- Keywords: security
This result was limited to 500 bugs. See all search results for this query.
| ID | Product | Component | Assignee | Status | Resolution | Summary | Changed▲ |
|---|---|---|---|---|---|---|---|
| 196640 | Ports & Packages | Individual Port(s) | mm | Closed | FIXED | devel/libevent2: update to 2.0.22 (to fix CVE-2014-6272) | 2015-01-12 |
| 195956 | Ports & Packages | Individual Port(s) | jpaetzel | Closed | FIXED | textproc/libyaml: Fix CVE-2014-9130 and Add LICENSE | 2015-01-13 |
| 196351 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | net/libutp: backport fix for transmission crash (likely CVE-2012-6129) | 2015-01-27 |
| 196146 | Base System | bin | delphij | Closed | FIXED | [security] ntpd <= 2.4.7 vulnerable to possible buffer overrun, denial of service, weak cryptography | 2015-03-12 |
| 198508 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | [MAINTAINER] mail/sympa: security update to 6.1.24 | 2015-03-13 |
| 197546 | Ports & Packages | Individual Port(s) | robak | Closed | FIXED | japanese/lynx-current: Add CPE information | 2015-03-17 |
| 198809 | Ports & Packages | Individual Port(s) | makc | Closed | FIXED | irc/quassel: Generates 1024 bit RSA keys by default, which are a bit dated | 2015-03-24 |
| 198816 | Ports & Packages | Individual Port(s) | brooks | Closed | FIXED | devel/cross-binutils: Multiple security vulnerabilities | 2015-03-24 |
| 198873 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | multimedia/libav: Multiple security vulnerabilities | 2015-04-04 |
| 198818 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | www/dokuwiki: Multiple security vulnerabilities | 2015-04-13 |
| 199414 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | [MAINTAINER] games/wesnoth: Update to 1.12.2 | 2015-04-17 |
| 199162 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | [MAINTAINER] devel/dulwich: Update to 0.10.1a (Security Update) | 2015-04-17 |
| 199507 | Ports & Packages | Individual Port(s) | novel | Closed | FIXED | security/libtasn1: Security vulnerability: CVE-2015-2806 | 2015-04-18 |
| 199483 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | databases/sqlite3: Multiple vulnerabilities corrected in 3.8.9.0 | 2015-05-09 |
| 199585 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | [PATCH] [SECURITY] lang/php5*: updates to 5.6.8, 5.5.24, 5.4.40 | 2015-05-22 |
| 200044 | Ports & Packages | Individual Port(s) | xmj | Closed | FIXED | [MAINTAINER] sysutils/py-salt : Update to 2015.5.1 | 2015-05-24 |
| 200172 | Ports & Packages | Individual Port(s) | python | Closed | FIXED | sysutils/py-salt: Multiple security vulnerabilities | 2015-05-25 |
| 200431 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | [PATCH] [CVE] lang/php5: Update to 5.4.41, addresses CVE vulnerabilities | 2015-05-26 |
| 197004 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | net/openldap24-server: Unable to generate SSHA256/384/512 hashes using SHA2 overlay | 2015-05-27 |
| 199508 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net/chrony: update to 1.31 to fix multiple security vulnerabilities | 2015-05-30 |
| 200504 | Ports & Packages | Individual Port(s) | mmoll | Closed | FIXED | www/rubygem-rest-client: Multiple security vulnerabilities (CVE-2015-1820, CVE-2015-3448) | 2015-06-01 |
| 200507 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | [security] multimedia/avidemux26 - Multiple vulnerabilities | 2015-06-01 |
| 200543 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | www/py-django: CVE-2015-3982 - Fixed session flushing in the cached_db backend | 2015-06-08 |
| 200661 | Ports & Packages | Individual Port(s) | bf | Closed | FIXED | devel/pcre: 8.37 has unresolved vulnerabilities | 2015-06-10 |
| 200760 | Ports & Packages | Individual Port(s) | antoine | Closed | Not A Bug | textproc/kibana: Security vulnerability CVE-2015-4093 | 2015-06-13 |
| 200506 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | [security] multimedia/avidemux2 - Multiple vulnerabilities | 2015-06-14 |
| 200956 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | www/drupal7: [patch][security] Update Drupal 7.37_1 to 7.38 | 2015-06-21 |
| 200957 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | www/drupal6 [patch][security] Update 6.35_1 to 6.36 | 2015-06-21 |
| 200963 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | [MAINTAINER] net-mgmt/cacti: Update to 0.8.8d, Fix security vulnerabilities | 2015-06-23 |
