBSD 9.19.1_7 8.48.4_4 8.38.3_11 - + @@ -62635,13 +62635,13 @@ executed in your Internet Explorer while bind98 9.8.0.2 - + FreeBSD 7.37.3_6 7.47.4_2 8.18.1_4 8.28.2_2 - + @@ -73464,13 +73464,13 @@ executed in your Internet Explorer while FreeBSD -- Devfs / VFS NULL pointer race condition - + FreeBSD 6.36.3_13 6.46.4_7 7.17.1_8 7.27.2_4 - + @@ -73504,11 +73504,11 @@ executed in your Internet Explorer while FreeBSD -- kqueue pipe race conditions - + FreeBSD 6.36.4_7 6.46.3_13 - + @@ -74498,13 +74498,13 @@ executed in your Internet Explorer while bind9-sdb-ldap 9.4.3.3 - + FreeBSD 6.36.3_12 6.46.4_6 7.17.1_7 7.27.2_3 - + @@ -76058,13 +76058,13 @@ executed in your Internet Explorer while FreeBSD -- remotely exploitable crash in OpenSSL - + FreeBSD 6.36.3_10 6.46.4_4 7.07.0_12 7.17.1_5 - + @@ -78584,12 +78584,12 @@ executed in your Internet Explorer while FreeBSD -- netgraph / bluetooth privilege escalation - + FreeBSD 6.36.3_7 6.46.4_1 7.07.0_7 - + @@ -78628,12 +78628,12 @@ executed in your Internet Explorer while FreeBSD -- Cross-site request forgery in ftpd(8) - + FreeBSD 6.36.3_7 6.46.4_1 7.07.0_7 - + @@ -78669,11 +78669,11 @@ executed in your Internet Explorer while FreeBSD -- IPv6 Neighbor Discovery Protocol routing vulnerability - + FreeBSD 6.36.3_5 7.07.0_5 - + @@ -78716,11 +78716,11 @@ executed in your Internet Explorer while FreeBSD -- arc4random(9) predictable sequence vulnerability - + FreeBSD 6.36.3_6 7.07.0_6 - + @@ -81923,11 +81923,11 @@ executed in your Internet Explorer while FreeBSD -- Remote kernel panics on IPv6 connections - + FreeBSD 6.36.3_4 7.07.0_4 - + @@ -81963,11 +81963,11 @@ executed in your Internet Explorer while FreeBSD -- nmount(2) local arbitrary code execution - + FreeBSD 6.36.3_4 7.07.0_4 - + @@ -82003,11 +82003,11 @@ executed in your Internet Explorer while FreeBSD -- amd64 swapgs local privilege escalation - + FreeBSD 6.36.3_4 7.07.0_4 - + @@ -82568,11 +82568,11 @@ executed in your Internet Explorer while FreeBSD -- DNS cache poisoning - + FreeBSD 6.36.3_3 7.07.0_3 - + @@ -88520,12 +88520,12 @@ executed in your Internet Explorer while tcpdump 3.9.6 - + FreeBSD 6.26.2_7 6.16.1_19 5.55.5_15 - + @@ -88564,12 +88564,12 @@ executed in your Internet Explorer while 9.49.4.1.1 9.39.3.4.1 - + FreeBSD 6.26.2_7 6.16.1_19 5.55.5_15 - + @@ -89931,12 +89931,12 @@ executed in your Internet Explorer while file 4.21 - + FreeBSD 6.26.2_5 6.16.1_17 5.55.5_13 - + @@ -90288,12 +90288,12 @@ executed in your Internet Explorer while FreeBSD -- IPv6 Routing Header 0 is dangerous - + FreeBSD 6.26.2_4 6.16.1_16 5.55.5_12 - + @@ -90932,12 +90932,12 @@ executed in your Internet Explorer while named 9.3.4 - + FreeBSD 6.26.2_1 6.16.1_13 5.55.5_11 - + @@ -90979,12 +90979,12 @@ executed in your Internet Explorer while FreeBSD -- Jail rc.d script privilege escalation - + FreeBSD 6.16.1_12 6.06.0_17 5.55.5_15 - + @@ -91040,11 +91040,11 @@ executed in your Internet Explorer while gtar -- name mangling symlink vulnerability - + FreeBSD 5.55.5_9 4.114.11_26 - + @@ -91080,13 +91080,13 @@ executed in your Internet Explorer while FreeBSD -- Kernel memory disclosure in firewire(4) - + FreeBSD 6.16.1_11 6.06.2_16 5.55.5_9 4.114.11_26 - + @@ -91169,7 +91169,7 @@ executed in your Internet Explorer while 0.9.7l_0 0.9.80.9.8d_0 - + FreeBSD 