278463
|
Ports & Packages
|
Individual Port(s)
|
pi
|
New
|
---
|
ftp/filezilla: needs update to 3.67.0 to fix PuTTY bug leaking info on NIST-P521 based private keys [CVE-2024-31497]
|
2024-04-21
|
278404
|
Ports & Packages
|
Individual Port(s)
|
marcus
|
Open
|
---
|
ports-mgmt/portlint: Add check for files' permissions
|
2024-04-18
|
278244
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
DUPLICATE
|
net/jose: Update to v13 (CVE-2023-50967)
|
2024-04-07
|
278243
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/jose: Update to v13 (CVE-2023-50967)
|
2024-04-11
|
278180
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
New
|
---
|
www/mod_security: Update to 2.9.7 and Latest Project Changes
|
2024-04-05
|
277631
|
Ports & Packages
|
Individual Port(s)
|
matthew
|
Closed
|
FIXED
|
www/grafana: Update to 10.4.1 and 9.5.17 (Fixes security vulnerability)
|
2024-03-26
|
277587
|
Ports & Packages
|
Individual Port(s)
|
grembo
|
Closed
|
FIXED
|
sysutils/pftop crashing v0.10 installed via pkg install pftop
|
2024-04-27
|
277261
|
Ports & Packages
|
Individual Port(s)
|
rodrigo
|
Closed
|
FIXED
|
dns/c-ares: upgrade to 1.27.0 required (moderate security issue)
|
2024-02-23
|
277228
|
Base System
|
misc
|
geom
|
New
|
---
|
Device permissions security hole with partitioning (/dev/geom.ctl)
|
2024-03-03
|
277184
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
www/grafana: Update to 10.3.3 and 9.5.16 (Fixes security vulnerability)
|
2024-02-23
|
276515
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/rclone: update to 1.65.1
|
2024-01-26
|
276491
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
mail/roundcube: Security update to 1.6.6
|
2024-01-24
|
276422
|
Base System
|
conf
|
bugs
|
Closed
|
Unable to Repro
|
pam_passwdqc(8) - add more examples
|
2024-01-18
|
276022
|
Ports & Packages
|
Individual Port(s)
|
dvl
|
Closed
|
FIXED
|
databases/mantis: Update to patch known vulns
|
2024-01-06
|
275999
|
Ports & Packages
|
Individual Port(s)
|
bofh
|
Closed
|
FIXED
|
devel/zookeeper: Update to 3.8.3 (Fixes critical security vulnerability) and release the port
|
2023-12-29
|
275055
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
security/openvpn: Update to 2.6.7
|
2023-11-19
|
274520
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
mail/roundcube: Security update to 1.6.4
|
2023-11-10
|
274270
|
Ports & Packages
|
Individual Port(s)
|
vbox
|
Open
|
---
|
emulators/virtualbox-ose-legacy family, including www/phpvirtualbox-legacy: deprecate six legacy ports
|
2024-04-23
|
274235
|
Ports & Packages
|
Individual Port(s)
|
fluffy
|
Closed
|
FIXED
|
mail/exim: update 4.96 -> 4.96.1 to fix several CVEs
|
2023-10-03
|
274215
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
mail/libspf2: add fix for CVE-2023-42118
|
2023-10-05
|
274113
|
Ports & Packages
|
Individual Port(s)
|
erlang
|
Closed
|
FIXED
|
net/rabbitmq: update to 3.11.24
|
2023-12-29
|
273766
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Open
|
---
|
graphics/webp: critical vulnerability (affects browsers)
|
2023-10-01
|
273749
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
Overcome By Eve
|
graphics/webp: backport fix for CVE-2023-4863
|
2023-09-15
|
273691
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
www/gitea: Update to 1.20.4 (fixes security vulnerabilities)
|
2023-09-10
|
273595
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
FIXED
|
net/samba413: back port security patches from 4.6.11
|
2023-10-15
|
273563
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: update to 1.93.0
|
2023-10-27
|
273417
|
Ports & Packages
|
Individual Port(s)
|
makc
|
Closed
|
FIXED
|
[patch] archivers/7-zip: Update to 23.00 or 23.01 (Security)
|
2024-02-16
|
273379
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
www/gitea: Update to 1.20.3 (fixes security vulnerabilities)
|
2023-08-28
|
273363
|
Ports & Packages
|
Individual Port(s)
|
skreuzer
|
Closed
|
FIXED
|
devel/py-joblib: upgrade to 1.3.2 and fixes CVE-2022-21797
|
2023-08-29
|
272902
|
Base System
|
kern
|
bugs
|
New
|
---
|
Security: allow passphrases for WPA-EAP to be saved without using clear text in a world-readable file
|
2023-08-02
|
272586
|
Ports & Packages
|
Individual Port(s)
|
grahamperrin
|
Closed
|
DUPLICATE
|
emulators/virtualbox-ose: FORBIDDEN for all 6.1.4⋯ versions of ports in the family
|
2023-07-19
|
272191
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
security/tang: Update to v14 (Fix CVE-2023-1672)
|
2023-06-29
|
272161
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.27 and 9.5.5 (Fixes critical security vulnerability)
|
2023-06-25
|
271893
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.26 and 9.5.3 (Fixes security vulnerabilities)
|
2023-06-08
|
271839
|
Base System
|
bin
|
emaste
|
Closed
|
FIXED
|
crypto/openssh: Status of CVE-2023-28531
|
2023-06-21
|
271695
|
Ports & Packages
|
Individual Port(s)
|
diizzy
|
Closed
|
FIXED
|
graphics/webp: Patch CVE-2023-1999
|
2023-06-06
|
271141
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
security/vuxml: vulnerabilities for the emulators/virtualbox-ose family, 6.⋯ versions prior to 6.1.46
|
2023-07-20
|
271108
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/cloud-init: (and net/cloud-init-devel) security update
|
2023-05-01
|
271100
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/activemq: Version update, explict jdk specification and rc script bug fixes
|
2023-04-30
|
271086
|
Ports & Packages
|
Individual Port(s)
|
matthew
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.24 and 9.4.9 (Fixes security vulnerability)
|
2023-04-27
|
271064
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/nginx-naxsi: Does not run with pcre2
|
2023-08-05
|
271041
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
multimedia/jellyfin: update to 10.8.10
|
2023-04-25
|
270923
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
security/vuxml: 18 new entries for vulnerable ports
|
2023-09-03
|
270875
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
New
|
---
|
www/nginx: with njs < 0.7.11 is vulnerable
|
2023-04-16
|
270823
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
print/ghostscript9-agpl-base: please check for CVE-2023-28879
|
2023-05-01
|
270800
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
print/ghostscript10: please fix CVE-2023-28879 by updating to 10.01.1
|
2023-04-13
|
270795
|
Ports & Packages
|
Individual Port(s)
|
philip
|
In Progress
|
---
|
security/vuxml: taking port flavours into account in recent new entries
|
2024-02-15
|
270767
|
Ports & Packages
|
Individual Port(s)
|
python
|
Closed
|
FIXED
|
lang/python311 backport 3.11.3 to quarterly
|
2023-06-16
|
270744
|
Ports & Packages
|
Individual Port(s)
|
philip
|
Closed
|
FIXED
|
security/vuxml: 20 new entries for vulnerable ports
|
2023-04-12
|
270739
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Fix py-redis port name
|
2023-04-12
|
270723
|
Ports & Packages
|
Individual Port(s)
|
philip
|
Closed
|
FIXED
|
VuXML new entries for 20 vulnerable ports
|
2023-04-12
|
270562
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.22 and 9.4.7 (Fixes security vulnerability)
|
2023-04-01
|
270540
|
Ports & Packages
|
Individual Port(s)
|
x11
|
Closed
|
FIXED
|
x11-servers/xorg-server: CVE-2023-1393
|
2023-04-07
|
270357
|
Ports & Packages
|
Individual Port(s)
|
portmgr
|
Closed
|
FIXED
|
ftp/curl: Update to 8.0.1
|
2023-04-18
|
270050
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
databases/mantis: Update to 2.25.6
|
2023-03-10
|
270037
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/apache24: Security Update to 2.4.56
|
2023-03-15
|
269967
|
Ports & Packages
|
Individual Port(s)
|
yasu
|
Closed
|
FIXED
|
ftp/curl: security update to 7.88.1
|
2023-03-19
|
269903
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.21 and 9.3.8 (Fixes security vulnerabilities)
|
2023-03-03
|
269768
|
Ports & Packages
|
Package Infrastruc
|
apache
|
Closed
|
FIXED
|
www/apache24: broken dependency / potential security issue
|
2023-04-01
|
269707
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
www/gitea: update to 1.18.4 (fixes security vulnerabilities)
|
2023-02-20
|
269667
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
security/vuxml: document CVE-2022-39282 and CVE-2022-39283 for net/freerdp
|
2023-02-24
|
269655
|
Ports & Packages
|
Individual Port(s)
|
garga
|
Closed
|
FIXED
|
security/vuxml: document CVE-2023-22490 and CVE-2023-23946 for devel/git, www/gitlab-ce, …
|
2023-02-21
|
269652
|
Ports & Packages
|
Individual Port(s)
|
vvd
|
Closed
|
FIXED
|
www/tomcat{85,9,101,-devel}: Update to 8.5.88, 9.0.74, 10.1.8, 11.0.0-M5 (CVE-2023-24998 FileUpload DoS with excessive parts)
|
2023-05-02
|
269530
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
print/harfbuzz: update to 7.0.0
|
2023-02-23
|
269409
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.20 and 9.3.6 (Fixes security vulnerabilities)
|
2023-02-09
|
269226
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
security/vuxml: document CVE-2021-42835 for multimedia/plexmediaserver < 1.25.0
|
2023-01-30
|
269221
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
Overcome By Eve
|
security/vuxml: document CVE-2017-11610 and CVE-2019-12105 for outdated versions of sysutils/py-supervisor
|
2023-09-02
|
269170
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/kafka: update to 3.3.2
|
2023-02-05
|
269154
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
sysutils/node_exporter: update to 1.5.0
|
2023-02-04
|
269153
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net-mgmt/prometheus2: Update to 2.41.0
|
2023-01-30
|
269147
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
security/vuxml: document CVE-2018-21232 for devel/re2c < 2.0
|
2023-01-25
|
269131
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
www/gitea: update to 1.18.3 (fixes security vulnerabilities)
|
2023-01-24
|
269116
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
dns/powerdns-recursor: update to 4.8.1 (fixes CVE-2023-22617)
|
2023-01-24
|
269079
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/eternalterminal: Update to 6.2.4
|
2023-01-23
|
269051
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/awstats: update to 7.9
|
2023-01-23
|
269050
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/krill: Update to 0.12.1
|
2023-01-23
|
269030
|
Ports & Packages
|
Individual Port(s)
|
garga
|
Closed
|
FIXED
|
[PATCH] security/sudo update 1.9.12p2 (fix CVE-2023-22809)
|
2023-02-27
|
268963
|
Ports & Packages
|
Individual Port(s)
|
x11
|
Closed
|
FIXED
|
x11-servers/xorg-server: update to 21.1.7
|
2023-03-27
|
268754
|
Ports & Packages
|
Individual Port(s)
|
dvl
|
Closed
|
FIXED
|
devel/viewvc-devel: update to 1.3.0-20230104
|
2023-01-13
|
268742
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.2.23
|
2023-01-05
|
268656
|
Ports & Packages
|
Individual Port(s)
|
fuz
|
Closed
|
FIXED
|
www/minio: multiple vulnerabilities
|
2023-03-27
|
268523
|
Ports & Packages
|
Individual Port(s)
|
gnome
|
Open
|
---
|
www/webkit2-gtk{3,4}: 2.38 available
|
2023-12-27
|
268357
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
www/typo3-11: Update to 11.5.20
|
2022-12-18
|
268244
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
lang/python39: Update to 3.9.16
|
2022-12-22
|
268190
|
Ports & Packages
|
Individual Port(s)
|
glewis
|
Closed
|
FIXED
|
archivers/libarchive: Fix CVE 2022-36227
|
2022-12-06
|
268078
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/grafana9: Update to 9.2.7 (fixes security vulnerability)
|
2022-12-23
|
267937
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
archivers/advancecomp: update to 2.4
|
2022-11-27
|
267728
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.15 and 9.2.4 (fixes security vulnerabilities)
|
2022-11-13
|
267627
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
Overcome By Eve
|
net/samba413: CVE-2022-3437: backport port revision 4 to 2022Q4
|
2023-01-05
|
267624
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
databases/cassandra3: Update to 3.11.14
|
2023-01-11
|
267617
|
Ports & Packages
|
Individual Port(s)
|
cy
|
Closed
|
FIXED
|
security/sudo: Update to 1.9.12p1
|
2022-11-08
|
267507
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/darkhttpd: Update to 1.14 (Fixes CVE-2020-25691)
|
2022-11-08
|
267466
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
www/webtrees: Update to 1.7.20 (security release)
|
2022-12-29
|
267465
|
Ports & Packages
|
Individual Port(s)
|
mikael
|
Closed
|
FIXED
|
www/webtrees20: Update to 2.0.25 (.24 was a security release)
|
2023-01-16
|
267276
|
Ports & Packages
|
Individual Port(s)
|
desktop
|
Open
|
---
|
graphics/tiff: Backport fixes for CVE-2022-2519, CVE-2022-2520 and CVE-2022-2521
|
2023-02-23
|
267177
|
Ports & Packages
|
Individual Port(s)
|
garga
|
Closed
|
FIXED
|
devel/git: Update to 2.38.1 (security release)
|
2022-10-19
|
267080
|
Ports & Packages
|
Individual Port(s)
|
wen
|
In Progress
|
---
|
lang/python39: Update to 3.9.15
|
2022-12-14
|
267049
|
Ports & Packages
|
Individual Port(s)
|
horde
|
Closed
|
FIXED
|
mail/horde-imp: address ZDI-20-1051 / ZDI-CAN-10436
|
2022-10-28
|
267037
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
security/strongswan: update to 5.9.8
|
2022-10-19
|
266938
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
security/strongswan: CVE-2022-40617
|
2022-10-10
|
266907
|
Ports & Packages
|
Individual Port(s)
|
vvd
|
Closed
|
FIXED
|
emulators/virtualbox-ose{-*}: Update to 6.1.44
|
2023-05-26
|
266865
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/routinator: Update to 0.11.3
|
2022-10-09
|
266766
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
devel/zydis: update to 3.2.1
|
2022-10-04
|
266654
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
dns/unbound: Update to 1.16.3
|
2022-09-29
|
266591
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
Overcome By Eve
|
security/vuxml: Add nodejs September 22nd 2022 Security Releases
|
2024-02-13
|
266535
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/grafana7: Deprecate and remove port
|
2022-10-06
|
266530
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.13 and 9.1.6 (Fixes security vulnerability)
|
2022-09-21
|
266318
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/mod_security: Update to 2.9.6
|
2022-10-19
|
266286
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
lang/python39: Update to 3.9.14
|
2022-09-19
|
266133
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
databases/mariadb10[456]-server: update to latest security releases
|
2022-09-09
|
266128
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.11 and 9.1.2 (Fixes security vulnerability)
|
2022-09-01
|
265800
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/gemserv: Update to 0.6.6
|
2023-01-26
|
265468
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/mysql80-server: Update to 8.0.30 (Fixes several CVE)
|
2022-09-16
|
265330
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
www/grafana{8,9}: Update to 8.5.9 and 9.0.3 (Fixes security vulnerability)
|
2022-07-28
|
265250
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Works As Intend
|
ports-mgmt/portmaster -F does not suppress build of depends (for sysutils/restic, for one)
|
2022-07-17
|
265244
|
Ports & Packages
|
Individual Port(s)
|
x11
|
Closed
|
FIXED
|
x11-servers/xorg-server: CVE-2022-2319 and CVE-2022-2320
|
2023-03-29
|
265160
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/node16: Update to 16.16.0
|
2023-01-01
|
265159
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/node14: Update to 14.20.0
|
2023-01-01
|
265082
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
devel/ipython: 7.31.1 was a security release but not marked or merged (CVE-2022-21699)
|
2022-11-12
|
265036
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net-im/gotosocial: upgrade to 0.3.7
|
2022-07-07
|
264999
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb106-server: conf.d/wsrep.cnf overrides bind-address in conf.d/server.cnf.
