From owner-svn-ports-head@FreeBSD.ORG Tue Apr 2 20:21:29 2013 Return-Path: Delivered-To: svn-ports-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 6AC97280; Tue, 2 Apr 2013 20:21:29 +0000 (UTC) (envelope-from delphij@FreeBSD.org) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) by mx1.freebsd.org (Postfix) with ESMTP id 449E87C5; Tue, 2 Apr 2013 20:21:29 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.6/8.14.6) with ESMTP id r32KLT1q038452; Tue, 2 Apr 2013 20:21:29 GMT (envelope-from delphij@svn.freebsd.org) Received: (from delphij@localhost) by svn.freebsd.org (8.14.6/8.14.5/Submit) id r32KLSls038451; Tue, 2 Apr 2013 20:21:28 GMT (envelope-from delphij@svn.freebsd.org) Message-Id: <201304022021.r32KLSls038451@svn.freebsd.org> From: Xin LI Date: Tue, 2 Apr 2013 20:21:28 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r315687 - head/security/vuxml X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 02 Apr 2013 20:21:29 -0000 Author: delphij Date: Tue Apr 2 20:21:28 2013 New Revision: 315687 URL: http://svnweb.freebsd.org/changeset/ports/315687 Log: Document two latest FreeBSD security advisories. Approved by: portmgr (bdrewery) Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Tue Apr 2 19:31:04 2013 (r315686) +++ head/security/vuxml/vuln.xml Tue Apr 2 20:21:28 2013 (r315687) @@ -51,6 +51,71 @@ Note: Please add new entries to the beg --> + + FreeBSD -- BIND remote denial of service + + + FreeBSD + 9.09.0_7 + 9.19.1_2 + + + + +
+

A flaw in a library used by BIND allows an + attacker to deliberately cause excessive memory + consumption by the named(8) process. This + affects both recursive and authoritative + servers.

+
+ + + + CVE-2013-2266 + SA-13:04.bind + https://kb.isc.org/article/AA-00871 + + + 2013-04-02 + 2013-04-02 + + + + + FreeBSD -- OpenSSL multiple vulnerabilities + + + FreeBSD + 8.38.3_7 + 9.09.0_7 + 9.19.1_2 + + + + +
+

A flaw in the OpenSSL handling of OCSP response + verification could be exploited to cause a denial of + service attack.

+

OpenSSL has a weakness in the handling of CBC + ciphersuites in SSL, TLS and DTLS. The weakness could reveal + plaintext in a timing attack.

+
+ + + + CVE-2013-0166 + CVE-2013-0169 + SA-13:04.openssl + http://www.openssl.org/news/secadv_20130205.txt + + + 2013-04-02 + 2013-04-02 + + + OpenVPN -- potential side-channel/timing attack when comparing HMACs