6.16.1_9 6.06.0_14 @@ -91177,7 +91177,7 @@ executed in your Internet Explorer while 5.45.4_21 5.35.3_36 4.114.11_24 - + @@ -91928,7 +91928,7 @@ executed in your Internet Explorer while gzip -- multiple vulnerabilities - + FreeBSD 6.16.1_7 6.06.0_12 @@ -91936,7 +91936,7 @@ executed in your Internet Explorer while 5.45.4_19 5.35.3_34 4.11_22 - + gzip 1.3.12 @@ -91977,14 +91977,14 @@ executed in your Internet Explorer while bind9 -- Denial of Service in named(8) - + FreeBSD 6.16.1_6 6.06.0_11 5.55.5_4 5.45.4_18 5.05.3_33 - + bind9 9.09.3.2.1 @@ -92033,7 +92033,7 @@ executed in your Internet Explorer while openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3) - + FreeBSD 6.16.1_6 6.06.0_11 @@ -92041,7 +92041,7 @@ executed in your Internet Explorer while 5.45.4_18 5.35.3_33 4.11_21 - + openssl 0.9.80.9.8c_9 @@ -94039,7 +94039,7 @@ executed in your Internet Explorer while openssh -- multiple vulnerabilities - + FreeBSD 6.16.1_10 6.06.0_15 @@ -94047,7 +94047,7 @@ executed in your Internet Explorer while 5.45.4_22 5.05.3_37 4.11_25 - + openssh 4.4,1 @@ -94969,7 +94969,7 @@ executed in your Internet Explorer while sppp -- buffer overflow vulnerability - + FreeBSD 4.11_20 5.35.3_32 @@ -94977,7 +94977,7 @@ executed in your Internet Explorer while 5.55.5_3 6.06.0_10 6.16.1_4 - + @@ -96290,7 +96290,7 @@ executed in your Internet Explorer while sendmail -- Incorrect multipart message handling - + FreeBSD 4.114.11_19 5.35.3_31 @@ -96298,7 +96298,7 @@ executed in your Internet Explorer while 5.55.5_2 6.06.0_9 6.16.1_2 - + @@ -96393,7 +96393,7 @@ executed in your Internet Explorer while smbfs -- chroot escape - + FreeBSD 4.104.10_24 4.114.11_18 @@ -96402,7 +96402,7 @@ executed in your Internet Explorer while 5.55.5_1 6.06.0_8 6.16.1_1 - + @@ -96436,14 +96436,14 @@ executed in your Internet Explorer while ypserv -- Inoperative access controls in ypserv - + FreeBSD 5.35.3_30 5.45.4_15 5.55.5_1 6.06.0_8 6.16.1_1 - + @@ -97694,7 +97694,7 @@ executed in your Internet Explorer while FreeBSD -- FPU information disclosure - + FreeBSD 6.06.0_7 5.45.4_14 @@ -97703,7 +97703,7 @@ executed in your Internet Explorer while 4.114.11_17 4.104.10_23 4.10 - + @@ -98642,14 +98642,14 @@ executed in your Internet Explorer while sendmail 8.138.13.6 - + FreeBSD 6.06.0_6 5.45.4_13 5.35.3_28 4.114.11_16 4.104.10_22 - + @@ -98679,14 +98679,14 @@ executed in your Internet Explorer while OPIE -- arbitrary password change - + FreeBSD 6.06.0_6 5.45.4_13 5.35.3_28 4.114.11_16 4.104.10_22 - + @@ -98730,14 +98730,14 @@ executed in your Internet Explorer while ipsec -- reply attack vulnerability - + FreeBSD 6.06.0_6 5.45.4_13 5.35.3_28 4.114.11_16 4.104.10_22 - + @@ -99011,14 +99011,14 @@ executed in your Internet Explorer while nfs -- remote denial of service - + FreeBSD 6.06.0_5 5.45.4_12 5.35.3_27 4.114.11_15 4.104.10_21 - + @@ -99063,11 +99063,11 @@ executed in your Internet Explorer while openssh -- remote denial of service - + FreeBSD 5.45.4_12 5.35.3_27 - + @@ -99887,11 +99887,11 @@ executed in your Internet Explorer while FreeBSD -- Infinite loop in SACK handling - + FreeBSD 5.45.4_11 5.35.3_26 - + @@ -99924,12 +99924,12 @@ executed in your Internet Explorer while pf -- IP fragment handling panic - + FreeBSD 6.06.0_4 5.45.4_10 5.35.3_25 - + @@ -99966,10 +99966,10 @@ executed in your Internet Explorer while FreeBSD -- Local kernel memory disclosure - + FreeBSD 6.06.0_4 - + @@ -100005,10 +100005,10 @@ executed in your Internet Explorer while IEEE 802.11 -- buffer overflow - + FreeBSD 6.06.0_3 - + @@ -100041,10 +100041,10 @@ executed in your Internet Explorer while ipfw -- IP fragment denial of service - + FreeBSD 6.06.0_2 - + @@ -100119,14 +100119,14 @@ executed in your Internet Explorer while cpio -- multiple vulnerabilities - + FreeBSD 6.06.0_2 5.45.4_9 5.35.3_24 4.114.11_14 4.104.10_20 - + @@ -100175,14 +100175,14 @@ executed in your Internet Explorer while ee -- temporary file privilege escalation - + FreeBSD 6.06.0_2 5.45.4_9 5.35.3_24 4.114.11_14 4.104.10_20 - + @@ -100219,14 +100219,14 @@ executed in your Internet Explorer while texindex -- temporary file privilege escalation - + FreeBSD 6.06.0_2 5.45.4_9 5.35.3_24 4.114.11_14 4.104.10_20 - + @@ -100261,13 +100261,13 @@ executed in your Internet Explorer while cvsbug -- race condition - + FreeBSD 5.45.4_7 5.35.3_22 4.114.11_12 4.104.10_18 - + cvs+ipv6 1.11.17_1 @@ -102116,13 +102116,13 @@ executed in your Internet Explorer while compat5x-sparc64 5.4.0.8 - + FreeBSD 4.10_19 4.114.11_13 5.35.3_23 5.45.4_8 - + @@ -103023,10 +103023,10 @@ executed in your Internet Explorer while bind9 9.3.0 - + FreeBSD 5.35.3_16 - + @@ -103914,11 +103914,11 @@ executed in your Internet Explorer while ipsec -- Incorrect key usage in AES-XCBC-MAC - + FreeBSD 5.45.4_6 5.*5.3_20 - + @@ -103954,11 +103954,11 @@ executed in your Internet Explorer while linux_base-suse 9.3_1 - + FreeBSD 5.45.4_6 5.35.3_20 - + @@ -103989,11 +103989,11 @@ executed in your Internet Explorer while devfs -- ruleset bypass - + FreeBSD 5.45.4_5 5.*5.3_19 - + @@ -105443,11 +105443,11 @@ executed in your Internet Explorer while zsync 0.4.1 - + FreeBSD 5.45.4_4 5.35.3_18 - + @@ -105741,10 +105741,10 @@ executed in your Internet Explorer while kernel -- ipfw packet matching errors with address tables - + FreeBSD 5.45.4_3 - + @@ -105787,13 +105787,13 @@ executed in your Internet Explorer while bzip2 -- denial of service and permission race vulnerabilities - + FreeBSD 5.45.4_3 5.05.3_17 4.114.11_11 4.10_16 - + bzip2 1.0.3_1 @@ -105840,13 +105840,13 @@ executed in your Internet Explorer while kernel -- TCP connection stall denial of service - + FreeBSD 5.45.4_3 5.05.3_17 4.114.11_11 4.10_16 - + @@ -106458,7 +106458,7 @@ executed in your Internet Explorer while gzip -- directory traversal and permission race vulnerabilities - + FreeBSD 5.45.4_2 5.05.3_16 @@ -106466,7 +106466,7 @@ executed in your Internet Explorer while 4.104.10_15 4.94.9_18 4.8_33 - + gzip 1.3.5_2 @@ -106514,11 +106514,11 @@ executed in your Internet Explorer while tcpdump -- infinite loops in protocol decoding - + FreeBSD 5.45.4_2 5.35.3_16 - + tcpdump 3.8.3_2 @@ -107563,13 +107563,13 @@ executed in your Internet Explorer while kernel -- information disclosure when using HTT - + FreeBSD 5.45.4_1 5.05.3_15 4.114.11_9 4.10_14 - + @@ -114959,7 +114959,7 @@ http_access deny Gopher Overflow error in fetch - + FreeBSD 5.35.3_1 5.2.15.2.1_12 @@ -114969,7 +114969,7 @@ http_access deny Gopher 4.94.9_13 4.84.8_26 4.7_28 - + @@ -117105,10 +117105,10 @@ http_access deny Gopher *** DIFF OUTPUT TRUNCATED AT 1000 LINES ***