|
2023-04-10
|
264847
|
Ports & Packages
|
Individual Port(s)
|
mr
|
Closed
|
FIXED
|
security/vaultwarden: Change file permissions of rc.conf.d/vaultwarden to 0600
|
2022-07-22
|
264618
|
Ports & Packages
|
Individual Port(s)
|
nc
|
Closed
|
FIXED
|
graphics/p5-Image-ExifTool: Update to 12.42 - (fixed security vulnerability)
|
2022-06-24
|
264523
|
Ports & Packages
|
Individual Port(s)
|
horde
|
Closed
|
FIXED
|
mail/horde-turba: Update to 4.2.29 (4.2.26 fixes RCE security vulnerability: CVE-2022-30287)
|
2022-10-14
|
264437
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Open
|
---
|
security/vuxml: Cannot validate entry: error: xmlAddEntity: invalid redeclaration of predefined entity
|
2022-10-14
|
264435
|
Base System
|
bhyve
|
jhb
|
Closed
|
FIXED
|
bhyve: hda_write() can index (and jump) beyond end of array
|
2023-02-01
|
264426
|
Ports & Packages
|
Individual Port(s)
|
bofh
|
Open
|
---
|
www/mitmproxy: Update to 8.0.0 (<=7.0.4 vulnerable to CVE-2022-24766)
|
2023-12-15
|
264425
|
Ports & Packages
|
Individual Port(s)
|
jhixson
|
Closed
|
FIXED
|
sysutils/nomad: Secure nomad data_dir
|
2022-06-10
|
264232
|
Ports & Packages
|
Individual Port(s)
|
bofh
|
Closed
|
FIXED
|
www/mattermost-{server,webapp}: Update to 7.3.0
|
2023-02-23
|
264170
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb103-server: Update to 10.3.35 (includes security fixes)
|
2022-05-24
|
264082
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Overcome By Eve
|
www/grafana{7,8}: Update to 8.5.3 and 7.5.16 (Fixes security vulnerability)
|
2022-11-07
|
263824
|
Base System
|
bin
|
karels
|
Closed
|
FIXED
|
genet(4): Driver interface may overwrite memory in a consecutive memory copy operations when parsing TX packet
|
2022-05-23
|
263789
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
net/eternalterminal: Update to 6.2.1
|
2022-05-11
|
263640
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/mysql80-server: Update to 8.0.29 (Fixes multiple CVE)
|
2022-05-17
|
263624
|
Ports & Packages
|
Individual Port(s)
|
marcus
|
Closed
|
Overcome By Eve
|
net/netatalk3: Update to 3.1.13 (Fixes multiple/many security vulnerabilities)
|
2022-05-06
|
263623
|
Ports & Packages
|
Individual Port(s)
|
yasu
|
Closed
|
Overcome By Eve
|
databases/redis: Update to 6.2.7 on 2022Q2 branch
|
2022-08-29
|
263434
|
Base System
|
bin
|
jkim
|
Closed
|
Not A Bug
|
openssl: Unpatched bugs in /crypto/openssl/apps
|
2022-06-20
|
263060
|
Ports & Packages
|
Individual Port(s)
|
python
|
Closed
|
FIXED
|
devel/py-py: Update to 1.10.0 (security) -> 1.11.0 (for @py311 support)
|
2023-09-01
|
262898
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
www/gitea: Update to 1.16.5 (fixes security vulnerabilities)
|
2022-03-29
|
262879
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
dns/powerdns dns/powerdns-recursor: Update to 4.6.1 (fixes CVE-2022-27227) + fix building against LibreSSL
|
2022-04-06
|
262693
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
irc/scrollz: Update to 2.3.1
|
2022-04-12
|
262662
|
Ports & Packages
|
Individual Port(s)
|
mat
|
Closed
|
FIXED
|
dns/bind91{1,6,8}: CVE-2021-25220 CVE-2022-0396 CVE-2022-0635 CVE-2022-0667
|
2022-03-25
|
262537
|
Ports & Packages
|
Individual Port(s)
|
diizzy
|
Closed
|
Not Accepted
|
dns/dns2blackhole : dns2blackhole-update2 is downloading executable to make ddos
|
2023-06-19
|
262341
|
Ports & Packages
|
Individual Port(s)
|
nc
|
Closed
|
FIXED
|
www/glpi: Update to 9.5.7
|
2022-03-09
|
262327
|
Ports & Packages
|
Individual Port(s)
|
egypcio
|
Closed
|
FIXED
|
[PATCH] security/meek: update 0.35.0 to 0.37.0
|
2022-08-07
|
262295
|
Base System
|
misc
|
bugs
|
New
|
---
|
[pf] Tables and anchors
|
2022-03-02
|
262197
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
www/typo3-11: Update to 11.5.7
|
2022-02-27
|
262196
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
www/typo3-10: Update to 10.4.25
|
2022-02-27
|
262180
|
Base System
|
kern
|
bugs
|
Open
|
---
|
jail escaping via jail-friendly nullfs
|
2023-11-24
|
262174
|
Documentation
|
Books & Articles
|
carlavilla
|
Closed
|
FIXED
|
gpg.conf options in Committer's guide should be reviewed/updated
|
2023-09-07
|
262163
|
Ports & Packages
|
Individual Port(s)
|
tcberner
|
Closed
|
FIXED
|
net/freerdp: Update to 2.6.0
|
2022-02-24
|
262133
|
Ports & Packages
|
Individual Port(s)
|
ume
|
Closed
|
FIXED
|
security/cyrus-sasl2*: Update to 2.1.28 (security/bugfix release)
|
2022-02-28
|
261969
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb10[345]-server: Update to latest versions (security releases)
|
2022-02-19
|
261892
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
www/grafana[678]: Update to latest versions (8.3.5, 7.?.?, 6.?.?) fixing security vulnerabilities
|
2022-04-04
|
261804
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: libX11 CVE-2021-31535 missing PORTEPOCH
|
2022-02-09
|
261791
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
devel/py-twisted: Update to 22.1.0 (includes a security update)
|
2022-02-13
|
261789
|
Ports & Packages
|
Individual Port(s)
|
otis
|
Closed
|
FIXED
|
www/node16: Update to 16.14.0 (LTS)
|
2022-06-04
|
261576
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
www/gitea: Update to 1.16.4 (was: 1.15.11: fixes security vulnerability)
|
2022-03-29
|
261560
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
www/grafana6: deprecate and remove port
|
2022-03-31
|
261527
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/mod_security: Update to 2.9.5
|
2022-03-04
|
261526
|
Ports & Packages
|
Individual Port(s)
|
zi
|
Closed
|
FIXED
|
security/modsecurity3: Update to 3.0.6
|
2022-07-30
|
261499
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/phpmyadmin5 : Update to 5.1.2
|
2022-02-02
|
261482
|
Ports & Packages
|
Individual Port(s)
|
desktop
|
Closed
|
FIXED
|
sysutils/polkit: Add upstream fix for CVE-2021-4034 "pwnkit" security vulnerability
|
2022-01-27
|
261436
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
www/phpmustache: update to 2.14.1
|
2022-01-27
|
261410
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
www/firefox: Update to 96.0.3 (unfixed security vulnerabilities)
|
2022-01-28
|
261306
|
Base System
|
conf
|
bugs
|
New
|
---
|
Geli rc.d script does not support insertion of USB devices containing a keyfile.
|
2023-04-27
|
261273
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
Overcome By Eve
|
devel/liblas: Vulnerable to multiple CVEs, Deprecated, fails to run tests: crashes
|
2024-04-01
|
261210
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
security/vuxml: Add Prosody XMPP server advisory 2022-01-13
|
2022-01-16
|
261209
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
net-im/prosody: Update to 0.11.12
|
2022-01-16
|
261120
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
devel/mill Update to 0.9.12 (log4j security fix)
|
2022-01-12
|
261056
|
Ports & Packages
|
Individual Port(s)
|
svysh.fbsd
|
Closed
|
FIXED
|
net/uriparser: Update to 0.9.6
|
2022-01-09
|
260675
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/matomo: Update to 4.6.2
|
2021-12-31
|
260594
|
Ports & Packages
|
Individual Port(s)
|
mikael
|
Closed
|
FIXED
|
mail/opendmarc: update to 1.4.2
|
2021-12-30
|
260590
|
Ports & Packages
|
Individual Port(s)
|
tcberner
|
Closed
|
FIXED
|
URGENT graphics/p5-Image-ExifTool security update needs commit since February, Request MAINTAINER'ship
|
2022-03-25
|
260575
|
Ports & Packages
|
Individual Port(s)
|
matthew
|
Closed
|
FIXED
|
www/grafana7: Update to 7.5.12 (Fixes security vulnerabilities)
|
2022-01-09
|
260574
|
Ports & Packages
|
Individual Port(s)
|
diizzy
|
Closed
|
FIXED
|
security/tang: Update to v11 (Fix CVE-2021-4076)
|
2022-02-12
|
260570
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
devel/zookeeper: Update log4j to 2.17
|
2021-12-20
|
260549
|
Ports & Packages
|
Individual Port(s)
|
truckman
|
Closed
|
FIXED
|
devel/py-opengrok-tools: Possible security issue: Update to 1.6.9 (>1.6.7?)
|
2022-05-05
|
260534
|
Ports & Packages
|
Individual Port(s)
|
truckman
|
Closed
|
FIXED
|
devel/opengrok: Update to 1.6.9 (>1.6.7), fixes security vulnerability (CVE-2021-2322)
|
2022-04-26
|
260526
|
Ports & Packages
|
Individual Port(s)
|
x11
|
Closed
|
FIXED
|
x11-servers/xorg-server: Update to 1.20.14 as a security fix
|
2023-03-27
|
260481
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
devel/zookeeper: Update log4j to 2.16
|
2021-12-18
|
260421
|
Ports & Packages
|
Package Infrastruc
|
portmgr
|
Closed
|
FIXED
|
devel/log4j: Security vulnerability tracking issue (CVE-2021-44228 / CVE-2021-45046)
|
2023-03-01
|
260391
|
Ports & Packages
|
Individual Port(s)
|
otis
|
Closed
|
Overcome By Eve
|
textproc/elasticsearch7: Update to 7.16.1
|
2021-12-20
|
260390
|
Ports & Packages
|
Individual Port(s)
|
otis
|
Closed
|
Overcome By Eve
|
sysutils/logstash7: Update to 7.16.1
|
2021-12-20
|
260373
|
Ports & Packages
|
Individual Port(s)
|
mfechner
|
Closed
|
FIXED
|
textproc/apache-solr: Update to 8.11 (Fixes security vulnerability)
|
2021-12-17
|
260358
|
Ports & Packages
|
Individual Port(s)
|
matthew
|
Closed
|
FIXED
|
www/grafana8: Update to 8.3.2 (Fixes moderate severity vulnerabilities)
|
2021-12-20
|
260138
|
Base System
|
kern
|
bugs
|
New
|
---
|
TPM2 Support in bootloader / kernel in order to retrieve GELI passphrase
|
2024-02-07
|
259938
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
mail/libspf2: Update to 1.2.11 (Fixes CVE-2021-20314)
|
2022-05-13
|
259638
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
www/grafana8: Update to 8.2.7 (Fixes high vulnerabilities)
|
2021-12-12
|
259637
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
math/py-numpy: Update to 1.22.4
|
2022-06-23
|
259597
|
Ports & Packages
|
Individual Port(s)
|
ygy
|
Closed
|
FIXED
|
www/grafana7: Update to 7.5.11 (Fixes Security Vulnerability)
|
2021-11-25
|
259590
|
Ports & Packages
|
Individual Port(s)
|
office
|
Closed
|
FIXED
|
graphics/libemf: update to 1.0.13
|
2021-11-02
|
259534
|
Ports & Packages
|
Individual Port(s)
|
ygy
|
Closed
|
FIXED
|
archivers/advancecomp: Update to 2.1-6-g7b08f7a and take maintainership
|
2021-11-19
|
259512
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
net/php{73,74,80}: Backport fix for CVE-2021-21703 security vulnerability
|
2022-09-11
|
259362
|
Ports & Packages
|
Individual Port(s)
|
gnome
|
Closed
|
Not Accepted
|
www/webkit2-gtk3: update to 2.34.1
|
2021-11-12
|
259338
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/mysql57-server: Update to 5.7.36 (fixes security vulnerabilities)
|
2021-11-01
|
259126
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node14: Update to 14.18.1
|
2021-10-14
|
258978
|
Ports & Packages
|
Individual Port(s)
|
yasu
|
Closed
|
FIXED
|
databases/mongodb50: update to 5.0.3
|
2021-10-27
|
258936
|
Ports & Packages
|
Individual Port(s)
|
osa
|
Closed
|
FIXED
|
databases/redis{,5,6}: Update to latest releases
|
2021-10-05
|
258834
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
security/ca_root_nss: request to remove outdated "DST Root CA X3" cert b/c of collateral damage
|
2022-11-07
|
258802
|
Ports & Packages
|
Package Infrastruc
|
portmgr
|
Closed
|
FIXED
|
No updates to vuln.xml since 2021-09-16
|
2021-09-30
|
258519
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
Bump lang/python37 to 3.7.12
|
2021-09-19
|
258518
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
lang/python36: Update to 3.6.15
|
2021-09-19
|
258354
|
Ports & Packages
|
Individual Port(s)
|
diizzy
|
Closed
|
FIXED
|
graphics/libpano13: Update to 2.9.20
|
2021-09-23
|
258195
|
Ports & Packages
|
Individual Port(s)
|
wen
|
In Progress
|
---
|
lang/python38: Update to 3.8.12
|
2021-09-19
|
258187
|
Ports & Packages
|
Individual Port(s)
|
ashish
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: Update to 1.41.1
|
2021-09-02
|
258071
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
mail/fetchmail: security update to 6.4.22.rc2 - CVE-2021-39272
|
2021-08-29
|
258021
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
net-mgmt/icinga2: Update to 2.12.6 (security/bugfix release)
|
2021-10-17
|
257903
|
Ports & Packages
|
Individual Port(s)
|
otis
|
Closed
|
FIXED
|
www/node14: Update to 14.17.6
|
2021-09-23
|
257902
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node: Update to 16.8.0
|
2021-09-22
|
257900
|
Ports & Packages
|
Individual Port(s)
|
zi
|
Closed
|
FIXED
|
dns/c-ares: Update to 1.17.2
|
2021-08-17
|
257832
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/mysql80-server: Update to 8.0.26 (fixes multiple CVE)
|
2021-08-29
|
257758
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Overcome By Eve
|
www/typo3-9: Update to 9.5.29
|
2021-10-05
|
257757
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Overcome By Eve
|
www/typo3-10: Update to 10.4.19
|
2021-10-05
|
257709
|
Base System
|
kern
|
net
|
Closed
|
FIXED
|
netinet6: Set net.inet6.icmp6.nodeinfo default to 0
|
2023-05-01
|
257582
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Overcome By Eve
|
mail/opendmarc: Update to 1.4.1.1; Add ARC support
|
2021-12-25
|
257480
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
mail/fetchmail: Update to 6.4.20 (security fix)
|
2021-07-29
|
257306
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
ftp/curl: Update to 7.78.0 (security and bugfix release)
|
2021-08-20
|
257221
|
Ports & Packages
|
Individual Port(s)
|
ygy
|
Closed
|
FIXED
|
www/gitea: Update to 1.14.5
|
2021-07-18
|
257153
|
Ports & Packages
|
Individual Port(s)
|
kbowling
|
Closed
|
FIXED
|
www/tomcat{7,85,9,10,-devel}: Update to 7.0.109, 8.5.69, 9.0.50, 10.0.8, 10.1.0-M2
|
2021-11-02
|
257150
|
Ports & Packages
|
Individual Port(s)
|
tijl
|
Closed
|
FIXED
|
security/linux-c7-nettle: Update to 2.7.1-9.el7_9 (security fix)
|
2022-12-25
|
257148
|
Ports & Packages
|
Individual Port(s)
|
cy
|
Closed
|
FIXED
|
x11/cde: Update to 2.4.0
|
2021-09-14
|
257066
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
databases/mantis: update to 2.25.2
|
2021-07-10
|
256957
|
Base System
|
wireless
|
hrs
|
Open
|
---
|
Wi-Fi: rc.conf(5) NOAUTO, ifconfig(8) up and unwanted WLAN connections to open networks
|
2023-12-21
|
256860
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
mail/dovecot: Update to 2.3.15
|
2021-07-04
|
256472
|
Ports & Packages
|
Individual Port(s)
|
lcook
|
Closed
|
FIXED
|
sysutils/zrepl: /var/run/zrepl should not be world-readable
|
2021-06-08
|
256436
|
Ports & Packages
|
Individual Port(s)
|
arrowd
|
Closed
|
FIXED
|
textproc/libxml2: Update to 2.9.12 (fixes several vulnerabilities)
|
2021-06-23
|
256405
|
Ports & Packages
|
Individual Port(s)
|
desktop
|
Closed
|
FIXED
|
sysutils/polkit: Update to 0.119
|
2021-08-01
|
256274
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
x11-toolkits/wlroots: fix CVE-2013-2003
|
2021-05-31
|
256273
|
Ports & Packages
|
Individual Port(s)
|
x11
|
Closed
|
FIXED
|
graphics/wayland: fix CVE-2013-2003
|
2021-05-31
|
256236
|
Ports & Packages
|
Individual Port(s)
|
pkg
|
Closed
|
Overcome By Eve
|
ports-mgmt/pkg: audit command didn't work properly with port epoch
|
2021-06-24
|
256220
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
devel/py-yaml: update to 5.4.1
|
2021-06-02
|
255976
|
Ports & Packages
|
Individual Port(s)
|
ygy
|
Closed
|
FIXED
|
net-mgmt/prometheus2: Update to 2.27.1
|
2021-06-03
|
255949
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
devel/websvn: update to 2.6.1
|
2022-02-26
|
255937
|
Ports & Packages
|
Individual Port(s)
|
fluffy
|
Closed
|
FIXED
|
databases/mysql80-server: Update to 8.0.25 (Fixes security vulnerability)
|
2021-05-24
|
255818
|
Ports & Packages
|
Individual Port(s)
|
thierry
|
Closed
|
FIXED
|
graphics/ImageMagick6: Upgrade to 6.9.12-12
|
2021-07-20
|
255802
|
Ports & Packages
|
Individual Port(s)
|
kwm
|
Closed
|
FIXED
|
graphics/ImageMagick7: upgrade to 7.0.11-12 and fix some vulnerabilities
|
2021-05-28
|
255748
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/mysql57-server: Update to 5.7.34 (fixes security vulnerabilities??)
|
2021-08-26
|
255528
|
Ports & Packages
|
Individual Port(s)
|
gnome
|
Closed
|
FIXED
|
www/webkit2-gtk3: update to 2.34.0
|
2022-07-09
|
255492
|
Ports & Packages
|
Individual Port(s)
|
kbowling
|
Closed
|
FIXED
|
irc/ircII: Update to 20210314 (fixes CVE-2021-29376)
|
2021-06-15
|
255455
|
Ports & Packages
|
Individual Port(s)
|
nc
|
Closed
|
FIXED
|
mail/sympa: security upgrade to 6.2.62
|
2021-04-28
|
255417
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
www/drupal7: Update to 7.80 (fixes security vulnerability)
|
2021-06-06
|
255369
|
Ports & Packages
|
Individual Port(s)
|
portmgr
|
Closed
|
Not A Bug
|
graphics/jpeg-turbo: CVE-2021-20205
|
2021-04-25
|
255368
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
devel/binutils: Backport patch fixing CVE-2021-3487
|
2021-08-18
|
255361
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
Overcome By Eve
|
graphics/py-pillow: Update to 8.2.0 (fixes security vulnerabilities)
|
2024-04-08
|
255292
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
irc/ircII: Update to 20210314 (CVE-2021-29376: irc/scrollz, irc/bitchx also affected)
|
2022-12-01
|
255102
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
net/libzmq4: Update to 4.3.4 (Fixes security vulnerabilities)
|
2021-05-26
|
254930
|
Ports & Packages
|
Individual Port(s)
|
adamw
|
Closed
|
FIXED
|
www/gitea: Update to 1.13.7 (fixes security vulnerabilities)
|
2021-04-10
|
254783
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
lang/python39: Update to 3.9.4
|
2021-04-20
|
254780
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
security/vuxml: Document information disclosure vulnerability in python.