| 200502 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | net/libzmq4: Update to 4.1.2 (And fix CVE-2014-9721) | 2015-06-25 |
| 200759 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | sysutils/logstash: Security vulnerability CVE-2015-4152 | 2015-06-25 |
| 201064 | Ports & Packages | Individual Port(s) | nox | Closed | FIXED | emulators/qemu: Heap overflow in QEMU PCNET controller, allowing guest->host escape (CVE-2015-3209) | 2015-06-27 |
| 200758 | Ports & Packages | Individual Port(s) | delphij | Closed | DUPLICATE | textproc/elasticsearch: Security vulnerability CVE-2015-4165 | 2015-06-30 |
| 201008 | Ports & Packages | Individual Port(s) | olgeni | Closed | FIXED | textproc/elasticsearch: update to 1.6.0 (And fix vulnerabilities) | 2015-06-30 |
| 201192 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | [MAINTAINER] games/wesnoth: Update to to 1.12.4 | 2015-07-01 |
| 201224 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | net-p2p/bitcoin: Update to 0.10.2 (fixes security vulnerability) | 2015-07-06 |
| 201359 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: document sysutils/ansible CVEs | 2015-07-06 |
| 201231 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | [PATCH] net/turnserver: update to 4.4.5.3 (Fixes security vulnerability) | 2015-07-07 |
| 201134 | Ports & Packages | Individual Port(s) | amdmi3 | Closed | FIXED | [MAINTAINER] print/cups-filters: update to 1.0.70 | 2015-07-07 |
| 201374 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | [MAINTAINER] www/squid: Update to 3.5.6 | 2015-07-17 |
| 201702 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | net-mgmt/cacti: Multiple XSS and SQL injection vulnerabilities (CVE-2015-4634) | 2015-07-22 |
| 201603 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | [PATCH][UPDATE] security/polarssl: 1.2.13->1.2.14, fixing security issues | 2015-07-28 |
| 201908 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | sysutils/ganglia-webfrontend maintainer change: simplify permissions in pkg-plist and fix pkg-message.in | 2015-07-30 |
| 200980 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/chicken: CVE-2015-4556: out-of-bounds read in CHICKEN Scheme's string-translate* procedure | 2015-08-02 |
| 202099 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | net-mgmt/net-snmp: Fix CVE-2015-5621 | 2015-08-10 |
| 201834 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | textproc/elasticsearch: update 1.6.0 -> 1.7.0 (CVE-2015-5377, CVE-2015-5531) | 2015-08-10 |
| 202270 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | multimedia/libvpx: update to 1.4.0.488 (snapshot) | 2015-08-14 |
| 202386 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | security/vuxml: document and MFH lang/php5 {55,56} recent vulnerability fixes | 2015-08-17 |
| 201931 | Ports & Packages | Individual Port(s) | bapt | Closed | FIXED | sysutils/xen-tools: multiple vulnerabilities (CVE-2015-5154, CVE-2015-5166, CVE-2015-5165) | 2015-08-18 |
| 202262 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | sysutils/froxlor: database password information leak (CVE-2015-5959) | 2015-08-20 |
| 200852 | Ports & Packages | Individual Port(s) | wg | Closed | FIXED | multimedia/ffmpeg0: Update to 0.7.17 | 2015-08-26 |
| 202781 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | print/ghostscript7 *: security/vuxml: denial of service (crash) via crafted Postscript files (CVE-2015-3228) | 2015-09-02 |
| 202738 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | [MAINTAINER] dns/powerdns: Update to 3.4.6 | 2015-09-02 |
| 201513 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [security] graphics/libwmf - multiple vulnerabilities | 2015-09-07 |
| 202906 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | lang/php5 lang/php55 lang/php56: 5.4.45, 5.5.29 5.6.13 released (11 Security Vulnerabilities fixed) | 2015-09-10 |
| 202941 | Ports & Packages | Individual Port(s) | naddy | Closed | FIXED | audio/vorbis-tools: buffer overflow issue with invalid aiff files (CVE-2015-6749) | 2015-09-11 |
| 202942 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | deskutils/remind: security update 3.1.13 -> 3.1.15 (fixes CVE-2015-5957 buffer overflow) | 2015-09-18 |
| 202209 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | devel/pcre: Heap Overflow Vulnerability (CVE TBD) | 2015-09-23 |
