Date: Thu, 11 Aug 2016 15:49:20 +0000 (UTC) From: Mark Felder <feld@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r420081 - head/security/vuxml Message-ID: <201608111549.u7BFnKwI062140@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: feld Date: Thu Aug 11 15:49:20 2016 New Revision: 420081 URL: https://svnweb.freebsd.org/changeset/ports/420081 Log: Add missing FreeBSD SA to vuxml Security: SA-14:01.bsnmpd Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Thu Aug 11 15:26:09 2016 (r420080) +++ head/security/vuxml/vuln.xml Thu Aug 11 15:49:20 2016 (r420081) @@ -58,6 +58,39 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="4c96ecf2-5fd9-11e6-a6c3-14dae9d210b8"> + <topic>FreeBSD -- bsnmpd remote denial of service vulnerability</topic> + <affects> + <package> + <name>FreeBSD</name> + <range><ge>9.2</ge><lt>9.2_3</lt></range> + <range><ge>9.1</ge><lt>9.1_10</lt></range> + <range><ge>8.4</ge><lt>8.4_7</lt></range> + <range><ge>8.3</ge><lt>8.3_14</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Problem Description:</p> + <p>The bsnmpd(8) daemon is prone to a stack-based + buffer-overflow when it has received a specifically crafted + GETBULK PDU request.</p> + <p>Impact:</p> + <p>This issue could be exploited to execute arbitrary code in + the context of the service daemon, or crash the service daemon, causing + a denial-of-service.</p> + </body> + </description> + <references> + <cvename>CVE-2014-1452</cvename> + <freebsdsa>SA-14:01.bsnmpd</freebsdsa> + </references> + <dates> + <discovery>2014-01-14</discovery> + <entry>2016-08-11</entry> + </dates> + </vuln> + <vuln vid="ca16fd0b-5fd1-11e6-a6f2-6cc21735f730"> <topic>PostgreSQL -- minor security problems</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201608111549.u7BFnKwI062140>