|
2021-04-13
|
254773
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
ftp/curl: Update to 7.76.1
|
2021-04-28
|
254551
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
security/openssl: Update to 1.1.1k (Security Update - High)
|
2021-03-26
|
254526
|
Ports & Packages
|
Individual Port(s)
|
cy
|
Closed
|
FIXED
|
[PATCH] mail/spamassassin Update to 3.4.5 fixing CVE-2020-1946
|
2021-04-14
|
254355
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
security/nettle: Update to 3.7.2 (fixes security vulnerabilities)
|
2021-03-30
|
254045
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node: Update to 15.10.0
|
2021-03-10
|
254044
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node14: Update to 14.16.0
|
2021-03-09
|
254043
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node12: Update to 12.21.0
|
2021-03-09
|
254042
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node10: Update to 10.24.0
|
2021-03-09
|
254007
|
Ports & Packages
|
Individual Port(s)
|
ler
|
Closed
|
FIXED
|
mail/dovecot: Update to 2.3.14
|
2021-07-03
|
253415
|
Ports & Packages
|
Individual Port(s)
|
tcberner
|
Closed
|
FIXED
|
graphics/opencv: add HARDENING and LTO options
|
2021-02-11
|
252681
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node: Update to v15.5.1
|
2021-01-14
|
252639
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
databases/mantis: update to 2.24.4
|
2021-03-10
|
252583
|
Ports & Packages
|
Individual Port(s)
|
garga
|
Closed
|
FIXED
|
security/sudo: Update to 1.9.5
|
2021-01-13
|
252564
|
Ports & Packages
|
Individual Port(s)
|
kevans
|
Closed
|
FIXED
|
devel/nexus2-oss: update to 2.14.20-02
|
2021-09-29
|
252472
|
Ports & Packages
|
Individual Port(s)
|
ler
|
Open
|
---
|
security/vuxml document vulnerability in mail/dovecot lower than 2.3.13 (CVE-2020-24386)
|
2023-04-10
|
252415
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
mail/dovecot: Update to 2.3.13 (security)
|
2021-01-06
|
252291
|
Ports & Packages
|
Individual Port(s)
|
jrm
|
Closed
|
FIXED
|
irc/inspircd: Update to 3.8.1 (fixes security vulnerability)
|
2021-01-01
|
252262
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Overcome By Eve
|
security/tpm2-tss: Update to 3.0.3
|
2021-03-04
|
251768
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: Update to 1.24.0
|
2020-12-13
|
251744
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
www/glpi: Update to 9.5.3
|
2020-12-11
|
251695
|
Ports & Packages
|
Individual Port(s)
|
mat
|
Closed
|
Overcome By Eve
|
sysutils/tmux: Update quarterly to 3.1c
|
2021-01-04
|
251577
|
Ports & Packages
|
Individual Port(s)
|
adamw
|
Closed
|
FIXED
|
www/gitea: Update to 1.13.0 (fixes security vulnerabilities)
|
2020-12-05
|
251385
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
devel/binutils: Update to 2.37
|
2021-08-21
|
251277
|
Ports & Packages
|
Individual Port(s)
|
fernape
|
Closed
|
FIXED
|
mail/mutt: Update to 2.0.2
|
2020-11-23
|
251212
|
Ports & Packages
|
Individual Port(s)
|
eduardo
|
Closed
|
FIXED
|
www/typo3-10: Update to 10.4.10
|
2021-05-14
|
251013
|
Ports & Packages
|
Individual Port(s)
|
rhurlin
|
Closed
|
FIXED
|
sysutils/py-salt: Update to 3002.1 (includes security fix)
|
2020-11-19
|
250971
|
Ports & Packages
|
Individual Port(s)
|
kde
|
Closed
|
FIXED
|
textproc/raptor2 heap overflow
|
2020-11-09
|
250616
|
Ports & Packages
|
Individual Port(s)
|
portmgr
|
Closed
|
FIXED
|
graphics/jpeg: update or remove
|
2020-10-26
|
250425
|
Ports & Packages
|
Individual Port(s)
|
jhale
|
Closed
|
FIXED
|
games/chocolate-doom: update to 3.0.1
|
2021-01-22
|
250318
|
Ports & Packages
|
Individual Port(s)
|
dch
|
Closed
|
FIXED
|
dns/powerdns-recursor: Update to 4.3.5
|
2020-11-08
|
250286
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb103-server: Update to 10.3.25
|
2020-10-24
|
250190
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
graphics/jpeg-turbo: Update to 2.0.5
|
2020-11-16
|
250105
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
graphics/libexif: Update to 0.6.22
|
2020-10-07
|
249948
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: Security update to 1.21.2
|
2020-10-17
|
249473
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
www/tt-rss: Update to g20200919 (Fixes several security vulnerabilities)
|
2020-09-30
|
249445
|
Ports & Packages
|
Individual Port(s)
|
tcberner
|
Closed
|
FIXED
|
sysutils/accountsservice: Update to 0.6.55
|
2022-12-16
|
249373
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
DUPLICATE
|
net-im/py-matrix-synapse: Update to 1.19.2 (security)
|
2020-09-16
|
249312
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
security/modsecurity3: patch for cve 2020-15598
|
2022-08-08
|
249256
|
Ports & Packages
|
Individual Port(s)
|
acm
|
Closed
|
FIXED
|
www/drupal8 (8.8.7 in ports) please update to 8.8.8 (security fix) or 8.8.9 (bug fix)
|
2020-11-25
|
249187
|
Ports & Packages
|
Individual Port(s)
|
fluffy
|
Closed
|
FIXED
|
lang/python35: Update to 3.5.10
|
2020-09-25
|
248780
|
Ports & Packages
|
Individual Port(s)
|
zeising
|
Closed
|
FIXED
|
dns/adns: Update to 1.6.0
|
2020-08-20
|
248751
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
security/vuxml: CVE-2019-20907, CVE-2020-14422: Python VuXML updates
|
2020-08-19
|
248673
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
net/ceph14: Update to 14.2.11
|
2020-08-30
|
248640
|
Ports & Packages
|
Individual Port(s)
|
ler
|
Closed
|
FIXED
|
mail/dovecot: Update to 2.3.11.3
|
2020-08-15
|
248580
|
Ports & Packages
|
Individual Port(s)
|
0mp
|
Closed
|
FIXED
|
print/ghostscript9-agpl-base: Fix SAFER Sandbox Breakout vulnerability (CVE-2020-15900)
|
2021-01-20
|
248569
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php72: Update to 7.2.33
|
2020-08-19
|
248568
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php73: Update to 7.3.21
|
2020-08-19
|
248567
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php74: Update to 7.4.9
|
2020-08-19
|
248410
|
Ports & Packages
|
Individual Port(s)
|
x11
|
Closed
|
FIXED
|
x11-servers/xorg-server: fix CVE-2020-14347 (release 1.20.9 soon)
|
2020-08-01
|
248268
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
audio/libsndfile: Update to master branch and use cmake
|
2020-07-28
|
248162
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
net-mgmt/snmptt: Update to 1.4.2
|
2020-08-15
|
248139
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.2.13
|
2020-07-28
|
247987
|
Ports & Packages
|
Individual Port(s)
|
madpilot
|
Closed
|
FIXED
|
security/vuxml: emulators/virtualbox-ose 23 CVEs
|
2020-07-19
|
247795
|
Ports & Packages
|
Individual Port(s)
|
rodrigo
|
Closed
|
FIXED
|
net/rsync: Update to 3.2.3
|
2020-08-20
|
247735
|
Ports & Packages
|
Individual Port(s)
|
danilo
|
Open
|
---
|
envoy/istio: Multiple vulnerabilites
|
2020-07-05
|
247720
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: Update to 1.15.2 (security)
|
2020-07-05
|
247713
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
www/trafficserver: update to fix CVE-2020-9494, add vuxml entry
|
2020-08-10
|
247708
|
Ports & Packages
|
Individual Port(s)
|
tcberner
|
Closed
|
FIXED
|
[exp-run] graphics/exiv2: Update to 0.27.3 (Bug and security fixes)
|
2020-07-09
|
247555
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
security/vuxml tomcat vulnerability CVE-2020-11996
|
2020-07-23
|
247554
|
Ports & Packages
|
Individual Port(s)
|
mm
|
Closed
|
FIXED
|
ftp/proftpd: Update to 1.3.6d
|
2020-08-17
|
247406
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
deskutils/anydesk: Update to 5.5.5
|
2020-11-02
|
247400
|
Ports & Packages
|
Individual Port(s)
|
zeising
|
Closed
|
FIXED
|
mail/mutt: Update to 1.14.5
|
2020-07-15
|
247394
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
databases/mongodb36: Update to 3.6.18
|
2020-06-29
|
247392
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
security/vuxml mongodb issue
|
2020-06-29
|
247149
|
Ports & Packages
|
Individual Port(s)
|
secteam
|
Closed
|
FIXED
|
Multiple sqlite3 vulnerabilities (ports and base)
|
2020-08-06
|
247089
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
devel/json-c: update quarterly to 0.14
|
2020-11-20
|
246984
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
lang/python* Fix CVE-2020-8492, CVE-2019-18348
|
2020-06-22
|
246892
|
Ports & Packages
|
Individual Port(s)
|
adamw
|
Closed
|
FIXED
|
www/gitea: Update to 1.11.6 (fixes security vulnerabilities)
|
2020-05-31
|
246808
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
DUPLICATE
|
lang/python36: Update to 3.6.10 (and backport security fixes)
|
2020-06-15
|
246803
|
Ports & Packages
|
Individual Port(s)
|
tobik
|
Closed
|
Overcome By Eve
|
graphics/sane-backends: update to 1.0.30, security fixes
|
2020-05-30
|
246738
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
lang/python36: Update to 3.6.11
|
2020-06-13
|
246582
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
net-mgmt/zabbix3-*: Update to 3.0.31
|
2020-05-22
|
246569
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
dns/unbound: Update to 1.10.1
|
2020-05-22
|
246482
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php74: Update to 7.4.6
|
2020-05-16
|
246481
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php73: Update to 7.3.18
|
2020-05-18
|
246480
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php72: Update to 7.2.31
|
2020-05-15
|
246239
|
Ports & Packages
|
Individual Port(s)
|
zi
|
Closed
|
FIXED
|
security/openconnect: Update to 8.10
|
2020-08-24
|
246164
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
security/vuxml: cacti CVE-2020-7106
|
2020-05-04
|
246161
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.2.12
|
2020-05-05
|
246145
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
devel/json-c: Update to 0.14
|
2020-05-21
|
246061
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
sysutils/py-salt: Update to 2019.2.4 (CVE fix)
|
2020-05-16
|
245968
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Not Accepted
|
www/firefox 75.0_2,1 & www/chromium 81.0.4044.113 - Servere Security Issue
|
2021-03-29
|
245943
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
www/py-bleach: Update to 3.1.5, Fix security issue
|
2020-05-14
|
245776
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
lang/python27: Update to 2.7.18 (Fixes vulnerability)
|
2020-05-15
|
245672
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
mail/sympa: update to 6.2.54 - security fix
|
2020-05-27
|
245517
|
Ports & Packages
|
Individual Port(s)
|
kevans
|
Closed
|
FIXED
|
net/freerdp: Update to 2.1.1
|
2020-06-17
|
245475
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
FIXED
|
net/samba41, net/samba411: Update to latest versions (security releases)
|
2020-09-23
|
245468
|
Ports & Packages
|
Individual Port(s)
|
woodsb02
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.2.11
|
2020-05-23
|
245284
|
Ports & Packages
|
Individual Port(s)
|
apache
|
Closed
|
FIXED
|
www/apache24: Security Update to 2.4.43
|
2020-04-02
|
245282
|
Ports & Packages
|
Individual Port(s)
|
demon
|
Closed
|
FIXED
|
net/haproxy: Security Update (all supported Versions) CVE-2020-11100
|
2020-05-02
|
245252
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
devel/py-twisted: Update to 20.3.0 (includes security updates)
|
2020-04-27
|
245205
|
Ports & Packages
|
Individual Port(s)
|
woodsb02
|
Closed
|
FIXED
|
net-mgmt/cacti: Add VuXML entries for multiple vulnerabilities in cacti < 1.2.10
|
2020-04-04
|
245153
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
www/piwigo: Update to 2.10.2 (Bugfix and security release)
|
2020-05-23
|
245096
|
Ports & Packages
|
Individual Port(s)
|
fjoe
|
Closed
|
FIXED
|
databases/phpmyadmin: 4.9.5 is not a vulnerable version, but still marked vulnerable (matches < 5.0.2 entries)
|
2020-05-05
|
245023
|
Ports & Packages
|
Individual Port(s)
|
ruby
|
Closed
|
FIXED
|
devel/rubygem-json: Update to 2.3.0 (CVE-2020-10663)
|
2020-04-03
|
245019
|
Ports & Packages
|
Individual Port(s)
|
chromium
|
Closed
|
FIXED
|
www/chromium: Update to 80.0.3987.149
|
2020-03-25
|
245016
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
www/nextcloud: Update to 18.0.3
|
2020-05-23
|
244992
|
Ports & Packages
|
Individual Port(s)
|
acm
|
Closed
|
FIXED
|
www/drupal8: Update to 8.8.4 (Fixes security vulnerability: SA-CORE-2020-001)
|
2024-01-27
|
244987
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/tomcat9: MFH port r526773 (Security update: CVE-2020-1938)
|
2020-04-02
|
244985
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/postgresql*-server
|
2020-03-29
|
244971
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/glpi: Update to 9.4.5
|
2020-06-10
|
244876
|
Ports & Packages
|
Individual Port(s)
|
tcberner
|
Closed
|
FIXED
|
www/wt: Update to v4.2.2
|
2020-03-20
|
244875
|
Ports & Packages
|
Individual Port(s)
|
tcberner
|
Closed
|
FIXED
|
www/wt3: Update to v3.5.2
|
2020-03-20
|
244723
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node12: Update to to 12.16.1 (fixes security vulnerabilities)
|
2020-04-12
|
244625
|
Ports & Packages
|
Individual Port(s)
|
chromium
|
Closed
|
FIXED
|
www/chromium: [patch] Please update to 80.x
|
2020-03-11
|
244429
|
Ports & Packages
|
Individual Port(s)
|
0mp
|
Closed
|
FIXED
|
audio/timidity++: update 2.14.0 -> 2.15.0, fix CVE-2017-11546
|
2020-03-02
|
244365
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
sysutils/consul: Consul 1.7.1 has been released.