| 202812 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [MAINTAINER] multimedia/kodi: update to 15.1 (fixes multiple vulnerabilites in internal ffmpeg) | 2015-09-26 |
| 202633 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/go {14}: security/vuxml: multiple vulnerabilties (CVE-2015-5739, CVE-2015-5740, CVE-2015-5741) | 2015-09-28 |
| 202940 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | sysutils/ganglia-webfrontend: update to 3.7.1 (fix Ganglia-web auth bypass CVE-2015-6816) | 2015-10-02 |
| 203461 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | mail/james: security/vuxml: update to 2.3.2.1 (arbitrary system command execution for servers) | 2015-10-05 |
| 203667 | Ports & Packages | Individual Port(s) | perl | Closed | FIXED | devel/p5-UI-Dialog: patch 1.09 for shell command execution bug (CVE-2008-7315) | 2015-10-10 |
| 203541 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php*: security/vuxml: security update to PHP 5.5.30, 5.6.14 | 2015-10-12 |
| 203977 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [MAINTAINER] www/drupal7: Update Drupal 7.40 to 7.41 (Fix security vulnerabilities) | 2015-10-24 |
| 204016 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/joomla31: update to 3.4.5 (multiple security advisories) | 2015-11-03 |
| 203995 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [patch] www/joomla15: Deprecation | 2015-11-10 |
| 204407 | Ports & Packages | Individual Port(s) | madpilot | Closed | FIXED | deskutils/owncloudclient: Missing VUXML entry for CVE-2015-7298 | 2015-11-13 |
| 204416 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/p5-HTML-Scrubber - missing vuxml entry for CVE-2015-5667 | 2015-11-15 |
| 203410 | Ports & Packages | Individual Port(s) | ashish | Closed | FIXED | multimedia/libvpx: bring more options used by Firefox | 2015-11-17 |
| 204597 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | security/strongswan: Update to 5.3.4 [CVE-2015-8023] | 2015-11-17 |
| 204551 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | graphics/png: buffer overflows in libpng 1.6.18 (CVE-2015-8126) | 2015-11-17 |
| 204670 | Ports & Packages | Individual Port(s) | vanilla | Closed | FIXED | www/twiki: Patch patch-cve-2014-7236 failed to apply cleanly. | 2015-11-19 |
| 204332 | Ports & Packages | Individual Port(s) | gecko | Closed | FIXED | security/nss: update to 3.20.1 (CVE-2015-7181, CVE-2015-7182) | 2015-11-28 |
| 204044 | Ports & Packages | Individual Port(s) | mat | Closed | FIXED | [MAINTAINER] net-mgmt/lldpd: Update to 0.7.19, Fixes security vulnerabilities | 2015-12-02 |
| 204219 | Ports & Packages | Individual Port(s) | amdmi3 | Closed | FIXED | www/piwik: update to 2.15.0 (security update) | 2015-12-02 |
| 204500 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | mail/phpmailer: Update to 5.2.14, Take MAINTAINER'ship, Add VuXML entry. | 2015-12-03 |
| 205007 | Ports & Packages | Individual Port(s) | dinoex | Closed | FIXED | security/openssl: Multiple Security Vulnerabilities (Update to 1.0.2e) | 2015-12-05 |
| 205008 | Base System | misc | security-officer | Closed | FIXED | OpenSSL: Multiple Security Vulnerabilities (Update to 1.0.2e) | 2015-12-05 |
| 205009 | Services | Security Team | secteam | Closed | FIXED | [META] Track Base & Ports Updates for OpenSSL Security Advisory [3 Dec 2015] | 2015-12-05 |
| 205104 | Ports & Packages | Individual Port(s) | osa | Closed | FIXED | www/rubygem-passenger: update to 5.0.22 (CVE-2015-7519) | 2015-12-09 |
| 205159 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb100-server: Not updated in 2015Q4 | 2015-12-09 |
| 205110 | Ports & Packages | Individual Port(s) | mmoll | Closed | FIXED | www/redmine: multiple vulnerabilities | 2015-12-11 |
| 204269 | Ports & Packages | Individual Port(s) | java | Closed | FIXED | java/openjdk8 - multiple security vulnerabilities | 2015-12-15 |
| 205105 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/keepassx: address information disclosure vulnerability (CVE-2015-8378) | 2015-12-23 |
| 205502 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | graphics/librsvg2: update 2.40.10 -> 2.40.12 | 2015-12-23 |
| 202328 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/mediawiki123: {124,125} unresolved security vulnerabilities | 2015-12-24 |
| 203112 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | emulators/qemu-devel: Multiple security vulnerabilities | 2016-01-01 |