|
2020-03-27
|
244279
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: Update to 1.12.3
|
2020-04-22
|
244212
|
Ports & Packages
|
Individual Port(s)
|
madpilot
|
Closed
|
FIXED
|
emulators/virtualbox-ose: Update to 5.2.44
|
2020-07-19
|
244136
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/mattermost-{webapp,server}: Update to 5.21.0
|
2020-07-23
|
244117
|
Ports & Packages
|
Individual Port(s)
|
diizzy
|
Closed
|
FIXED
|
irc/unreal: Update to 5.0.3.1
|
2022-06-12
|
244060
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
graphics/libexif: Fix security vulnerabilities
|
2020-02-15
|
243952
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/nginx: Versions < 1.17.7, with certain error_page configurations, allows HTTP request smuggling (CVE-2019-20372)
|
2020-02-21
|
243702
|
Ports & Packages
|
Individual Port(s)
|
secteam
|
Closed
|
FIXED
|
security/vuxml: Add January FreeBSD Security Advisories SA-20:01.libfetch, SA-20:02.ipsec and SA-20:03.thrmisc
|
2020-02-14
|
243686
|
Ports & Packages
|
Individual Port(s)
|
fluffy
|
Closed
|
FIXED
|
mail/opensmtpd: Update to v6.6.2p1 (Fixes critical LPE / RCE vulnerability)
|
2020-01-31
|
243660
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
security/vuxml: MariaDB incorrectly added to MySQL CVE's
|
2020-02-02
|
243566
|
Ports & Packages
|
Individual Port(s)
|
multimedia
|
Closed
|
FIXED
|
audio/taglib: Update to 1.12b1 (fixes CVE-2018-11439)
|
2020-05-02
|
243518
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
net-p2p/rslsync: Update to 2.6.4
|
2020-05-23
|
243437
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/gitea: Update to 1.10.3 (fixes security vulnerabilities)
|
2020-01-28
|
243388
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/npm: Update to 6.13.4 - < 6.13.4 vulnerable to multiple vulnerabilities incl. arbitrary file write
|
2020-10-02
|
243336
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
graphics/py-pillow: Update to 6.2.2
|
2020-01-28
|
243067
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
x11/libxdg-basedir: update to 1.2.2
|
2021-04-13
|
242929
|
Ports & Packages
|
Individual Port(s)
|
amdmi3
|
Closed
|
FIXED
|
security/u2f-devd: new entries for Trezor keys
|
2021-03-17
|
242834
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.2.8
|
2020-01-06
|
242708
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/typo3-9: Update to 9.5.12
|
2019-12-26
|
242707
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/typo3-8: Update to 8.7.30
|
2019-12-26
|
242702
|
Ports & Packages
|
Individual Port(s)
|
decke
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: Update to 1.7.1 (fixes security vulnerabilities)
|
2020-01-11
|
242676
|
Base System
|
kern
|
Andrew
|
In Progress
|
---
|
Mitigating speculative execution beyond ERET on aarch64
|
2019-12-20
|
242415
|
Base System
|
kern
|
glebius
|
Closed
|
FIXED
|
Running any command that interacts with network connections as an underprivileged user panics the OS
|
2019-12-15
|
241981
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
www/gitea: Update to 1.10.0
|
2019-11-23
|
241976
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/squid: Update to 4.9
|
2019-11-19
|
241870
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/mysql56-server: Update to 5.6.46 (< 5.6.46 is vulnerable to many CVE's)
|
2020-01-20
|
241734
|
Ports & Packages
|
Individual Port(s)
|
bofh
|
Closed
|
FIXED
|
sysutils/ansible: Update to 2.9.6
|
2020-04-28
|
241693
|
Ports & Packages
|
Individual Port(s)
|
acm
|
Closed
|
FIXED
|
www/drupal8: Update to 8.7.8
|
2019-11-28
|
241586
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
lang/python35: Update to 3.5.9 (python.org shipped broken 3.5.8, tread carefully)
|
2020-03-15
|
241516
|
Ports & Packages
|
Ports Framework
|
portmgr
|
Open
|
---
|
Mk/bsd.port.mk: Fix certificate verification for 'make makesum'
|
2024-02-12
|
241460
|
Ports & Packages
|
Individual Port(s)
|
egypcio
|
Closed
|
FIXED
|
[PATCH] net/pacemaker2: update 2.0.0-rc4 to 2.0.3
|
2020-02-04
|
241456
|
Ports & Packages
|
Individual Port(s)
|
egypcio
|
Closed
|
FIXED
|
[PATCH] net/pacemaker1: update 1.1.19 to 1.1.22
|
2020-02-04
|
241424
|
Ports & Packages
|
Individual Port(s)
|
rakuco
|
Closed
|
FIXED
|
sysutils/file: Update to 5.37, Fix CVE-2019-18218
|
2019-11-03
|
241422
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Feedback Timeou
|
textproc/unoconv: Update to 0.8.2, Fix CVE-2019-17400
|
2020-07-23
|
241420
|
Ports & Packages
|
Individual Port(s)
|
gnome
|
Closed
|
Overcome By Eve
|
textproc/libxslt: Fix CVE-2019-18197
|
2020-01-26
|
241362
|
Ports & Packages
|
Individual Port(s)
|
mat
|
Closed
|
Not Accepted
|
dns/bind911: Merge ports r514624 (9.11.12) to 2019Q4 (Fixes security vulnerability)
|
2019-10-20
|
241308
|
Ports & Packages
|
Individual Port(s)
|
dmgk
|
Closed
|
FIXED
|
devel/nexus2-oss: Update to 2.14.15-01
|
2019-11-09
|
241268
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
graphics/py-pillow: Update to 6.2.0
|
2019-10-20
|
241154
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
[PATCH] www/mod_perl2: update to 2.0.11, fix CVE-2011-2767
|
2019-10-25
|
241066
|
Ports & Packages
|
Individual Port(s)
|
cy
|
Closed
|
FIXED
|
graphics/xpdf3: Backport fix for CVE-2019-16927 and CVE-2019-9877
|
2019-10-19
|
241065
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
net-mgmt/prometheus2: Update to 2.13.0
|
2019-10-08
|
241033
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
dns/unbound:Update to 1.9.4 (fixes CVE-2019-16866)
|
2019-10-20
|
240999
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.2.7
|
2019-10-05
|
240985
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
lang/ruby26: Update to 2.6.5
|
2019-10-02
|
240984
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
lang/ruby25: Update to 2.5.7
|
2019-10-02
|
240983
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
lang/ruby24: Update to 2.4.9
|
2019-10-02
|
240844
|
Ports & Packages
|
Individual Port(s)
|
tijl
|
Closed
|
FIXED
|
print/ghostscript9-agpl-base: Update to 9.50 (Fixes security vulnerabilities)
|
2020-01-06
|
240505
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
mail/opendmarc: fix multiple addresses in From vulnerability
|
2021-12-30
|
240399
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
net/kea: Update to 1.6.0
|
2019-09-20
|
240370
|
Ports & Packages
|
Individual Port(s)
|
bhughes
|
Closed
|
FIXED
|
www/node10: MFH requested but not done
|
2019-09-18
|
240368
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
devel/oniguruma: Update to 6.9.3 (Fixes CVE-2019-13224)
|
2019-09-07
|
240362
|
Ports & Packages
|
Individual Port(s)
|
vsevolod
|
Closed
|
FIXED
|
mail/exim: Update to 4.92.2 (Fixes CVE-2019-15846)
|
2019-09-06
|
240324
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
Works As Intend
|
security/vuxml: 145a3e17-cea2-11e9-81e2-005056a311d1 (net/samba410) should exclude versions before 4.9.0
|
2019-09-04
|
240322
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Add August FreeBSD Security Advisories
|
2023-07-13
|
240196
|
Ports & Packages
|
Individual Port(s)
|
tobik
|
Closed
|
FIXED
|
www/webkit2-gtk3: Update to 2.24.4 (fixes many security vulnerabilities)
|
2019-09-12
|
240174
|
Ports & Packages
|
Individual Port(s)
|
ler
|
Closed
|
FIXED
|
mail/dovecot: Update to 2.3.7.2 (Fixes CVE-2019-11500)
|
2019-08-29
|
240132
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
www/mattermost-{webapp,server}: Update to 5.15.0
|
2019-10-15
|
240126
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
databases/mongodb36: Update to 3.6.14 (bugfix & security release)
|
2019-10-11
|
240046
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
www/gitea: Update to 1.9.2 (fixes security vulnerabilities)
|
2019-08-25
|
239994
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
www/cliqz: Update to 1.28.2
|
2019-09-03
|
239981
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb104-{server,client}: Update to 10.4.7 (with 5 CVEs fixed)
|
2019-11-29
|
239978
|
Base System
|
bin
|
markj
|
Closed
|
FIXED
|
Integer Overflow: ping(8) option "-h", bypass the invalid sweepincr packet size check
|
2020-12-01
|
239977
|
Base System
|
bin
|
markj
|
Closed
|
FIXED
|
Integer Overflow: ping(8) option "-G" and "-g", bypass the invalid sweepmax and sweepmin packet size check
|
2020-12-01
|
239975
|
Base System
|
bin
|
bugs
|
New
|
---
|
ping(8) crashes with SIGSEGV - Out-of-Bounds Read of size 2 (global-buffer-overflow)
|
2020-11-04
|
239974
|
Base System
|
bin
|
markj
|
Closed
|
FIXED
|
ping(8) crashes with SIGSEGV - Out-of-Bounds Write of size 1 (global-buffer-overflow)
|
2020-12-01
|
239964
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
dns/nsd: Update to 4.2.2
|
2019-08-19
|
239897
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/jetty9: Update to 9.4.20
|
2020-04-03
|
239839
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
[PATCH] net-mgmt/prometheus2: Update to 2.11.2
|
2019-08-14
|
239717
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
databases/mongodb34: Update to 3.4.22 (bugfix & security release)
|
2019-10-11
|
239684
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
security/clamav: Update to 0.101.4 (security/bugfix release)
|
2019-08-24
|
239653
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb103-server upgrade to 10.3.17
|
2019-09-03
|
239599
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
devel/libevent: update to 2.1.11
|
2019-08-27
|
239571
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql55-server databases/mysql56-server databases/mysql57-server databases/mysql80-server - security fixes
|
2019-09-20
|
239562
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
www/gitea: Update to 1.9.0
|
2019-08-01
|
239441
|
Ports & Packages
|
Individual Port(s)
|
vsevolod
|
Closed
|
FIXED
|
mail/exim: Update to 4.92.1 which fixes CVE-2019-13917
|
2019-07-26
|
239272
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql80-server: Update to 8.0.17 (Fixes multiple CVE)
|
2019-12-05
|
239271
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql57-server: Update to 5.7.27 (Fixes multiple CVE)
|
2019-12-05
|
239024
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
sysutils/monit: Update to 5.26.0
|
2019-07-15
|
239013
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: Update to 1.2.1
|
2019-07-29
|
239003
|
Ports & Packages
|
Individual Port(s)
|
kwm
|
Closed
|
FIXED
|
www/webkit2-gtk3: Update to 2.24.3 (fixes many code execution vulnerabilities)
|
2019-08-29
|
238952
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
lang/python36: Update to 3.6.9
|
2019-07-23
|
238911
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
www/py-django22: Update to 2.2.3 (bugfix & security release)
|
2019-07-07
|
238910
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
www/py-django21: Update to 2.1.10 (Fixes security vulnerability)
|
2019-07-07
|
238892
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
irc/irssi: Update to 1.2.1
|
2019-07-02
|
238864
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
textproc/expat2: Update to 2.2.7
|
2019-09-25
|
238863
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/typo3-9: Update to 9.5.8
|
2019-06-29
|
238862
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/typo3-8: Update to 8.7.27
|
2019-06-29
|
238854
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
archivers/bzip2: Update to 1.0.7 (Fixes security vulnerabilities)
|
2019-06-30
|
238843
|
Base System
|
bin
|
delphij
|
Closed
|
FIXED
|
bzip2: Merge recent upstream bugfixes incl. 3 security vulnerabilities
|
2019-08-19
|
238798
|
Ports & Packages
|
Individual Port(s)
|
acm
|
Closed
|
FIXED
|
www/drupal8: update to 8.6.16 (fixes sa-core-2019-007)
|
2019-07-21
|
238787
|
Base System
|
kern
|
jtl
|
Closed
|
FIXED
|
IPv6 remote DoS (panic) vulnerability via m_pulldown() bug
|
2019-11-13
|
238715
|
Ports & Packages
|
Individual Port(s)
|
tobik
|
Closed
|
DUPLICATE
|
textproc/expat2: update to 2.2.7
|
2019-07-03
|
238705
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
dns/powerdns: Update to 4.1.10 (Fixes security vulnerabilities)
|
2019-07-01
|
238642
|
Base System
|
kern
|
vmaffione
|
Closed
|
FIXED
|
netmap: fix kernel pointer printing in netmap_generic.c
|
2019-07-16
|
238641
|
Base System
|
kern
|
vmaffione
|
Closed
|
FIXED
|
netmap: Remove pointer printing in netmap_mem2.c
|
2019-09-07
|
238638
|
Base System
|
kern
|
bugs
|
Open
|
---
|
mfi: Remove unnecessary pointer printing in mfi.c
|
2019-06-17
|
238635
|
Ports & Packages
|
Individual Port(s)
|
hrs
|
Closed
|
Overcome By Eve
|
security/heimdal: Update to 7.7 (7.6 and 7.7 addresses two CVEs plus bugfixes)
|
2020-07-04
|
238573
|
Ports & Packages
|
Individual Port(s)
|
marcus
|
Closed
|
FIXED
|
net/netatalk3: Add VuXML entry for CVE-2018-1160 (fixed in 3.1.12)
|
2019-06-16
|
238486
|
Base System
|
kern
|
bugs
|
Open
|
---
|
Possible buffer overflow bug in sc_allocate_keyboard() of sys/dev/syscons/syscons.c
|
2023-07-31
|
238319
|
Base System
|
kern
|
bugs
|
Open
|
---
|
login: Extend and add features to session (struct)
|
2019-06-04
|
238199
|
Ports & Packages
|
Individual Port(s)
|
kwm
|
Closed
|
FIXED
|
graphics/ImageMagick7: Update to 7.0.8-47 (Fixes many vulnerabilities)
|
2019-05-30
|
238049
|
Ports & Packages
|
Individual Port(s)
|
gnome
|
Closed
|
FIXED
|
textproc/libxslt: Update to 1.1.33, fix CVE-2019-11068
|
2019-07-16
|
237938
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/drupal7: update to 7.67
|
2019-06-10
|
237922
|
Base System
|
kern
|
kib
|
Closed
|
FIXED
|
Kernel stack disclosure in function freebsd32_swapcontext of sys/arm64/arm64/freebsd32_machdep.c
|
2019-12-15
|
237501
|
Ports & Packages
|
Individual Port(s)
|
jpaetzel
|
Closed
|
FIXED
|
devel/py-yaml: Update to 5.1
|
2020-01-13
|
237483
|
Ports & Packages
|
Individual Port(s)
|
acm
|
Closed
|
FIXED
|
www/drupal8: Update to 8.6.15 (fixes security vulnerabilities)
|
2019-04-25
|
237399
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql57-server: Update to 5.7.26 (Fixes multiple CVE)
|
2019-05-13
|
237398
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql56-server: Update to 5.6.44 (Fixes multiple CVE)
|
2019-05-13
|
237322
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
databases/influxdb: Update to 1.7.6
|
2019-06-06
|
237182
|
Ports & Packages
|
Individual Port(s)
|
zi
|
Closed
|
FIXED
|
net/freeradius3: Update to 3.0.19 (Fixes several security vulnerabilities)
|
2019-04-29
|
236818
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
security/clamav: Update to 0.101.2.
|
2019-08-01
|
236767
|
Ports & Packages
|
Individual Port(s)
|
acm
|
Closed
|
FIXED
|
www/drupal8: Update to 8.6.13 (Fixes Cross Site Scripting vulnerability: SA-CORE-2019-004)
|
2019-03-27
|
236634
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
dns/powerdns: Update to 4.1.7 (Fixes security vulnerabilities)
|
2019-03-19
|
236570
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
databases/percona57-{server,client} update to 5.7.26-29 (fixes several vulnerabilities)
|
2019-12-10
|
236010
|
Base System
|
misc
|
bugs
|
Closed
|
Not A Bug
|
rand(3) is a bad RNG, but lots of software uses it. Make it a shim around arcrandom(3)
|
2022-06-05
|
235930
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
databases/percona56-{server,client}: Update to 5.6.43-84.3 (fixes several vulnerabilities)
|
2019-08-22
|
235710
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
www/firefox: update to 65.0.1
|
2019-02-13
|
235574
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb101-client: Update to 10.1.38
|
2019-02-22
|
235573
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb101-server: Update to 10.1.38
|
2019-02-08
|
235523
|
Ports & Packages
|
Individual Port(s)
|
ler
|
Closed
|
FIXED
|
mail/dovecot: Update to 2.3.4.1 (CVE-2019-3814)
|
2019-02-05
|
235375
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
[PATCH] net-mgmt/prometheus2: Update to 2.7.1
|
2019-02-01
|
235188
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/typo3-9: Update to 9.5.4
|
2019-02-03
|
235187
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/typo3-8: Update to 8.7.24
|
2019-02-03
|
235186
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
security/keybase: Needs PORTREVISON bump and rebuild (CVE-2019-6486)
|
2019-01-28
|
235140
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/gitea: Update to 1.7.0 (Fixes security vulnerabilities)
|
2019-01-27
|
235113
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
dns/powerdns-recursor: Update to 4.1.9 (fixes CVE-2019-3806 and CVE-2019-3807)
|
2019-01-28
|
235056
|
Ports & Packages
|
Individual Port(s)
|
ler
|
Closed
|
FIXED
|
[new port] security/git-secret: tool for storing secret data in a git repo using gpg
|
2019-01-19
|
234984
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql80-server: Update to 8.0.14 fixes multiple CVE
|
2019-01-26
|
234983
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql57-server: Update to 5.7.25 fixes multiple CVE
|
2019-01-21
|
234965
|
Base System
|
bin
|
secteam
|
Closed
|
FIXED
|
scp client multiple vulnerabilities (openssh in base/ports affected: CVE-2018-20685 CVE-2019-6111 CVE-2019-6109,6110)
|
2020-07-23
|
234938
|
Ports & Packages
|
Individual Port(s)
|
tcberner
|
Closed
|
FIXED
|
security/botan2: Update to 2.9.0 (Fixes CVE-2018-20187)
|
2019-01-27
|
234798
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
irc/irssi: Update to 1.1.2
|
2019-01-10
|
234670
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
net/uriparser: Update to 0.9.1
|
2019-01-26
|
234473
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
graphics/openjpeg: Fix CVE-2018-6616
|
2019-01-24
|
234255
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
www/gitea: Update to 1.6.2 (Fixes security vulnerability)
|
2018-12-26
|
234191
|
Ports & Packages
|
Individual Port(s)
|
leres
|
Closed
|
FIXED
|
security/bro: Update to 2.6.1 (Fixes Magellan vulnerability)
|
2018-12-21
|
234113
|
Base System
|
misc
|
cy
|
Closed
|
FIXED
|
Update SQlite to 3.26.0
|
2019-01-09
|
234112
|
Services
|
Security Team
|
secteam
|
Closed
|
FIXED
|
SQLite: Remote code execution vulnerability (Magellan)
|
2019-03-30
|
234103
|
Ports & Packages
|
Individual Port(s)
|
enlightenment
|
Closed
|
FIXED
|
x11/terminology: Update to 1.3.1 (Fixes CVE-2018-20167: Incorrect escaping of crafted files results in code execution)
|
2018-12-21
|
234088
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
www/py-gunicorn : Update to 19.9.0
|
2019-03-07
|
234013
|
Ports & Packages
|
Individual Port(s)
|
doceng
|
Closed
|
FIXED
|
print/ghostscript9-agpl-base: Update to 9.26 (Fixes several security vulnerabilities)
|
2018-12-23
|
234008
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/typo3-9: Update to 9.5.3
|
2018-12-15
|
234006
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/typo3-8: Update to 8.7.22
|
2018-12-15
|
233990
|
Ports & Packages
|
Individual Port(s)
|
chromium
|
Closed
|
FIXED
|
www/chromium: Update to 71.0.3578.98
|
2019-01-08
|
233953
|
Ports & Packages
|
Individual Port(s)
|
matthew
|
Closed
|
FIXED
|
databases/phpmyadmin: Update to 4.84
|
2018-12-12
|
233896
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
archivers/libmspack: Update to 0.9.1 (Fixes several security vulnerabilities)
|
2020-07-24
|
233847
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
lang/php56: Update to 5.6.39
|
2018-12-10
|
233801
|
Base System
|
bin
|
secteam
|
Closed
|
FIXED
|
FreeBSD 11.x vulnerability in OpenSSH
|
2020-06-08
|
233749
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
Overcome By Eve
|
net/samba47, net/samba48: Merge ports r486043 to 2018Q4 (Fixes several vulnerabilities)
|
2019-01-02
|
233722
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
net/uriparser: Update to 0.9.0
|
2018-12-16
|
233712
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
databases/sqlite3: Update to 3.26.0
|
2019-01-02
|
233603
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
dns/powerdns-recursor: Update to 4.1.8 (Fixes CVE-2018-16855)
|
2018-12-09
|
233578
|
Base System
|
bin
|
bugs
|
Open
|
---
|
Unprivileged local user can prevent other users logging in by locking utx.active
|
2019-05-19
|
233573
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
www/payara: Update to 5.183
|
2018-11-28
|
233478
|
Base System
|
bin
|
bugs
|
New
|
---
|
Authentication fails if password > 128 characters
|
2018-11-28
|
233455
|
Ports & Packages
|
Individual Port(s)
|
danfe
|
Closed
|
FIXED
|
devel/patch affected by multiple vulnerabilities
|
2020-01-26
|
233420
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
mail/phpmailer: Update to 5.2.27 (Fixes CVE-2018-19296)
|
2018-11-25
|
233419
|
Ports & Packages
|
Individual Port(s)
|
thierry
|
Closed
|
FIXED
|
www/tt-rss: Update to bc42dfb790 g20181122 due to CVE-2018-19296
|
2018-11-23
|
233146
|
Ports & Packages
|
Individual Port(s)
|
portmgr
|
Closed
|
FIXED
|
graphics/tiff: update to 4.10.0
|
2018-11-17
|
233139
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
dns/powerdns: Update to 4.1.5 (Fixes security vulnerabilities)
|
2018-11-20
|
232796
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
mail/thunderbird: update to 60.3.0
|
2018-10-30
|
232699
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
databases/mysql55-server: Update to MySQL-Server 5.5.62 to fix multiple CVE
|
2018-10-26
|
232687
|
Ports & Packages
|
Individual Port(s)
|
apache
|
Closed
|
FIXED
|
www/apache24: Update to 2.4.37 (Security and Bugfix Release)
|
2018-10-28
|
232685
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql57-server: Update to 5.7.24 fixes multiple CVE
|
2018-11-16
|
232495
|
Base System
|
kern
|
oshogbo
|
Closed
|
FIXED
|
[patch] ppoll(2) is not permitted in capability mode
|
2019-01-30
|
232435
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
lang/ruby24: Update to 2.4.5 (Fixes multiple vulnerabilities: CVE-2018-1639[56])
|
2018-10-24
|
232431
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
lang/ruby25: Update to 2.5.3 (Fixes multiple vulnerabilities: CVE-2018-1639[56])
|
2018-10-24
|
232344
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/libssh: Update to 0.8.4 (Fixes security vulnerability: CVE-2018-10933)
|
2018-10-19
|
232123
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/gitea: Update to 1.5.1 (Fixes security vulnerability)
|
2018-10-16
|
231718
|
Ports & Packages
|
Individual Port(s)
|
joneum
|
Closed
|
FIXED
|
www/apache24: Update to 2.4.35
|
2018-09-27
|
231148
|
Ports & Packages
|
Individual Port(s)
|
tijl
|
Closed
|
FIXED
|
print/ghostscript9-agpl-base: Update to 9.24
|
2018-09-21
|
231054
|
Ports & Packages
|
Individual Port(s)
|
cy
|
Closed
|
FIXED
|
security/vuxml: vuln.xml fix for wrong entry for wpa_supplicant (bad version range)
|
2018-09-07
|
230932
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
databases/percona55-server: and -client update to 5.5.61-38.13
|
2018-09-09
|
230753
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
comms/minicom: Change minicom's permissions for security reasons
|
2020-02-05
|
230666
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
security/botan2: Update to 2.7.0
|
2018-08-22
|
230595
|
Ports & Packages
|
Individual Port(s)
|
dinoex
|
Closed
|
FIXED
|
www/lighttpd: Update to 1.4.50
|
2018-09-20
|
230575
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
net/libzmq4: Update to 4.3.1
|
2019-07-01
|
230512
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
www/gitea: Update to 1.5.0 (Fixes security vulnerabilities)
|
2018-08-12
|
230409
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
databases/mysql55-server: Update to 5.5.61 fixes multiple CVE
|
2019-02-15
|
230361
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
devel/cgit: Update to 1.2.1 (Fixes CVE-2018-14912)
|
2018-08-12
|
230151
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
security/py-asyncssh: Update to 1.14.0 (Fixes security vulnerability: CVE-2018-7749)
|
2018-12-09
|
229861
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql80-server: Update to 8.0.12 fixes multiple CVE
|
2018-08-14
|
229860
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
databases/mysql57-server: Update to 5.7.23 (Fixes multiple CVE's)
|
2018-08-14
|
229846
|
Ports & Packages
|
Individual Port(s)
|
decke
|
Closed
|
FIXED
|
net-im/py-matrix-synapse: Update to 0.32.2
|
2018-08-09
|
229753
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
ftp/curl: Update to 7.61.0 (Fixes CVE-2018-0500)
|
2018-07-27
|
229485
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
dns/knot-resolver: Update to 2.4.1 (security fix - CVE-2018-10920)
|
2018-08-15
|
229452
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
mail/thunderbird: update to 52.9.0
|
2018-07-09
|
229322
|
Ports & Packages
|
Individual Port(s)
|
kai
|
Closed
|
FIXED
|
net/py-urllib3: Update to 1.25.6
|
2020-01-16
|
228239
|
Ports & Packages
|
Individual Port(s)
|
cs
|
Closed
|
FIXED
|
archivers/p7zip: Current version is vulnerable (CVE-2018-10115)
|
2021-12-11
|
228148
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb101-server: Update to 10.1.33
|
2018-05-13
|
228072
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
net-im/py-matrix-synapse update to 0.28.1 to guarantee compatibility to server already updated and it's security relevant
|
2018-06-06
|
228054
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/rubygem-passenger is missing passenger_native_support.so
|
2024-04-10
|
228038
|
Ports & Packages
|
Individual Port(s)
|
python
|
Closed
|
DUPLICATE
|
lang/python27: Update to 2.7.15 (bugfix & likely security update)
|
2018-05-07
|
228028
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
lang/python27: Update to 2.7.15 (bugfix & security update)
|
2018-05-26
|
227767
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
databases/mysql55-server: Update to MySQL-Server 5.5.60 to fix multiple CVE
|
2018-04-26
|
227726
|
Ports & Packages
|
Individual Port(s)
|
multimedia
|
Closed
|
FIXED
|
multimedia/ffmpeg: update to 4.0
|
2018-11-07
|
227642
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
[PATCH] mail/sympa: security update to 2.6.32
|
2018-05-23
|
227621
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql57-server: Update to 5.7.22 fixes multiple CVE
|
2018-05-06
|
227476
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
mail/roundcube: Update to 1.3.6 (a security update for CVE-2018-9846
|
2018-04-14
|
227246
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
lang/php56: Update to 5.6.35, Fixes security vulnerabilities
|
2018-04-26
|
226906
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
security/py-cryptography: Update to 2.3 (Fixes build with libressl* 2.7)
|
2018-08-22
|
226892
|
Ports & Packages
|
Individual Port(s)
|
gecko
|
Closed
|
FIXED
|
mail/thunderbird: update to 52.7.0
|
2018-03-27
|
226851
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
www/py-bleach: Update to 2.1.3
|
2018-07-27
|
226491
|
Ports & Packages
|
Individual Port(s)
|
miwi
|
Closed
|
FIXED
|
[PATCH] devel/zziplib: update to 0.13.69 which fixes multiple CVEs
|
2018-07-09
|
226437
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
net-mgmt/netmagis-common: update to 2.3.4
|
2018-03-11
|
226355
|
Ports & Packages
|
Individual Port(s)
|
marcus
|
Closed
|
FIXED
|
net/wireshark: update to 2.4.5
|
2018-03-14
|
226339
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
security/dropbear: update to 2018.76
|
2018-07-29
|
226271
|
Ports & Packages
|
Individual Port(s)
|
multimedia
|
Closed
|
FIXED
|
audio/libsndfile: Fix for multiple vulnerabilities
|
2018-03-04
|
226184
|
Ports & Packages
|
Individual Port(s)
|
chromium
|
Closed
|
FIXED
|
www/chromium: increase requests quota for Google API Key
|
2018-11-10
|
225805
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document multiple vulnerabilities in OpenJPEG
|
2018-07-27
|
225804
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document vulnerability in uWSGI (CVE-2018-6758)
|
2018-02-13
|
225797
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document vulnerability in LibreOffice (CVE-2018-6871 / CVE-2018-1055)
|
2018-02-24
|
225783
|
Ports & Packages
|
Individual Port(s)
|
cpm
|
Closed
|
FIXED
|
security/vuxml: Document vulnerability in mpv (CVE-2018-6360)
|
2018-02-09
|
225767
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
security/vuxml: Document vulnerability in Mailman (CVE-2018-5950)
|
2018-02-08
|
225706
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
www/uwsgi: Fix potential stack overflow in uwsgi_expand_path()
|
2018-02-13
|
225636
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document multiple vulnerabilities in GIMP
|
2018-07-27
|
225611
|
Ports & Packages
|
Individual Port(s)
|
nobutaka
|
Closed
|
FIXED
|
www/w3m Multiple vulnerabilities affecting w3m
|
2018-02-04
|
225585
|
Ports & Packages
|
Individual Port(s)
|
adamw
|
Closed
|
FIXED
|
mail/dovecot: FOLLOW UP: Fix memory leak in auth_client_request_abort()
|
2018-02-01
|
225451
|
Base System
|
bin
|
bugs
|
New
|
---
|
OpenSSH only looks for .k5login in user directory
|
2022-09-09
|
225446
|
Ports & Packages
|
Individual Port(s)
|
zeising
|
Closed
|
FIXED
|
mail/dovecot: Fix memory leak in auth_client_request_abort() (CVE-2017-15132)
|
2018-01-31
|
225241
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
databases/mysql55-server: Update to 5.5.59 fixes multiple CVE
|
2018-01-31
|
225240
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql56-server: Update to 5.6.39 fixes multiple CVE
|
2018-01-17
|
225007
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
www/awstats: Update to 7.7 (security)
|
2018-01-11
|
224960
|
Ports & Packages
|
Individual Port(s)
|
yuri
|
Closed
|
FIXED
|
graphics/optipng: update to 0.7.7
|
2018-02-12
|
224729
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
www/otrs: Update to 5.0.26 (security)
|
2018-01-02
|
224335
|
Ports & Packages
|
Individual Port(s)
|
yuri
|
Closed
|
FIXED
|
security/tor: CVE-2017-8819 needs to be fixed in quarterly branch too
|
2017-12-28
|
224221
|
Ports & Packages
|
Individual Port(s)
|
marcus
|
Closed
|
Overcome By Eve
|
net/wireshark: update to 2.4.3
|
2017-12-14
|
224191
|
Ports & Packages
|
Individual Port(s)
|
hrs
|
Closed
|
FIXED
|
security/heimdal: update to 7.5.0 (security update, fixes remote DoS)
|
2018-02-28
|
223962
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document multiple vulnerabilities in ftp/curl
|
2017-12-05
|
223756
|
Ports & Packages
|
Individual Port(s)
|
pizzamig
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.1.28 [security]
|
2017-11-27
|
223733
|
Ports & Packages
|
Individual Port(s)
|
gnome
|
Closed
|
FIXED
|
www/webkit2-gtk3: update to 2.18.3 (SECURITY), enable Wayland support
|
2018-04-10
|
223629
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
security/vuxml: Document multiple vulnerabilities in GraphicsMagick 1.3.26
|
2018-06-20
|
223626
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document multiple vulnerabilities in FFmpeg
|
2018-07-27
|
223583
|
Ports & Packages
|
Individual Port(s)
|
girgen
|
Closed
|
FIXED
|
databases/postgresql{92,93,94,95,96,10}-server: Please merge to 2017Q4, (security) update from r453847
|
2017-11-10
|
223577
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
net/wireshark: update to 2.4.2
|
2017-11-27
|
223557
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
security/vuxml: Document vulnerability in roundcube (CVE-2017-16651)
|
2017-11-11
|
223547
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
mail/roundcube: Update to 1.3.3, fixes security vulnerability (CVE-2017-16651)
|
2017-11-11
|
223482
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb101-server - invalid vuxml entry
|
2017-11-07
|
223319
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
Overcome By Eve
|
lang/php56: Update to 5.6.32 (Fixes security vulnerabilities)
|
2018-02-26
|
223107
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.1.26 [security]
|
2017-10-19
|
223051
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document vulnerability in wpa_supplicant and hostapd
|
2017-10-16
|
222957
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document multiple vulnerabilities in FFmpeg < 3.3.4
|
2017-10-13
|
222952
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document vulnerability in nss (CVE-2017-7805)
|
2017-10-12
|
222739
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
dns/dnsmasq: Security update to 2.78
|
2017-10-02
|
222683
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Please use correct ISO date format
|
2017-09-29
|
222632
|
Base System
|
kern
|
testing
|
Open
|
---
|
connect(2) not available in capability mode
|
2021-12-20
|
222622
|
Ports & Packages
|
Individual Port(s)
|
kwm
|
Closed
|
FIXED
|
graphics/ImageMagick7: Please MFH r450491 (contains a security vulnerability fix)
|
2017-09-27
|
222621
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Security Vulnerability in ImageMagick (CVE-2017-14741)
|
2017-09-27
|
222398
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
lang/python27: Update to 2.7.14
|
2017-10-14
|
221747
|
Ports & Packages
|
Individual Port(s)
|
lev
|
Closed
|
Overcome By Eve
|
devel/subversion: 1.9.7 should be MFH to quarterly
|
2017-10-17
|
221539
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
sysutils/py-supervisor: Update to 3.3.3, Fixes security vulnerability
|
2017-09-19
|
221417
|
Base System
|
bin
|
bugs
|
Closed
|
FIXED
|
pw usermod silently ignores -G ""
|
2017-09-08
|
221362
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
ftp/curl: Security update to 7.55.0
|
2017-08-10
|
221281
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Feedback Timeou
|
sysutils/ezjail should verify downloaded tarballs before use
|
2019-12-20
|
221201
|
Base System
|
kern
|
kp
|
Closed
|
FIXED
|
[pf] Prevent possible endless loop when searching for an unused nat port
|
2018-02-26
|
221128
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
databases/mysql55-server: Needs to be updated to 5.5.57
|
2017-08-07
|
221014
|
Ports & Packages
|
Individual Port(s)
|
mm
|
Closed
|
FIXED
|
net-im/jabberd: Update to 2.6.1 (Fixes security vulnerability: CVE-2017-10807)
|
2017-07-27
|
220977
|
Ports & Packages
|
Individual Port(s)
|
bofh
|
Closed
|
FIXED
|
devel/gsoap: Update to 2.8.50 (Fixes security vulnerability: CVE-2017-9765)
|
2017-07-25
|
220869
|
Ports & Packages
|
Individual Port(s)
|
woodsb02
|
Closed
|
FIXED
|
sysutils/py-salt : Update to 2017.7.1
|
2017-08-26
|
220849
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
databases/mysql55-server databases/mysql56-server databases/mysql57-server security/vuxml: Update to latest (Fixes security vulnerabilities)
|
2017-08-07
|
220823
|
Ports & Packages
|
Individual Port(s)
|
olivier
|
Closed
|
FIXED
|
security/strongswan: Update to 5.5.3 (Fixes security vulnerabilities)
|
2017-07-23
|
220818
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
devel/oniguruma5: Fix multiple vulnerabilities in 5.9.6_p1
|
2017-11-26
|
220809
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php56: Change from oniguruma5 to oniguruma6
|
2017-11-26
|
220797
|
Ports & Packages
|
Individual Port(s)
|
olivier
|
Closed
|
FIXED
|
net-mgmt/collectd5: update to 5.7.2 (Fixes security vulnerability)
|
2017-07-23
|
220742
|
Ports & Packages
|
Individual Port(s)
|
dbaio
|
Closed
|
FIXED
|
net-mgmt/cacti: Update to 1.1.13 (Fixes security vulnerability)
|
2017-07-17
|
220713
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document security vulnerability in evince and atril (CVE-2017-1000083)
|
2017-08-22
|
220664
|
Ports & Packages
|
Individual Port(s)
|
osa
|
Closed
|
FIXED
|
www/nginx www/nginx-devel: Update to latest versions (fixing CVE-2017-7529)
|
2017-07-12
|
220608
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
graphics/poppler: Update to >= 0.56.0, Multiple security (CVE) vulnerabilities
|
2017-08-24
|
220607
|
Ports & Packages
|
Individual Port(s)
|
gecko
|
Closed
|
Overcome By Eve
|
www/libxul: Update to 52.2.0, Multiple (23) security (CVE) vulnerabilities
|
2018-06-22
|
220586
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
textproc/jq: Dependency update: devel/oniguruma5 -> devel/oniguruma6
|
2017-10-08
|
220584
|
Ports & Packages
|
Individual Port(s)
|
x11
|
Closed
|
FIXED
|
x11-servers/xorg-server: Security vulnerabilities (CVE-2017-10971, CVE-2017-10972)
|
2018-05-23
|
220544
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
irc/irssi: Update to 1.0.4 (security fixes)
|
2017-07-08
|
220438
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
devel/oniguruma6: Update to 6.4.0
|
2017-10-09
|
220435
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
www/smarty3: Update to 3.1.31
|
2017-07-24
|
220160
|
Ports & Packages
|
Individual Port(s)
|
apache
|
Closed
|
FIXED
|
www/apache24: Update to 2.4.26 (addresses multiple CVE reports)
|
2017-07-14
|
220136
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
security/p5-Crypt-OpenSSL-RSA: Additional functions
|
2020-01-20
|
220134
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
security/p5-Crypt-OpenSSL-CA: adding functionality for parse existing CRL
|
2017-06-19
|
220031
|
Ports & Packages
|
Individual Port(s)
|
matthew
|
Closed
|
FIXED
|
www/rt44: Add security patches from BestPractical
|
2017-06-17
|
219864
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
security/tor-devel: Update to 0.3.1.3-alpha