| 205779 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Update to 1.1.4 | 2016-01-02 |
| 202402 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | emulators/qemu-devel emulators/qemu-sbruno: multiple vulnerabilities (CVE-2015-5154, CVE-2015-5166, CVE-2015-5165) | 2016-01-03 |
| 203462 | Ports & Packages | Individual Port(s) | wg | Closed | FIXED | www/zend-framework1: security/vuxml: update to 1.12.16 (fixed ZF2015-08 SQL injection advisory) | 2016-01-03 |
| 205670 | Ports & Packages | Individual Port(s) | makc | Closed | Overcome By Eve | irc/quassel: Vulnerable version in 2015Q4 branch. | 2016-01-04 |
| 204413 | Ports & Packages | Individual Port(s) | ehaupt | Closed | FIXED | archivers/unzip multiple vulnerabilities | 2016-01-05 |
| 205923 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | graphics/tiff: Add patches for CVE-2015-8665, CVE-2015-8683 and other vulnerabilities | 2016-01-05 |
| 205920 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | net-mgmt/cacti: Add patch for CVE-2015-8369 | 2016-01-06 |
| 203110 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | devel/jenkins: CSRF / Code Execution security vulnerability | 2016-01-06 |
| 206015 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | net/dhcpcd: Update to 6.10.0 (Fixes security vulnerabilities) | 2016-01-08 |
| 204237 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | net/librsync: Security Vulnerability (CVE-2014-8242) | 2016-01-08 |
| 204235 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | sysutils/polkit 0.113 missing vuxml entries | 2016-01-08 |
| 203255 | Ports & Packages | Individual Port(s) | rm | Closed | FIXED | www/plone: security/vuxml: multiple security advisories | 2016-01-10 |
| 206129 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | lang/php55 lang/php56: Update to latest versions (5.5.31, 5.6.17) - Fixes Security Vulnerabilities | 2016-01-11 |
| 206157 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | devel/p5-PathTools: Update to 3.62 | 2016-01-13 |
| 206282 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | multimedia/ffmpeg zero-day vulnerability HLS | 2016-01-17 |
| 206072 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | textproc/py-pygments: Add patch for CVE-2015-8557 | 2016-01-17 |
| 206193 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | www/h2o: Update to 1.6.2, Add security/vuxml entry | 2016-01-19 |
| 206417 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | devel/cgit: Update to 0.12 (Security fixes) | 2016-01-21 |
| 204268 | Ports & Packages | Individual Port(s) | glewis | Closed | FIXED | java/openjdk7 - multiple security vulnerabilities | 2016-01-21 |
| 206372 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/imlib2: Update to 1.4.7 | 2016-01-22 |
| 206584 | Base System | kern | bugs | Closed | Works As Intend | Possible integer overflow in update_intel | 2016-01-24 |
| 206551 | Base System | kern | bugs | Closed | Not A Bug | Heap overflow in iconv kernel module | 2016-01-24 |
| 206579 | Base System | kern | bugs | Closed | Not A Bug | amr(4): Multiple vulnerabilities in AMR ioctl handler | 2016-01-25 |
| 206504 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | [MAINTAINER] www/privoxy: Update to 3.0.24 stable | 2016-01-26 |
| 206150 | Ports & Packages | Individual Port(s) | lx | Closed | FIXED | net-im/prosody: Update to 0.9.9 | 2016-01-26 |
| 206610 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | security/libressl: Identify whether affected by OpenSSL vulnerability | 2016-01-29 |
| 206608 | Ports & Packages | Individual Port(s) | dinoex | Closed | FIXED | security/openssl: Update to 1.0.2f (Fixes security vulnerability) | 2016-01-29 |
| 206724 | Ports & Packages | Individual Port(s) | kevlo | Closed | FIXED | www/owncloud - missing multiple vuxml entries | 2016-01-29 |
| 206727 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/nghttp2: Missing VuXML entry (CVE-2015-8659) | 2016-01-29 |
| 206723 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | www/typo3 & typo3-lts missing vuxml entries | 2016-01-29 |
| 206698 | Ports & Packages | Individual Port(s) | osa | Closed | FIXED | www/nginx www/nginx-devel: Update to security releases 1.8.1 & 1.9.10 respectively | 2016-01-30 |
| 203479 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | devel/gdcm: Update to version 2.6.3 (Fixes security vulnerability) | 2016-02-01 |