|
2017-07-25
|
219863
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
security/tor: Update to 0.3.0.8 (Security fixes)
|
2017-07-25
|
219827
|
Ports & Packages
|
Individual Port(s)
|
vlad-fbsd
|
Closed
|
FIXED
|
irc/irssi: Update to 1.0.3 (security fixes)
|
2017-06-08
|
219801
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
mail/squirrelmail, mail/squirrelmail-translations: Update to 20170705 (Also fixes CVE-2017-7692)
|
2017-08-25
|
219789
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
mail/roundcube: Update to 1.2.5 (security fix)
|
2017-06-09
|
219783
|
Ports & Packages
|
Individual Port(s)
|
bofh
|
Closed
|
Overcome By Eve
|
graphics/tiffgt is vulnerable, possibly duplicate
|
2017-06-06
|
219662
|
Ports & Packages
|
Individual Port(s)
|
zi
|
Closed
|
FIXED
|
net/freeradius{2,3}: Update to 3.0.14 (CVE-2017-9148 FreeRADIUS TLS resumption authentication bypass)
|
2017-06-01
|
219527
|
Base System
|
misc
|
delphij
|
Closed
|
FIXED
|
Flawed umask handling in /etc/rc.d/random
|
2017-05-31
|
219514
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
Overcome By Eve
|
net/samba{35+}: Security vulnerability: CVE-2017-7494 (RCE)
|
2017-10-30
|
219422
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
Overcome By Eve
|
net/samba45: urgent revert to 4.5.7 from 4.5.8
|
2018-06-14
|
219271
|
Ports & Packages
|
Individual Port(s)
|
kwm
|
Closed
|
FIXED
|
[exp-run] print/freetype2 update to 2.8
|
2017-05-21
|
219154
|
Base System
|
bin
|
kib
|
Closed
|
FIXED
|
[PATCH] buffer overflows in realpath(3)
|
2017-12-17
|
219045
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb101-server: Upgrade to latest version(v10.1.23) - current(v10.1.22) has critical vulnerabilities
|
2017-05-30
|
219006
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
mail/thunderbird: update to 52.1.0
|
2017-05-02
|
218934
|
Ports & Packages
|
Individual Port(s)
|
mmokhi
|
Closed
|
FIXED
|
databases/mysql57-server: Quarterly (2017Q2) branch version vulnerable
|
2017-04-29
|
218671
|
Ports & Packages
|
Individual Port(s)
|
ler
|
Closed
|
FIXED
|
security/vuxml: Document dovecot2 vulnerability
|
2017-04-30
|
217993
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
FIXED
|
net/samba44: Fails to build with new Uses/samba.mk. Update fixes CVE-2017-2619
|
2017-03-31
|
217878
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
irc/irssi: Update to 1.0.2
|
2017-03-22
|
217782
|
Base System
|
kern
|
mizhka
|
Closed
|
FIXED
|
sys/dev/bhnd/cores/pmu/bhnd_pmu_subr.c: PVS-Studio: Assignment to Variable without Use (CWE-563) (3)
|
2020-11-24
|
217099
|
Ports & Packages
|
Individual Port(s)
|
amdmi3
|
Closed
|
FIXED
|
ports-mgmt/fbsdmon: Please delete this port
|
2017-12-17
|
216952
|
Ports & Packages
|
Individual Port(s)
|
madpilot
|
Closed
|
FIXED
|
graphics/optipng: update to 0.7.6
|
2017-02-16
|
216666
|
Ports & Packages
|
Individual Port(s)
|
bsd
|
Closed
|
Not A Bug
|
multimedia/zoneminder - CVE-2016-10140
|
2017-02-06
|
216665
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/ikiwiki - multiple vulnerabilities
|
2017-03-05
|
216664
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
Overcome By Eve
|
lang/php70 - CVE-2017-5340
|
2017-02-04
|
216663
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
lang/guile2 - CVE-2016-8605 & CVE-2016-8606
|
2017-02-04
|
216662
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
databases/mantis - CVE-2016-6837
|
2017-02-04
|
216661
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
lang/chicken - multiple vulnerabilities
|
2017-03-05
|
216660
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
Overcome By Eve
|
graphics/png - CVE-2016-10087
|
2017-06-09
|
216659
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
textproc/libebml - missing vuxml entries
|
2017-02-04
|
216658
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
Overcome By Eve
|
security/vuxml: graphics/tiff < 4.0.7 has multiple vulnerabilities (2016Q4 or older)
|
2017-06-09
|
216654
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
Not Enough Info
|
lang/php70-gd & lang/php56-gd - CVE-2016-8670
|
2017-06-09
|
216584
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
mail/thunderbird: update to 45.7.1
|
2017-03-03
|
216540
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/wordpress chinese/wordpress-zh_CN chinese/wordpress-zh_TW japanese/wordpress german/wordpress: Update to 4.7.2
|
2017-01-30
|
216515
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
russian/wordpress: Update to 4.7.2
|
2017-01-30
|
216136
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
dns/powerdns: Upgrade to recent version (v4.0.2) - current(4.0.1) has critical vulnerabilities
|
2017-01-18
|
216135
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
dns/powerdns-recursor: Upgrade to recent version (v4.0.4) - current(4.0.3) is vulnerable
|
2017-01-18
|
216059
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/wordpress chinese/wordpress-zh_CN chinese/wordpress-zh_TW japanese/wordpress german/wordpress russian/wordpress: Update to 4.7.1
|
2017-01-15
|
215989
|
Ports & Packages
|
Individual Port(s)
|
rm
|
Closed
|
FIXED
|
shells/lshell: Update to 0.9.18, take MAINTAINER'ship
|
2017-02-06
|
215988
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Document multiple security vulnerabilities in lshell
|
2018-07-27
|
215909
|
Ports & Packages
|
Individual Port(s)
|
tijl
|
Closed
|
FIXED
|
[exp-run] security/gnutls: Update to 3.5.8
|
2017-01-12
|
215865
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
www/tomcat8 {tomcat7,tomcat6}: update to 8.0.40, 7.0.74, 6.0.49
|
2017-03-18
|
215822
|
Ports & Packages
|
Individual Port(s)
|
nobutaka
|
Closed
|
FIXED
|
www/w3m: Update request (has known security vulnerabilities)
|
2017-01-09
|
215805
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Document security vulnerabilities in libvncserver
|
2017-01-09
|
215802
|
Ports & Packages
|
Individual Port(s)
|
matthew
|
Closed
|
FIXED
|
net/libvncserver: Update to 0.9.11 (Security fixes)
|
2017-01-22
|
215801
|
Ports & Packages
|
Individual Port(s)
|
vanilla
|
Closed
|
FIXED
|
security/vuxml: Document security vulnerabilities in Irssi
|
2017-01-06
|
215800
|
Ports & Packages
|
Individual Port(s)
|
vanilla
|
Closed
|
FIXED
|
irc/irssi: Update to 0.8.21 (Security fixes)
|
2017-01-08
|
215733
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
mail/thunderbird: update to 45.6.0
|
2017-01-06
|
215651
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
devel/py-Jinja2: Update to 2.8.2
|
2017-04-04
|
215615
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
graphics/py-pillow: Update to 3.4.2 (security fixes)
|
2017-01-09
|
215576
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
mail/phpmailer: Update to 5.2.18
|
2017-01-03
|
215481
|
Ports & Packages
|
Individual Port(s)
|
robak
|
Closed
|
FIXED
|
textproc/apache-poi update to version 3.15
|
2017-03-28
|
215464
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
www/lynx - multiple vulnerabilites
|
2017-01-09
|
215418
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/squid-devel: update to 4.0.17
|
2016-12-23
|
215416
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/squid: update to 3.5.23
|
2016-12-23
|
215271
|
Ports & Packages
|
Individual Port(s)
|
cpm
|
Closed
|
FIXED
|
www/chromium: maybe use system ffmpeg
|
2017-02-06
|
215096
|
Ports & Packages
|
Individual Port(s)
|
apache
|
Closed
|
FIXED
|
www/apache24: Fix HTTP/2 DoS vulnerability
|
2016-12-06
|
215085
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
devel/libdwarf: Update to 20161124 (Fixes many security vulnerabilities)
|
2017-01-09
|
215036
|
Ports & Packages
|
Individual Port(s)
|
tobik
|
Closed
|
FIXED
|
multimedia/ffmpeg0: remove port
|
2019-06-15
|
214978
|
Ports & Packages
|
Individual Port(s)
|
gecko
|
Closed
|
FIXED
|
www/firefox: update firefox and friends to 50.0.2/45.5.1
|
2016-12-02
|
214952
|
Ports & Packages
|
Individual Port(s)
|
portmgr
|
Closed
|
Not Enough Info
|
graphics/tiff - CVE-2016-8331
|
2017-06-09
|
214951
|
Ports & Packages
|
Individual Port(s)
|
tijl
|
Closed
|
FIXED
|
textproc/linux-c6-expat: update to 2.0.1-13.el6_8, security/vuxml: Add entry for CVE-2016-0718
|
2016-12-01
|
214941
|
Ports & Packages
|
Individual Port(s)
|
vd
|
Closed
|
FIXED
|
ftp/wget - missing vuxml entry
|
2016-11-30
|
214940
|
Ports & Packages
|
Individual Port(s)
|
rakuco
|
Closed
|
FIXED
|
archivers/p7zip: Security vulnerability (CVE-2016-9296)
|
2016-12-01
|
214938
|
Ports & Packages
|
Individual Port(s)
|
thierry
|
Closed
|
FIXED
|
science/hdf5-18 - multiple vulnerabilites & missing vuxml entry
|
2017-01-09
|
214936
|
Ports & Packages
|
Individual Port(s)
|
royger
|
Closed
|
FIXED
|
emulators/xen {-tools/-kernel}: security advisories (XSA-185 - XSA-201)
|
2016-12-04
|
214925
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
mail/roundcube: Update to 1.2.3 (Fixes security vulnerability)
|
2016-12-14
|
214915
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/py-cryptography: Update to 1.6 (security fixes)
|
2017-01-09
|
214631
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
mail/thunderbird: 45.5.0 (with enigmail 1.9.6.1)
|
2016-11-22
|
214546
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/libwww: Security vulnerabilities
|
2016-11-29
|
214532
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
security/vuxml: Document www/libwww vulnerability
|
2016-11-29
|
214520
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in ImageMagick (CVE-2016-9298)
|
2016-12-04
|
214517
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
graphics/ImageMagick: Update to 6.9.6-4 (security fixes)
|
2016-12-05
|
214514
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Multiple security vulnerabilities in ImageMagick7
|
2016-12-04
|
214511
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
graphics/ImageMagick7: Update to 7.0.3-7 (security fixes)
|
2016-12-05
|
214488
|
Base System
|
kern
|
kib
|
Closed
|
FIXED
|
mqueuefs mq_setattr() leaks stack memory
|
2016-12-04
|
214412
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
graphics/py-pillow: Multiple vulnerabilities (CVE-2016-9189, CVE-2016-9190)
|
2017-01-09
|
214410
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Multiple security vulnerabilities in py-pillow (CVE-2016-9189, CVE-2016-9190)
|
2016-12-04
|
214360
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in rubygem-gitlab (CVE-2016-9086)
|
2016-11-09
|
214000
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
ftp/curl: Update to 7.51.0 (Fixes multiple vulnerabilities)
|
2016-11-02
|
213831
|
Ports & Packages
|
Individual Port(s)
|
emulation
|
Closed
|
FIXED
|
www/linux-c6-flashplugin11: 11.2r202.637 vulnerable, Update to >= 11.2r202.643
|
2016-10-27
|
213792
|
Ports & Packages
|
Individual Port(s)
|
jhale
|
Closed
|
FIXED
|
www/axis2: Update to 1.7.4, Security Vulnerability
|
2016-10-31
|
213698
|
Ports & Packages
|
Individual Port(s)
|
tijl
|
Closed
|
FIXED
|
www/linux-c6-flashplugin11: 11.2r202.632 vulnerable, should update to 11.2r202.637 or later
|
2016-10-24
|
213664
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
DUPLICATE
|
lang/php56: Update to 5.6.27
|
2016-10-21
|
213640
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/openssh-portable: Security vulnerability (CVE-2016-8858)
|
2016-10-29
|
213604
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
www/node: Update to 6.9.1
|
2016-10-28
|
213603
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
www/node4: Update to 4.6.1
|
2016-10-28
|
213602
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
www/node012: Update to 0.12.17
|
2016-10-28
|
213589
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php56 lang/php70: Update to latest versions (5.6.27, 7.0.12) - Fixes Security Vulnerabilities
|
2016-10-21
|
213546
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Document axis2 vulnerability
|
2016-10-18
|
213537
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
deskutils/py-khal: Update to 0.7.1 (security fixes)
|
2016-10-18
|
213536
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
www/axis2: Update to 1.7.3, Security Vulnerability, Take MAINTAINER'ship
|
2016-10-20
|
213495
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
dns/c-ares: Update to 1.12.0 (CVE-2016-5180)
|
2016-10-20
|
213199
|
Ports & Packages
|
Individual Port(s)
|
kwm
|
Closed
|
FIXED
|
archivers/file-roller CVE-2016-7162
|
2016-12-28
|
213141
|
Ports & Packages
|
Individual Port(s)
|
gecko
|
Closed
|
FIXED
|
mail/thunderbird: 45.4.0
|
2020-10-02
|
213034
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
www/py-django18, www/py-django19: Update to 1.8.15 and 1.9.10 respectively
|
2016-09-29
|
213033
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in py-django, py-django18 and py-django19 (CVE-2016-7401)
|
2016-09-29
|
213032
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
graphics/ImageMagick: Upgrade to 6.9.5-10 (security fixes)
|
2016-10-12
|
213023
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in libgd, php56-gd and php70-gd
|
2016-10-12
|
213020
|
Ports & Packages
|
Individual Port(s)
|
dinoex
|
Closed
|
FIXED
|
graphics/gd: Fix integer overflow in gdImageWebpCtx
|
2016-10-16
|
212952
|
Ports & Packages
|
Individual Port(s)
|
rene
|
Closed
|
FIXED
|
security/tor and security/tor-devel: Update to 0.2.8.9 and 0.2.9.4-alpha
|
2016-11-15
|
212889
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Multiple security vulnerabilities in irssi
|
2016-09-21
|
212888
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
irc/irssi: Multiple vulnerabilities
|
2016-09-21
|
212677
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
ftp/curl: Update to 7.50.3 / fix vuln
|
2016-09-21
|
212619
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
databases/percona56-server: CVE 2016-6662
|
2016-09-13
|
212618
|
Ports & Packages
|
Individual Port(s)
|
flo
|
Closed
|
FIXED
|
databases/percona55-server: CVE 2016-6662
|
2016-09-13
|
212617
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb101-server: CVE 2016-6662
|
2016-09-28
|
212616
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb100-server: CVE 2016-6662
|
2016-09-28
|
212615
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb55-server: CVE 2016-6662
|
2016-09-28
|
212614
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
databases/mysql55-server: CVE 2016-6662
|
2016-11-27
|
212613
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
databases/mysql56-server: CVE 2016-6662
|
2016-11-27
|
212612
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
databases/mysql57-server: CVE 2016-6662
|
2016-11-27
|
212606
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
databases/mysql*-server, databases/percona*-server: CVE 2016-6662
|
2016-11-27
|
212463
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
mail/thunderbird: update to 45.3.0
|
2016-09-10
|
212455
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
ftp/curl: Security Vulnerability: CVE-2016-7141 <= 7.50.2
|
2016-10-09
|
212380
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Multiple security vulnerabilities in net/libvncserver
|
2016-10-12
|
212379
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in editors/openoffice-4 (CVE-2014-3575)
|
2016-10-12
|
212378
|
Ports & Packages
|
Individual Port(s)
|
mandree
|
Closed
|
FIXED
|
mail/mailman - missing vuxml entry
|
2016-09-06
|
212305
|
Base System
|
bin
|
emaste
|
Closed
|
FIXED
|
Security: possible to edit crontab of other user
|
2017-01-19
|
212275
|
Ports & Packages
|
Individual Port(s)
|
bdrewery
|
Closed
|
FIXED
|
security/openssh-portable - missing vuxml entries
|
2016-09-01
|
212207
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
graphics/mupdf: CVE-2016-6525, CVE-2016-6265
|
2016-10-12
|
211930
|
Ports & Packages
|
Individual Port(s)
|
portmgr
|
Closed
|
Not Accepted
|
Mk/bsd.default-versions.mk: Change default Perl version to 5.22 or 5.24 (5.20 End-of-Life)
|
2016-08-17
|
211911
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
audio/teamspeak3-server: Update to 3.0.13.2 (fixes security vulnerabilities)
|
2016-08-30
|
211892
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
www/h2o: Update to 2.0.4
|
2016-09-14
|
211854
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
Overcome By Eve
|
dns/powerdns*: backport CVE-2016-6172 fix to 3.x series
|
2016-11-27
|
211846
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
[Security Advisory] audio/teamspeak3-server: Several vulnerabilities found in Teamspeak3-server
|
2016-08-14
|
211797
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
x11-fonts/xfs: Add CPE information
|
2021-08-18
|
211795
|
Ports & Packages
|
Individual Port(s)
|
ehaupt
|
Closed
|
FIXED
|
x11/xterm: add CPE information
|
2016-08-13
|
211709
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in databases/redis and redis-devel (CVE-2013-7458)
|
2016-10-11
|
211693
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
dns/nsd: Update to 4.1.11 (Fixes security vulnerability: Fixes CVE-2016-6173)
|
2016-08-10
|
211613
|
Ports & Packages
|
Individual Port(s)
|
brd
|
Closed
|
FIXED
|
net-mgmt/collectd5: Update to 5.5.2 (Fixes security vulnerability: CVE-2016-6254)
|
2016-08-14
|
211590
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
[MAINTAINER] www/piwik: Update to 2.16.2 (security update)
|
2016-08-11
|
211580
|
Base System
|
kern
|
jail
|
Closed
|
FIXED
|
deny system message buffer access from jails
|
2018-10-20
|
211575
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
ftp/curl: Update to 7.50.1 (Fixes 3 Security Vulnerabilities), security/vuxml: Add entry
|
2016-08-04
|
211561
|
Ports & Packages
|
Individual Port(s)
|
perl
|
Closed
|
FIXED
|
lang/perl5.20, 5.22 & 5.24: Multiple Vulnerabilities
|
2016-08-15
|
211482
|
Ports & Packages
|
Individual Port(s)
|
royger
|
Closed
|
FIXED
|
emulators/xen {-tools/-kernel}: security advisories (XSA-182,183,184)
|
2016-08-02
|
211407
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
dns/libidn: update 1.31 -> 1.33
|
2016-08-01
|
211405
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
graphics/tiff: Remove gif2tiff (Reporting still vulnerable to CVE-2016-5102)
|
2016-08-06
|
211290
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
lang/php56: Update to 5.6.24
|
2016-07-26
|
211274
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb*-server: Multiple vulnerabilities
|
2016-08-08
|
211251
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
lang/php70: Update to 7.0.9 (multiple security fixes)
|
2016-07-27
|
211248
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
databases/mysql55-server, databases/mysql56-server, databases/mysql57-server: Multiple CVE
|
2017-04-25
|
211206
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
www/nextcloud: Update to 9.0.53 (Fixes security vulnerability: https://httpoxy.org/#cve)
|
2016-07-26
|
211124
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
graphics/gimp: update to 2.8.18
|
2016-07-29
|
211114
|
Ports & Packages
|
Individual Port(s)
|
rakuco
|
Closed
|
FIXED
|
archivers/p7zip: update to 15.14.1 (Fixes security vulnerabilities)
|
2016-07-15
|
211113
|
Ports & Packages
|
Individual Port(s)
|
portmgr
|
Closed
|
FIXED
|
graphics/tiff: Backport fixes for CVE-2016-5875, CVE-2016-3186
|
2016-07-27
|
211100
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
Overcome By Eve
|
editors/libreoffice: Update to latest version, security vulnerability (CVE-2016-4324)
|
2018-02-23
|
211099
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Overcome By Eve
|
java/jakarta-struts: Vulnerable to CVE-2016-3092
|
2016-12-01
|
211023
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
textproc/xerces-c3 - Multiple Vulnerabilities
|
2016-07-26
|
211009
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
FIXED
|
net/samba43: version 4.3.11 released, security fix (CVE-2016-2119)
|
2016-07-13
|
211008
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
FIXED
|
net/samba42: version 4.2.14 released, security fix (CVE-2016-2119)
|
2016-07-13
|
211006
|
Ports & Packages
|
Individual Port(s)
|
timur
|
Closed
|
FIXED
|
net/samba44: version 4.4.5 released, security fix (CVE-2016-2119)
|
2016-07-13
|
210871
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
www/typo3-lts: Update to 6.2.25
|
2016-07-19
|
210870
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
www/typo3: Update to 7.6.9
|
2016-07-19
|
210751
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in SQLite3 (CVE-2016-6153)
|
2016-07-03
|
210749
|
Ports & Packages
|
Individual Port(s)
|
cmt
|
Closed
|
FIXED
|
mail/thunderbird: update to 45.2.0
|
2016-07-09
|
210581
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
Overcome By Eve
|
chinese/wordpress-zh_CN and chinese/wordpress-zh_TW: update 4.5.2 -> 4.5.3 (security)
|
2016-08-29
|
210550
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: CVE-2016-2177 missing for security/openssl
|
2016-07-01
|
210541
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in python33 (CVE-2016-5699)
|
2016-07-04
|
210539
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
lang/python33: HTTP Header Injection in Python urllib (CVE-2016-5699)
|
2016-11-30
|
210512
|
Ports & Packages
|
Individual Port(s)
|
vd
|
Closed
|
FIXED
|
ftp/wget: bump to 1.18 in 2016Q2 (CVE-2016-4971)
|
2016-06-24
|
210502
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
lang/php56 PHP 5.6.23 released (fixing "several security bugs")
|
2016-06-25
|
210493
|
Ports & Packages
|
Individual Port(s)
|
glewis
|
Closed
|
FIXED
|
archivers/libarchive: update to 3.2.1
|
2016-06-23
|
210491
|
Ports & Packages
|
Individual Port(s)
|
miwi
|
Closed
|
FIXED
|
lang/php70: Update to 7.0.8 (Security fixes)
|
2016-06-25
|
210458
|
Ports & Packages
|
Individual Port(s)
|
tz
|
Closed
|
FIXED
|
www/piwik: Update to 2.16.1 (security update)
|
2016-06-25
|
210421
|
Ports & Packages
|
Individual Port(s)
|
vd
|
Closed
|
FIXED
|
ftp/wget: Update to 1.18 (Fixes CVE-2016-4971)
|
2016-06-24
|
210420
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Security Vulnerability in wget (CVE-2016-4971)
|
2016-06-21
|
210325
|
Ports & Packages
|
Individual Port(s)
|
rm
|
Closed
|
FIXED
|
lang/python35, lang/python34, lang/python33, lang/python27: Backport patches for CVE-2016-5636
|
2016-06-19
|
210324
|
Ports & Packages
|
Individual Port(s)
|
rm
|
Closed
|
FIXED
|
security/vuxml, lang/python*: Security vulnerability -- Heap overflow in zipimporter module (CVE-2016-5636)
|
2016-06-17
|
210317
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/drupal7: Update to 7.44 (Security fixes)
|
2016-07-16
|
210298
|
Ports & Packages
|
Individual Port(s)
|
gnome
|
Closed
|
FIXED
|
textproc/libxslt: Update to 1.1.29
|
2016-06-20
|
210155
|
Ports & Packages
|
Individual Port(s)
|
emulation
|
Closed
|
FIXED
|
textproc/expat2 & textproc/linux-*-expat: Expat issues CVE-2012-6702 and CVE-2016-5300
|
2016-12-03
|
209841
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
mail/roundcube: 1.1.5 vulnerable to CVE-2016-5103
|
2016-06-10
|
209809
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
net-mgmt/cacti: upgrade to 0.8.8h - fix sql vulns
|
2016-06-06
|
209779
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
lang/php55 lang/php56: Update to latest versions (5.5.36, 5.6.22) fixes security vulnerabilities
|
2016-05-28
|
209669
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
[PATCHE] www/tomcat7 and www/tomcat-native upgrade
|
2016-06-26
|
209592
|
Ports & Packages
|
Individual Port(s)
|
emulation
|
Closed
|
FIXED
|
www/linux-c6-flashplugin11 / linux-f10-flashplugin11 - CVE-2016-4117
|
2016-06-19
|
209534
|
Ports & Packages
|
Individual Port(s)
|
bjk
|
Closed
|
FIXED
|
net/openafs - multiple vulnerabilities
|
2016-06-05
|
209409
|
Ports & Packages
|
Individual Port(s)
|
miwi
|
Closed
|
FIXED
|
chinese/wordpress-zh_CN: update 4.4.2 -> 4.5.2 (security)
|
2016-05-20
|
209344
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
databases/mysql56-server: 2016Q2 branch still unpatched
|
2016-05-10
|
209318
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb100-server: Update to 10.0.25
|
2016-05-07
|
209241
|
Ports & Packages
|
Individual Port(s)
|
kwm
|
Closed
|
FIXED
|
graphics/ImageMagick: Add VuXML entry to report vulnerability for CVE-2016-3714
|
2016-05-07
|
209225
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
[security] www/gitlab: Update to 8.7.1
|
2016-05-03
|
209219
|
Ports & Packages
|
Individual Port(s)
|
vanilla
|
Closed
|
FIXED
|
devel/jansson: denial of service vulnerability (CVE-2016-4425)
|
2016-05-20
|
209218
|
Ports & Packages
|
Individual Port(s)
|
makc
|
Closed
|
FIXED
|
irc/quassel: update to 0.12.4 (CVE-2016-4414)
|
2016-07-07
|
209145
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
lang/php56: Update to 5.6.21
|
2016-05-03
|
209142
|
Ports & Packages
|
Individual Port(s)
|
chromium
|
Closed
|
FIXED
|
www/chromium: multiple vulnerabilities
|
2016-05-28
|
209022
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
net-mgmt/cacti: No vuxml entry for CVE-2016-3659
|
2016-05-29
|
208840
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
net/dhcpcd: Add VuXML entry for CVE-2014-7912 and CVE-2014-7913
|
2016-04-17
|
208482
|
Ports & Packages
|
Individual Port(s)
|
marino
|
Closed
|
FIXED
|
security/wpa_supplicant: several upstream security advisories (CVE-2015-{5310,5315,5316})
|
2016-04-19
|
208476
|
Ports & Packages
|
Individual Port(s)
|
royger
|
Closed
|
Not A Bug
|
emulators/xen {-tools/-kernel}: security advisories (XSA-172)
|
2016-04-04
|
208465
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
lang/php56: Update to 5.6.20
|
2016-04-03
|
208463
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
www/squid: update to 3.5.16
|
2016-04-03
|
208462
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
java/jakarta-struts: Security vulnerability: input validation bypass (JVN#86448949/CVE-2015-0899)
|
2016-09-10
|
208404
|
Ports & Packages
|
Individual Port(s)
|
kevlo
|
Closed
|
FIXED
|
[patch] net/openvswitch CVE-2016-2074
|
2016-07-03
|
208385
|
Ports & Packages
|
Individual Port(s)
|
tijl
|
Closed
|
FIXED
|
security/linux-c6-nss needs updating to resolve vulnerabilities
|
2016-09-05
|
208280
|
Base System
|
conf
|
re
|
Closed
|
FIXED
|
release/scripts/pkg-stage.sh: Rip out Fedora 10.
|
2016-05-27
|
208260
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
devel/pcre - CVE-2016-1283
|
2016-04-03
|
208155
|
Ports & Packages
|
Individual Port(s)
|
garga
|
Closed
|
Overcome By Eve
|
security/clamav: Problem with bundled LLVM
|
2016-09-05
|
208074
|
Ports & Packages
|
Individual Port(s)
|
garga
|
Closed
|
FIXED
|
devel/git - CVE-2016-2315 & CVE-2016-2324
|
2016-03-18
|
207934
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
Update textproc/apache-poi to version 3.14
|
2016-04-24
|
207854
|
Base System
|
kern
|
bugs
|
Closed
|
FIXED
|
usr/src/sys/contrib/ncsw/Peripherals/QM/qm_portal_fqr.c:1437: bad shift ?
|
2019-12-21
|
207740
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
devel/websvn: Add patches for CVE-2013-6892 and CVE-2016-2511
|
2016-03-06
|
207686
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
graphics/graphite2: update to 1.3.6
|
2016-03-08
|
207574
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Entry for graphics/silgraphite missing or insufficient information (vid 8f10fa04-cf6a-11e5-96d6-14dae9d210b8)
|
2016-10-07
|
207498
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
www/drupal7: Update 7.42 to 7.43 (Security Release)
|
2016-02-26
|
207494
|
Ports & Packages
|
Individual Port(s)
|
wen
|
Closed
|
Overcome By Eve
|
www/typo3: Update to 7.6.4
|
2017-02-15
|
207454
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/squid: update to 3.5.15
|
2016-02-28
|
207444
|
Ports & Packages
|
Individual Port(s)
|
skreuzer
|
Closed
|
FIXED
|
net-mgmt/cacti: upgrade to 0.8.8g
|
2016-03-02
|
207334
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
lang/bsh: Update to version 2.0b6 (Fixes security vulnerability, CVE-2016-2510)
|
2016-02-21
|
207304
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
lang/go: Merge 406071 (security vulnerability fix) to quarterly branch 2016Q1
|
2016-02-24
|
207294
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/squid: update to 3.5.14 (CVE-2016-2390/SQUID-2016:1)
|
2016-02-25
|
207207
|
Ports & Packages
|
Individual Port(s)
|
miwi
|
Closed
|
FIXED
|
www/firefox: update to 44.0.2
|
2016-02-15
|
207187
|
Ports & Packages
|
Individual Port(s)
|
horde
|
Closed
|
Overcome By Eve
|
www/horde-base & devel/pear-Horde_Core: XSS vulnerabilites in 2016Q1 version
|
2016-04-03
|
207174
|
Ports & Packages
|
Individual Port(s)
|
danilo
|
Closed
|
FIXED
|
misc/xdelta3: update to 3.0.11 (address CVE-2014-9765 in < 3.0.9)
|
2016-03-02
|
207173
|
Ports & Packages
|
Individual Port(s)
|
demon
|
Closed
|
FIXED
|
devel/hive: Apache Hive authorization bug disclosure in 1.2.1 (CVE-2015-7521)
|
2016-07-03
|
207054
|
Ports & Packages
|
Individual Port(s)
|
rakuco
|
Closed
|
FIXED
|
graphics/py-imaging: Backport 2 Pillow security fixes.
|
2016-02-11
|
207053
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
graphics/py-pillow: Backport security fixes from 3.1.1.
|
2016-02-13
|
207003
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
net/libsrtp: Update to 1.5.4 (Fixes security vulnerability CVE-2015-6360)
|
2016-02-21
|
207001
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
graphics/jpgraph2 - CVE-2009-4422
|
2016-03-14
|
206998
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
databases/mysql57-{server,client}: Update to 5.7.12
|
2016-05-07
|
206906
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
sysutils/py-salt: Update to 2015.8.5 (Fixes CVE-2016-1866)
|
2016-02-05
|
206905
|
Ports & Packages
|
Individual Port(s)
|
miwi
|
Closed
|
FIXED
|
russian/wordpress: Update to 4.4.2
|
2016-02-23
|
206808
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
net/samba36: security/vuxml: ineffective vuxml entry
|
2016-02-27
|
206761
|
Base System
|
kern
|
bugs
|
Closed
|
FIXED
|
Kernel stack overflow in sysctl handler for kern.binmisc.add
|
2016-04-05
|
206756
|
Ports & Packages
|
Individual Port(s)
|
zeising
|
Closed
|
FIXED
|
ftp/curl: Update to 7.47.0 (Fixes CVE-2016-0755)
|
2016-02-03
|
206754
|
Base System
|
kern
|
bugs
|
Closed
|
FIXED
|
Out of bounds negative array index in iicrdwr
|
2019-01-15
|
206746
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
security/py-rsa: Update to 3.3 (Fixes CVE-2016-1494)
|
2016-02-04
|
206727
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
www/nghttp2: Missing VuXML entry (CVE-2015-8659)
|
2016-01-29
|
206726
|
Ports & Packages
|
Individual Port(s)
|
sbruno
|
Closed
|
DUPLICATE
|
emulators/qemu-sbruno: Missing VuXML entry
|
2016-10-07
|
206725
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Security vulnerability in emulators/qemu-devel, emulators/qemu-sbruno
|
2016-12-04
|
206724
|
Ports & Packages
|
Individual Port(s)
|
kevlo
|
Closed
|
FIXED
|
www/owncloud - missing multiple vuxml entries
|
2016-01-29
|
206723
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
www/typo3 & typo3-lts missing vuxml entries
|
2016-01-29
|
206707
|
Ports & Packages
|
Individual Port(s)
|
lx
|
Closed
|
FIXED
|
net-im/prosody: Update to 0.9.10
|
2016-02-14
|
206698
|
Ports & Packages
|
Individual Port(s)
|
osa
|
Closed
|
FIXED
|
www/nginx www/nginx-devel: Update to security releases 1.8.1 & 1.9.10 respectively
|
2016-01-30
|
206680
|
Base System
|
kern
|
emaste
|
Closed
|
FIXED
|
kbd spl calls obscure locking
|
2024-01-07
|
206678
|
Base System
|
kern
|
lifanov
|
Closed
|
FIXED
|
OGIO_KEYMAP command does not restore priority level
|
2017-01-17
|
206626
|
Base System
|
kern
|
emaste
|
Closed
|
FIXED
|
Integer overflow in nfssvc system call
|
2016-10-07
|
206610
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
security/libressl: Identify whether affected by OpenSSL vulnerability
|
2016-01-29
|
206608
|
Ports & Packages
|
Individual Port(s)
|
dinoex
|
Closed
|
FIXED
|
security/openssl: Update to 1.0.2f (Fixes security vulnerability)
|
2016-01-29
|
206607
|
Services
|
Security Team
|
koobs
|
Closed
|
Not A Bug
|
Forthcoming OpenSSL Security Releases (1.0.2f, 1.0.1r.)
|
2016-04-17
|
206592
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
security/vuxml: Missing vuxml entry for security/sudo (CVE-2015-5602)
|
2016-07-16
|
206590
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
security/vuxml: Add entry for devel/gdcm - CVE-2015-8397 & CVE-2015-8396
|
2016-02-01
|
206585
|
Base System
|
kern
|
bugs
|
Closed
|
FIXED
|
hpt_set_info possible buffer overflow
|
2019-01-14
|
206584
|
Base System
|
kern
|
bugs
|
Closed
|
Works As Intend
|
Possible integer overflow in update_intel
|
2016-01-24
|
206581
|
Base System
|
kern
|
net
|
Closed
|
FIXED
|
bxe_ioctl_nvram handler is faulty
|
2018-05-23
|
206579
|
Base System
|
kern
|
bugs
|
Closed
|
Not A Bug
|
amr(4): Multiple vulnerabilities in AMR ioctl handler
|
2016-01-25
|
206573
|
Base System
|
misc
|
bugs
|
Closed
|
FIXED
|
Improper userland pointer handling in aacraid
|
2016-05-06
|
206551
|
Base System
|
kern
|
bugs
|
Closed
|
Not A Bug
|
Heap overflow in iconv kernel module
|
2016-01-24
|
206504
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
[MAINTAINER] www/privoxy: Update to 3.0.24 stable
|
2016-01-26
|
206417
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
devel/cgit: Update to 0.12 (Security fixes)
|
2016-01-21
|
206404
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
Overcome By Eve
|
security issue in mail/roundcube <1.1.4
|
2016-06-10
|
206386
|
Base System
|
bin
|
secteam
|
Closed
|
FIXED
|
vendor/libarchive: directory traversal vulnerability/local denial of services
|
2019-03-04
|
206372
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
graphics/imlib2: Update to 1.4.7
|
2016-01-22
|
206282
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
multimedia/ffmpeg zero-day vulnerability HLS
|
2016-01-17
|
206193
|
Ports & Packages
|
Individual Port(s)
|
miwi
|
Closed
|
FIXED
|
www/h2o: Update to 1.6.2, Add security/vuxml entry
|
2016-01-19
|
206157
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
FIXED
|
devel/p5-PathTools: Update to 3.62
|
2016-01-13
|
206150
|
Ports & Packages
|
Individual Port(s)
|
lx
|
Closed
|
FIXED
|
net-im/prosody: Update to 0.9.9
|
2016-01-26
|
206129
|
Ports & Packages
|
Individual Port(s)
|
miwi
|
Closed
|
FIXED
|
lang/php55 lang/php56: Update to latest versions (5.5.31, 5.6.17) - Fixes Security Vulnerabilities
|
2016-01-11
|
206072
|
Ports & Packages
|
Individual Port(s)
|
rakuco
|
Closed
|
FIXED
|
textproc/py-pygments: Add patch for CVE-2015-8557
|
2016-01-17
|
206015
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
net/dhcpcd: Update to 6.10.0 (Fixes security vulnerabilities)
|
2016-01-08
|
205936
|
Ports & Packages
|
Individual Port(s)
|
johans
|
Closed
|
FIXED
|
security/wolfssl: Update to 3.8.0 (Fixes Security Vulnerability)
|
2016-09-12
|
205923
|
Ports & Packages
|
Individual Port(s)
|
rakuco
|
Closed
|
FIXED
|
graphics/tiff: Add patches for CVE-2015-8665, CVE-2015-8683 and other vulnerabilities
|
2016-01-05
|
205920
|
Ports & Packages
|
Individual Port(s)
|
rakuco
|
Closed
|
FIXED
|
net-mgmt/cacti: Add patch for CVE-2015-8369
|
2016-01-06
|
205841
|
Ports & Packages
|
Individual Port(s)
|
royger
|
Closed
|
FIXED
|
emulators/xen {-tools/-kernel}: multiple security advisories (XSA-157 to XSA-169)
|
2021-11-02
|
205814
|
Ports & Packages
|
Individual Port(s)
|
bofh
|
Closed
|
FIXED
|
emulators/qemu {-devel}: multiple vulnerabilities
|
2021-11-02
|
205813
|
Ports & Packages
|
Individual Port(s)
|
sbruno
|
Closed
|
FIXED
|
emulators/qemu-sbruno: multiple vulnerabilities
|
2021-11-02
|
205779
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
mail/roundcube: Update to 1.1.4
|
2016-01-02
|
205670
|
Ports & Packages
|
Individual Port(s)
|
makc
|
Closed
|
Overcome By Eve
|
irc/quassel: Vulnerable version in 2015Q4 branch.
|
2016-01-04
|
205502
|
Ports & Packages
|
Individual Port(s)
|
gnome
|
Closed
|
FIXED
|
graphics/librsvg2: update 2.40.10 -> 2.40.12
|
2015-12-23
|
205159
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb100-server: Not updated in 2015Q4
|
2015-12-09
|
205110
|
Ports & Packages
|
Individual Port(s)
|
mmoll
|
Closed
|
FIXED
|
www/redmine: multiple vulnerabilities
|
2015-12-11
|
205105
|
Ports & Packages
|
Individual Port(s)
|
swills
|
Closed
|
FIXED
|
security/keepassx: address information disclosure vulnerability (CVE-2015-8378)
|
2015-12-23
|
205104
|
Ports & Packages
|
Individual Port(s)
|
osa
|
Closed
|
FIXED
|
www/rubygem-passenger: update to 5.0.22 (CVE-2015-7519)
|
2015-12-09
|
205009
|
Services
|
Security Team
|
secteam
|
Closed
|
FIXED
|
[META] Track Base & Ports Updates for OpenSSL Security Advisory [3 Dec 2015]
|
2015-12-05
|
205008
|
Base System
|
misc
|
security-officer
|
Closed
|
FIXED
|
OpenSSL: Multiple Security Vulnerabilities (Update to 1.0.2e)
|
2015-12-05
|
205007
|
Ports & Packages
|
Individual Port(s)
|
dinoex
|
Closed
|
FIXED
|
security/openssl: Multiple Security Vulnerabilities (Update to 1.0.2e)
|
2015-12-05
|
204965
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: Update for net-mgmt/lldpd entry (2a4a112a-7c1b-11e5-bd77-0800275369e2)
|
2016-02-02
|
204670
|
Ports & Packages
|
Individual Port(s)
|
vanilla
|
Closed
|
FIXED
|
www/twiki: Patch patch-cve-2014-7236 failed to apply cleanly.