| 206590 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | security/vuxml: Add entry for devel/gdcm - CVE-2015-8397 & CVE-2015-8396 | 2016-02-01 |
| 204965 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Update for net-mgmt/lldpd entry (2a4a112a-7c1b-11e5-bd77-0800275369e2) | 2016-02-02 |
| 206756 | Ports & Packages | Individual Port(s) | zeising | Closed | FIXED | ftp/curl: Update to 7.47.0 (Fixes CVE-2016-0755) | 2016-02-03 |
| 206746 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | security/py-rsa: Update to 3.3 (Fixes CVE-2016-1494) | 2016-02-04 |
| 206906 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | sysutils/py-salt: Update to 2015.8.5 (Fixes CVE-2016-1866) | 2016-02-05 |
| 207054 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | graphics/py-imaging: Backport 2 Pillow security fixes. | 2016-02-11 |
| 207053 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | graphics/py-pillow: Backport security fixes from 3.1.1. | 2016-02-13 |
| 206707 | Ports & Packages | Individual Port(s) | lx | Closed | FIXED | net-im/prosody: Update to 0.9.10 | 2016-02-14 |
| 207207 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | www/firefox: update to 44.0.2 | 2016-02-15 |
| 203186 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid: security update 3.1.8 -> 3.1.9 | 2016-02-18 |
| 193871 | Base System | bin | bapt | Closed | FIXED | Certificates in /etc/ssl/certs not considered by pkg and fetch | 2016-02-20 |
| 207003 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net/libsrtp: Update to 1.5.4 (Fixes security vulnerability CVE-2015-6360) | 2016-02-21 |
| 207334 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/bsh: Update to version 2.0b6 (Fixes security vulnerability, CVE-2016-2510) | 2016-02-21 |
| 206905 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | russian/wordpress: Update to 4.4.2 | 2016-02-23 |
| 207304 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | lang/go: Merge 406071 (security vulnerability fix) to quarterly branch 2016Q1 | 2016-02-24 |
| 207294 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid: update to 3.5.14 (CVE-2016-2390/SQUID-2016:1) | 2016-02-25 |
| 207498 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/drupal7: Update 7.42 to 7.43 (Security Release) | 2016-02-26 |
| 206808 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | net/samba36: security/vuxml: ineffective vuxml entry | 2016-02-27 |
| 207454 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid: update to 3.5.15 | 2016-02-28 |
| 207174 | Ports & Packages | Individual Port(s) | danilo | Closed | FIXED | misc/xdelta3: update to 3.0.11 (address CVE-2014-9765 in < 3.0.9) | 2016-03-02 |
| 207444 | Ports & Packages | Individual Port(s) | skreuzer | Closed | FIXED | net-mgmt/cacti: upgrade to 0.8.8g | 2016-03-02 |
| 207740 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | devel/websvn: Add patches for CVE-2013-6892 and CVE-2016-2511 | 2016-03-06 |
| 207686 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | graphics/graphite2: update to 1.3.6 | 2016-03-08 |
| 207001 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | graphics/jpgraph2 - CVE-2009-4422 | 2016-03-14 |
| 208074 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | devel/git - CVE-2016-2315 & CVE-2016-2324 | 2016-03-18 |
| 208463 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | www/squid: update to 3.5.16 | 2016-04-03 |
| 207187 | Ports & Packages | Individual Port(s) | horde | Closed | Overcome By Eve | www/horde-base & devel/pear-Horde_Core: XSS vulnerabilites in 2016Q1 version | 2016-04-03 |
| 208260 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | devel/pcre - CVE-2016-1283 | 2016-04-03 |
| 208465 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/php56: Update to 5.6.20 | 2016-04-03 |
| 208476 | Ports & Packages | Individual Port(s) | royger | Closed | Not A Bug | emulators/xen {-tools/-kernel}: security advisories (XSA-172) | 2016-04-04 |
| 206761 | Base System | kern | bugs | Closed | FIXED | Kernel stack overflow in sysctl handler for kern.binmisc.add | 2016-04-05 |
| 203671 | Ports & Packages | Individual Port(s) | portmgr | Closed | Feedback Timeou | graphics/tiff: security/vuxml: denial of service bug in libtiff (CVE-2015-7313) | 2016-04-13 |
| 206607 | Services | Security Team | koobs | Closed | Not A Bug | Forthcoming OpenSSL Security Releases (1.0.2f, 1.0.1r.) | 2016-04-17 |
| 208840 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | net/dhcpcd: Add VuXML entry for CVE-2014-7912 and CVE-2014-7913 | 2016-04-17 |
| 208482 | Ports & Packages | Individual Port(s) | marino | Closed | FIXED | security/wpa_supplicant: several upstream security advisories (CVE-2015-{5310,5315,5316}) | 2016-04-19 |
| 207934 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | Update textproc/apache-poi to version 3.14 | 2016-04-24 |
| 209145 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/php56: Update to 5.6.21 | 2016-05-03 |
| 209225 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | [security] www/gitlab: Update to 8.7.1 | 2016-05-03 |
| 206573 | Base System | misc | bugs | Closed | FIXED | Improper userland pointer handling in aacraid | 2016-05-06 |
| 206998 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | databases/mysql57-{server,client}: Update to 5.7.12 | 2016-05-07 |
| 209241 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | graphics/ImageMagick: Add VuXML entry to report vulnerability for CVE-2016-3714 | 2016-05-07 |
| 209318 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb100-server: Update to 10.0.25 | 2016-05-07 |
| 209344 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql56-server: 2016Q2 branch still unpatched | 2016-05-10 |
| 209219 | Ports & Packages | Individual Port(s) | vanilla | Closed | FIXED | devel/jansson: denial of service vulnerability (CVE-2016-4425) | 2016-05-20 |
| 209409 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | chinese/wordpress-zh_CN: update 4.4.2 -> 4.5.2 (security) | 2016-05-20 |
| 208280 | Base System | conf | re | Closed | FIXED | release/scripts/pkg-stage.sh: Rip out Fedora 10. | 2016-05-27 |
| 209779 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php55 lang/php56: Update to latest versions (5.5.36, 5.6.22) fixes security vulnerabilities | 2016-05-28 |
| 209142 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: multiple vulnerabilities | 2016-05-28 |
| 209022 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net-mgmt/cacti: No vuxml entry for CVE-2016-3659 | 2016-05-29 |
| 203394 | Ports & Packages | Ports Framework | pfg | Closed | FIXED | [exp-run] Toolchain hardening: Enable stack-protector-all & partial RELRO | 2016-06-01 |
| 209534 | Ports & Packages | Individual Port(s) | bjk | Closed | FIXED | net/openafs - multiple vulnerabilities | 2016-06-05 |
| 209809 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net-mgmt/cacti: upgrade to 0.8.8h - fix sql vulns | 2016-06-06 |
| 206404 | Ports & Packages | Individual Port(s) | ale | Closed | Overcome By Eve | security issue in mail/roundcube <1.1.4 | 2016-06-10 |
| 209841 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: 1.1.5 vulnerable to CVE-2016-5103 | 2016-06-10 |
| 210324 | Ports & Packages | Individual Port(s) | rm | Closed | FIXED | security/vuxml, lang/python*: Security vulnerability -- Heap overflow in zipimporter module (CVE-2016-5636) | 2016-06-17 |
| 209592 | Ports & Packages | Individual Port(s) | emulation | Closed | FIXED | www/linux-c6-flashplugin11 / linux-f10-flashplugin11 - CVE-2016-4117 | 2016-06-19 |
| 210325 | Ports & Packages | Individual Port(s) | rm | Closed | FIXED | lang/python35, lang/python34, lang/python33, lang/python27: Backport patches for CVE-2016-5636 | 2016-06-19 |
| 210298 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | textproc/libxslt: Update to 1.1.29 | 2016-06-20 |
| 210420 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security Vulnerability in wget (CVE-2016-4971) | 2016-06-21 |
| 210493 | Ports & Packages | Individual Port(s) | glewis | Closed | FIXED | archivers/libarchive: update to 3.2.1 | 2016-06-23 |
| 210421 | Ports & Packages | Individual Port(s) | vd | Closed | FIXED | ftp/wget: Update to 1.18 (Fixes CVE-2016-4971) | 2016-06-24 |
| 210512 | Ports & Packages | Individual Port(s) | vd | Closed | FIXED | ftp/wget: bump to 1.18 in 2016Q2 (CVE-2016-4971) | 2016-06-24 |
| 210458 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | www/piwik: Update to 2.16.1 (security update) | 2016-06-25 |
| 210502 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php56 PHP 5.6.23 released (fixing "several security bugs") | 2016-06-25 |
| 210491 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | lang/php70: Update to 7.0.8 (Security fixes) | 2016-06-25 |