|
2015-11-19
|
204643
|
Base System
|
kern
|
kp
|
Closed
|
FIXED
|
[msdosfs] [panic] Crash while accessing files with large, non-english names
|
2017-10-13
|
204597
|
Ports & Packages
|
Individual Port(s)
|
garga
|
Closed
|
FIXED
|
security/strongswan: Update to 5.3.4 [CVE-2015-8023]
|
2015-11-17
|
204551
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
graphics/png: buffer overflows in libpng 1.6.18 (CVE-2015-8126)
|
2015-11-17
|
204500
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
mail/phpmailer: Update to 5.2.14, Take MAINTAINER'ship, Add VuXML entry.
|
2015-12-03
|
204416
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/p5-HTML-Scrubber - missing vuxml entry for CVE-2015-5667
|
2015-11-15
|
204413
|
Ports & Packages
|
Individual Port(s)
|
ehaupt
|
Closed
|
FIXED
|
archivers/unzip multiple vulnerabilities
|
2016-01-05
|
204410
|
Ports & Packages
|
Individual Port(s)
|
brnrd
|
Closed
|
FIXED
|
databases/mariadb55-server: Multiple security vulnerabilities
|
2017-02-01
|
204407
|
Ports & Packages
|
Individual Port(s)
|
madpilot
|
Closed
|
FIXED
|
deskutils/owncloudclient: Missing VUXML entry for CVE-2015-7298
|
2015-11-13
|
204406
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
security/vuxml: Multiple security vulnerabilities in emulators/virtualbox-ose
|
2016-10-12
|
204332
|
Ports & Packages
|
Individual Port(s)
|
gecko
|
Closed
|
FIXED
|
security/nss: update to 3.20.1 (CVE-2015-7181, CVE-2015-7182)
|
2015-11-28
|
204269
|
Ports & Packages
|
Individual Port(s)
|
java
|
Closed
|
FIXED
|
java/openjdk8 - multiple security vulnerabilities
|
2015-12-15
|
204268
|
Ports & Packages
|
Individual Port(s)
|
glewis
|
Closed
|
FIXED
|
java/openjdk7 - multiple security vulnerabilities
|
2016-01-21
|
204237
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
net/librsync: Security Vulnerability (CVE-2014-8242)
|
2016-01-08
|
204235
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
sysutils/polkit 0.113 missing vuxml entries
|
2016-01-08
|
204219
|
Ports & Packages
|
Individual Port(s)
|
amdmi3
|
Closed
|
FIXED
|
www/piwik: update to 2.15.0 (security update)
|
2015-12-02
|
204044
|
Ports & Packages
|
Individual Port(s)
|
mat
|
Closed
|
FIXED
|
[MAINTAINER] net-mgmt/lldpd: Update to 0.7.19, Fixes security vulnerabilities
|
2015-12-02
|
204016
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/joomla31: update to 3.4.5 (multiple security advisories)
|
2015-11-03
|
203995
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
[patch] www/joomla15: Deprecation
|
2015-11-10
|
203977
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
[MAINTAINER] www/drupal7: Update Drupal 7.40 to 7.41 (Fix security vulnerabilities)
|
2015-10-24
|
203914
|
Ports & Packages
|
Individual Port(s)
|
sunpoet
|
Closed
|
Not A Bug
|
www/owncloud: DB password unhashed
|
2021-06-25
|
203912
|
Ports & Packages
|
Individual Port(s)
|
w.schwarzenfeld
|
Closed
|
FIXED
|
www/owncloud: Cleartext Password Logs
|
2018-03-04
|
203671
|
Ports & Packages
|
Individual Port(s)
|
portmgr
|
Closed
|
Feedback Timeou
|
graphics/tiff: security/vuxml: denial of service bug in libtiff (CVE-2015-7313)
|
2016-04-13
|
203667
|
Ports & Packages
|
Individual Port(s)
|
perl
|
Closed
|
FIXED
|
devel/p5-UI-Dialog: patch 1.09 for shell command execution bug (CVE-2008-7315)
|
2015-10-10
|
203541
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
lang/php*: security/vuxml: security update to PHP 5.5.30, 5.6.14
|
2015-10-12
|
203479
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
devel/gdcm: Update to version 2.6.3 (Fixes security vulnerability)
|
2016-02-01
|
203462
|
Ports & Packages
|
Individual Port(s)
|
wg
|
Closed
|
FIXED
|
www/zend-framework1: security/vuxml: update to 1.12.16 (fixed ZF2015-08 SQL injection advisory)
|
2016-01-03
|
203461
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
mail/james: security/vuxml: update to 2.3.2.1 (arbitrary system command execution for servers)
|
2015-10-05
|
203410
|
Ports & Packages
|
Individual Port(s)
|
ashish
|
Closed
|
FIXED
|
multimedia/libvpx: bring more options used by Firefox
|
2015-11-17
|
203401
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/codeigniter: security/vuxml: security update 2.1.4 -> 2.2.4 (multiple vulnerabilities)
|
2021-11-02
|
203394
|
Ports & Packages
|
Ports Framework
|
pfg
|
Closed
|
FIXED
|
[exp-run] Toolchain hardening: Enable stack-protector-all & partial RELRO
|
2016-06-01
|
203255
|
Ports & Packages
|
Individual Port(s)
|
rm
|
Closed
|
FIXED
|
www/plone: security/vuxml: multiple security advisories
|
2016-01-10
|
203186
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/squid: security update 3.1.8 -> 3.1.9
|
2016-02-18
|
203112
|
Ports & Packages
|
Individual Port(s)
|
bofh
|
Closed
|
FIXED
|
emulators/qemu-devel: Multiple security vulnerabilities
|
2016-01-01
|
203110
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
devel/jenkins: CSRF / Code Execution security vulnerability
|
2016-01-06
|
202942
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
deskutils/remind: security update 3.1.13 -> 3.1.15 (fixes CVE-2015-5957 buffer overflow)
|
2015-09-18
|
202941
|
Ports & Packages
|
Individual Port(s)
|
naddy
|
Closed
|
FIXED
|
audio/vorbis-tools: buffer overflow issue with invalid aiff files (CVE-2015-6749)
|
2015-09-11
|
202940
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
sysutils/ganglia-webfrontend: update to 3.7.1 (fix Ganglia-web auth bypass CVE-2015-6816)
|
2015-10-02
|
202906
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
lang/php5 lang/php55 lang/php56: 5.4.45, 5.5.29 5.6.13 released (11 Security Vulnerabilities fixed)
|
2015-09-10
|
202812
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
[MAINTAINER] multimedia/kodi: update to 15.1 (fixes multiple vulnerabilites in internal ffmpeg)
|
2015-09-26
|
202781
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
print/ghostscript7 *: security/vuxml: denial of service (crash) via crafted Postscript files (CVE-2015-3228)
|
2015-09-02
|
202738
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
[MAINTAINER] dns/powerdns: Update to 3.4.6
|
2015-09-02
|
202633
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
lang/go {14}: security/vuxml: multiple vulnerabilties (CVE-2015-5739, CVE-2015-5740, CVE-2015-5741)
|
2015-09-28
|
202571
|
Services
|
Bug Tracker
|
bugmeister
|
Closed
|
FIXED
|
Links like "ports|src|doc rNUMBER" use http instead of https
|
2017-02-18
|
202402
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
emulators/qemu-devel emulators/qemu-sbruno: multiple vulnerabilities (CVE-2015-5154, CVE-2015-5166, CVE-2015-5165)
|
2016-01-03
|
202386
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
security/vuxml: document and MFH lang/php5 {55,56} recent vulnerability fixes
|
2015-08-17
|
202328
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
www/mediawiki123: {124,125} unresolved security vulnerabilities
|
2015-12-24
|
202270
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
multimedia/libvpx: update to 1.4.0.488 (snapshot)
|
2015-08-14
|
202262
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
sysutils/froxlor: database password information leak (CVE-2015-5959)
|
2015-08-20
|
202209
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
devel/pcre: Heap Overflow Vulnerability (CVE TBD)
|
2015-09-23
|
202099
|
Ports & Packages
|
Individual Port(s)
|
zi
|
Closed
|
FIXED
|
net-mgmt/net-snmp: Fix CVE-2015-5621
|
2015-08-10
|
201931
|
Ports & Packages
|
Individual Port(s)
|
bapt
|
Closed
|
FIXED
|
sysutils/xen-tools: multiple vulnerabilities (CVE-2015-5154, CVE-2015-5166, CVE-2015-5165)
|
2015-08-18
|
201908
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
sysutils/ganglia-webfrontend maintainer change: simplify permissions in pkg-plist and fix pkg-message.in
|
2015-07-30
|
201834
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
textproc/elasticsearch: update 1.6.0 -> 1.7.0 (CVE-2015-5377, CVE-2015-5531)
|
2015-08-10
|
201778
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
Not Accepted
|
audio/sox: Multiple memory corruption vulnerabilities in SoX 14.4.2
|
2019-02-15
|
201709
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
[MAINTAINER-UPDATE]: www/magento: Update to 1.9.2.0
|
2016-10-14
|
201702
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
net-mgmt/cacti: Multiple XSS and SQL injection vulnerabilities (CVE-2015-4634)
|
2015-07-22
|
201603
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
[PATCH][UPDATE] security/polarssl: 1.2.13->1.2.14, fixing security issues
|
2015-07-28
|
201513
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
[security] graphics/libwmf - multiple vulnerabilities
|
2015-09-07
|
201374
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
[MAINTAINER] www/squid: Update to 3.5.6
|
2015-07-17
|
201359
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
security/vuxml: document sysutils/ansible CVEs
|
2015-07-06
|
201231
|
Ports & Packages
|
Individual Port(s)
|
ports-secteam
|
Closed
|
FIXED
|
[PATCH] net/turnserver: update to 4.4.5.3 (Fixes security vulnerability)
|
2015-07-07
|
201224
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
FIXED
|
net-p2p/bitcoin: Update to 0.10.2 (fixes security vulnerability)
|
2015-07-06
|
201192
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
[MAINTAINER] games/wesnoth: Update to to 1.12.4
|
2015-07-01
|
201134
|
Ports & Packages
|
Individual Port(s)
|
amdmi3
|
Closed
|
FIXED
|
[MAINTAINER] print/cups-filters: update to 1.0.70
|
2015-07-07
|
201064
|
Ports & Packages
|
Individual Port(s)
|
nox
|
Closed
|
FIXED
|
emulators/qemu: Heap overflow in QEMU PCNET controller, allowing guest->host escape (CVE-2015-3209)
|
2015-06-27
|
201008
|
Ports & Packages
|
Individual Port(s)
|
olgeni
|
Closed
|
FIXED
|
textproc/elasticsearch: update to 1.6.0 (And fix vulnerabilities)
|
2015-06-30
|
200980
|
Ports & Packages
|
Individual Port(s)
|
junovitch
|
Closed
|
FIXED
|
lang/chicken: CVE-2015-4556: out-of-bounds read in CHICKEN Scheme's string-translate* procedure
|
2015-08-02
|
200963
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
[MAINTAINER] net-mgmt/cacti: Update to 0.8.8d, Fix security vulnerabilities
|
2015-06-23
|
200957
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
www/drupal6 [patch][security] Update 6.35_1 to 6.36
|
2015-06-21
|
200956
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
www/drupal7: [patch][security] Update Drupal 7.37_1 to 7.38
|
2015-06-21
|
200888
|
Base System
|
gnu
|
pfg
|
Closed
|
FIXED
|
[patch] libiberty: integer overflow (CVE-2012-3509)
|
2017-12-12
|
200852
|
Ports & Packages
|
Individual Port(s)
|
wg
|
Closed
|
FIXED
|
multimedia/ffmpeg0: Update to 0.7.17
|
2015-08-26
|
200760
|
Ports & Packages
|
Individual Port(s)
|
antoine
|
Closed
|
Not A Bug
|
textproc/kibana: Security vulnerability CVE-2015-4093
|
2015-06-13
|
200759
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
sysutils/logstash: Security vulnerability CVE-2015-4152
|
2015-06-25
|
200758
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
DUPLICATE
|
textproc/elasticsearch: Security vulnerability CVE-2015-4165
|
2015-06-30
|
200661
|
Ports & Packages
|
Individual Port(s)
|
bf
|
Closed
|
FIXED
|
devel/pcre: 8.37 has unresolved vulnerabilities
|
2015-06-10
|
200543
|
Ports & Packages
|
Individual Port(s)
|
lwhsu
|
Closed
|
FIXED
|
www/py-django: CVE-2015-3982 - Fixed session flushing in the cached_db backend
|
2015-06-08
|
200537
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
databases/pgbouncer: Security vulnerability (CVE-2015-4054)
|
2022-10-26
|
200507
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
[security] multimedia/avidemux26 - Multiple vulnerabilities
|
2015-06-01
|
200506
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
[security] multimedia/avidemux2 - Multiple vulnerabilities
|
2015-06-14
|
200504
|
Ports & Packages
|
Individual Port(s)
|
mmoll
|
Closed
|
FIXED
|
www/rubygem-rest-client: Multiple security vulnerabilities (CVE-2015-1820, CVE-2015-3448)
|
2015-06-01
|
200502
|
Ports & Packages
|
Individual Port(s)
|
koobs
|
Closed
|
FIXED
|
net/libzmq4: Update to 4.1.2 (And fix CVE-2014-9721)
|
2015-06-25
|
200431
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
[PATCH] [CVE] lang/php5: Update to 5.4.41, addresses CVE vulnerabilities
|
2015-05-26
|
200172
|
Ports & Packages
|
Individual Port(s)
|
python
|
Closed
|
FIXED
|
sysutils/py-salt: Multiple security vulnerabilities
|
2015-05-25
|
200044
|
Ports & Packages
|
Individual Port(s)
|
xmj
|
Closed
|
FIXED
|
[MAINTAINER] sysutils/py-salt : Update to 2015.5.1
|
2015-05-24
|
199585
|
Ports & Packages
|
Individual Port(s)
|
ale
|
Closed
|
FIXED
|
[PATCH] [SECURITY] lang/php5*: updates to 5.6.8, 5.5.24, 5.4.40
|
2015-05-22
|
199508
|
Ports & Packages
|
Individual Port(s)
|
pi
|
Closed
|
FIXED
|
net/chrony: update to 1.31 to fix multiple security vulnerabilities
|
2015-05-30
|
199507
|
Ports & Packages
|
Individual Port(s)
|
novel
|
Closed
|
FIXED
|
security/libtasn1: Security vulnerability: CVE-2015-2806
|
2015-04-18
|
199483
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
databases/sqlite3: Multiple vulnerabilities corrected in 3.8.9.0
|
2015-05-09
|
199414
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
[MAINTAINER] games/wesnoth: Update to 1.12.2
|
2015-04-17
|
199167
|
Ports & Packages
|
Individual Port(s)
|
christer.edwards
|
Closed
|
Not Accepted
|
sysutils/py-salt: Run master as non root user
|
2017-11-26
|
199162
|
Ports & Packages
|
Individual Port(s)
|
jbeich
|
Closed
|
FIXED
|
[MAINTAINER] devel/dulwich: Update to 0.10.1a (Security Update)
|
2015-04-17
|
198873
|
Ports & Packages
|
Individual Port(s)
|
riggs
|
Closed
|
FIXED
|
multimedia/libav: Multiple security vulnerabilities
|
2015-04-04
|
198818
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
www/dokuwiki: Multiple security vulnerabilities
|
2015-04-13
|
198816
|
Ports & Packages
|
Individual Port(s)
|
brooks
|
Closed
|
FIXED
|
devel/cross-binutils: Multiple security vulnerabilities
|
2015-03-24
|
198815
|
Ports & Packages
|
Individual Port(s)
|
feld
|
Closed
|
Feedback Timeou
|
devel/m6811-binutils: Multiple security vulnerabilities
|
2017-02-18
|
198813
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
devel/psptoolchain-binutils: Multiple security vulnerabilities
|
2022-06-30
|
198809
|
Ports & Packages
|
Individual Port(s)
|
makc
|
Closed
|
FIXED
|
irc/quassel: Generates 1024 bit RSA keys by default, which are a bit dated
|
2015-03-24
|
198508
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
[MAINTAINER] mail/sympa: security update to 6.1.24
|
2015-03-13
|
197546
|
Ports & Packages
|
Individual Port(s)
|
robak
|
Closed
|
FIXED
|
japanese/lynx-current: Add CPE information
|
2015-03-17
|
197004
|
Ports & Packages
|
Individual Port(s)
|
delphij
|
Closed
|
FIXED
|
net/openldap24-server: Unable to generate SSHA256/384/512 hashes using SHA2 overlay
|
2015-05-27
|
196640
|
Ports & Packages
|
Individual Port(s)
|
mm
|
Closed
|
FIXED
|
devel/libevent2: update to 2.0.22 (to fix CVE-2014-6272)
|
2015-01-12
|
196351
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
FIXED
|
net/libutp: backport fix for transmission crash (likely CVE-2012-6129)
|
2015-01-27
|
196146
|
Base System
|
bin
|
delphij
|
Closed
|
FIXED
|
[security] ntpd <= 2.4.7 vulnerable to possible buffer overrun, denial of service, weak cryptography
|
2015-03-12
|
195956
|
Ports & Packages
|
Individual Port(s)
|
jpaetzel
|
Closed
|
FIXED
|
textproc/libyaml: Fix CVE-2014-9130 and Add LICENSE
|
2015-01-13
|
194699
|
Ports & Packages
|
Individual Port(s)
|
ports-bugs
|
Closed
|
Not A Bug
|
no way to disable weak ciphers in mail/imap-uw
|
2021-12-07
|
193871
|
Base System
|
bin
|
bapt
|
Closed
|
FIXED
|
Certificates in /etc/ssl/certs not considered by pkg and fetch
|
2016-02-20
|
186252
|
Base System
|
misc
|
bugs
|
Open
|
---
|
Cannot mount an encrypted swap file in fstab
|
2019-02-20
|
182518
|
Base System
|
conf
|
bugs
|
Open
|
---
|
[login.conf] Better Password Hashes
|
2023-08-18
|
26286
|
Documentation
|
Manual Pages
|
bugs
|
Closed
|
Overcome By Eve
|
*printf(3) etc should gain format string warnings
|
2022-07-22
|