| 209669 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | [PATCHE] www/tomcat7 and www/tomcat-native upgrade | 2016-06-26 |
| 210550 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: CVE-2016-2177 missing for security/openssl | 2016-07-01 |
| 210751 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security vulnerability in SQLite3 (CVE-2016-6153) | 2016-07-03 |
| 207173 | Ports & Packages | Individual Port(s) | demon | Closed | FIXED | devel/hive: Apache Hive authorization bug disclosure in 1.2.1 (CVE-2015-7521) | 2016-07-03 |
| 208404 | Ports & Packages | Individual Port(s) | kevlo | Closed | FIXED | [patch] net/openvswitch CVE-2016-2074 | 2016-07-03 |
| 210541 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security vulnerability in python33 (CVE-2016-5699) | 2016-07-04 |
| 209218 | Ports & Packages | Individual Port(s) | makc | Closed | FIXED | irc/quassel: update to 0.12.4 (CVE-2016-4414) | 2016-07-07 |
| 210749 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 45.2.0 | 2016-07-09 |
| 211009 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba43: version 4.3.11 released, security fix (CVE-2016-2119) | 2016-07-13 |
| 211008 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba42: version 4.2.14 released, security fix (CVE-2016-2119) | 2016-07-13 |
| 211006 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba44: version 4.4.5 released, security fix (CVE-2016-2119) | 2016-07-13 |
| 211114 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | archivers/p7zip: update to 15.14.1 (Fixes security vulnerabilities) | 2016-07-15 |
| 210317 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/drupal7: Update to 7.44 (Security fixes) | 2016-07-16 |
| 206592 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | security/vuxml: Missing vuxml entry for security/sudo (CVE-2015-5602) | 2016-07-16 |
| 210871 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | www/typo3-lts: Update to 6.2.25 | 2016-07-19 |
| 210870 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | www/typo3: Update to 7.6.9 | 2016-07-19 |
| 211206 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | www/nextcloud: Update to 9.0.53 (Fixes security vulnerability: https://httpoxy.org/#cve) | 2016-07-26 |
| 211290 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php56: Update to 5.6.24 | 2016-07-26 |
| 211023 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | textproc/xerces-c3 - Multiple Vulnerabilities | 2016-07-26 |
| 211251 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php70: Update to 7.0.9 (multiple security fixes) | 2016-07-27 |
| 211113 | Ports & Packages | Individual Port(s) | portmgr | Closed | FIXED | graphics/tiff: Backport fixes for CVE-2016-5875, CVE-2016-3186 | 2016-07-27 |
| 211124 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | graphics/gimp: update to 2.8.18 | 2016-07-29 |
| 211407 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | dns/libidn: update 1.31 -> 1.33 | 2016-08-01 |
| 211482 | Ports & Packages | Individual Port(s) | royger | Closed | FIXED | emulators/xen {-tools/-kernel}: security advisories (XSA-182,183,184) | 2016-08-02 |
| 211575 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | ftp/curl: Update to 7.50.1 (Fixes 3 Security Vulnerabilities), security/vuxml: Add entry | 2016-08-04 |
| 211405 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | graphics/tiff: Remove gif2tiff (Reporting still vulnerable to CVE-2016-5102) | 2016-08-06 |
| 211274 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb*-server: Multiple vulnerabilities | 2016-08-08 |
| 211693 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | dns/nsd: Update to 4.1.11 (Fixes security vulnerability: Fixes CVE-2016-6173) | 2016-08-10 |
| 211590 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | [MAINTAINER] www/piwik: Update to 2.16.2 (security update) | 2016-08-11 |
| 211795 | Ports & Packages | Individual Port(s) | ehaupt | Closed | FIXED | x11/xterm: add CPE information | 2016-08-13 |
| 211613 | Ports & Packages | Individual Port(s) | brd | Closed | FIXED | net-mgmt/collectd5: Update to 5.5.2 (Fixes security vulnerability: CVE-2016-6254) | 2016-08-14 |
| 211846 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | [Security Advisory] audio/teamspeak3-server: Several vulnerabilities found in Teamspeak3-server | 2016-08-14 |
| 211561 | Ports & Packages | Individual Port(s) | perl | Closed | FIXED | lang/perl5.20, 5.22 & 5.24: Multiple Vulnerabilities | 2016-08-15 |
| 211930 | Ports & Packages | Individual Port(s) | portmgr | Closed | Not Accepted | Mk/bsd.default-versions.mk: Change default Perl version to 5.22 or 5.24 (5.20 End-of-Life) | 2016-08-17 |
| 210581 | Ports & Packages | Individual Port(s) | junovitch | Closed | Overcome By Eve | chinese/wordpress-zh_CN and chinese/wordpress-zh_TW: update 4.5.2 -> 4.5.3 (security) | 2016-08-29 |
| 211911 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | audio/teamspeak3-server: Update to 3.0.13.2 (fixes security vulnerabilities) | 2016-08-30 |
| 212275 | Ports & Packages | Individual Port(s) | bdrewery | Closed | FIXED | security/openssh-portable - missing vuxml entries | 2016-09-01 |
| 208155 | Ports & Packages | Individual Port(s) | garga | Closed | Overcome By Eve | security/clamav: Problem with bundled LLVM | 2016-09-05 |
| 208385 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | security/linux-c6-nss needs updating to resolve vulnerabilities | 2016-09-05 |
| 212378 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | mail/mailman - missing vuxml entry | 2016-09-06 |
| 208462 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | java/jakarta-struts: Security vulnerability: input validation bypass (JVN#86448949/CVE-2015-0899) | 2016-09-10 |
| 212463 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 45.3.0 | 2016-09-10 |
| 205936 | Ports & Packages | Individual Port(s) | johans | Closed | FIXED | security/wolfssl: Update to 3.8.0 (Fixes Security Vulnerability) | 2016-09-12 |
| 212619 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | databases/percona56-server: CVE 2016-6662 | 2016-09-13 |
| 212618 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | databases/percona55-server: CVE 2016-6662 | 2016-09-13 |
| 211892 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | www/h2o: Update to 2.0.4 | 2016-09-14 |
| 212677 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | ftp/curl: Update to 7.50.3 / fix vuln | 2016-09-21 |
| 212888 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | irc/irssi: Multiple vulnerabilities | 2016-09-21 |
| 212889 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in irssi | 2016-09-21 |
| 212615 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb55-server: CVE 2016-6662 | 2016-09-28 |
| 212616 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb100-server: CVE 2016-6662 | 2016-09-28 |
| 212617 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server: CVE 2016-6662 | 2016-09-28 |
| 213033 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | security/vuxml: Security vulnerability in py-django, py-django18 and py-django19 (CVE-2016-7401) | 2016-09-29 |
| 213034 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/py-django18, www/py-django19: Update to 1.8.15 and 1.9.10 respectively | 2016-09-29 |
| 206726 | Ports & Packages | Individual Port(s) | sbruno | Closed | DUPLICATE | emulators/qemu-sbruno: Missing VuXML entry | 2016-10-07 |
| 207574 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Entry for graphics/silgraphite missing or insufficient information (vid 8f10fa04-cf6a-11e5-96d6-14dae9d210b8) | 2016-10-07 |
| 206626 | Base System | kern | emaste | Closed | FIXED | Integer overflow in nfssvc system call | 2016-10-07 |
| 212455 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | ftp/curl: Security Vulnerability: CVE-2016-7141 <= 7.50.2 | 2016-10-09 |
| 211709 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in databases/redis and redis-devel (CVE-2013-7458) | 2016-10-11 |
| 212207 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/mupdf: CVE-2016-6525, CVE-2016-6265 | 2016-10-12 |
| 212379 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in editors/openoffice-4 (CVE-2014-3575) | 2016-10-12 |
| 212380 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in net/libvncserver | 2016-10-12 |
| 213023 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in libgd, php56-gd and php70-gd | 2016-10-12 |
| 213032 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/ImageMagick: Upgrade to 6.9.5-10 (security fixes) | 2016-10-12 |
| 204406 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in emulators/virtualbox-ose | 2016-10-12 |
| 201709 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [MAINTAINER-UPDATE]: www/magento: Update to 1.9.2.0 | 2016-10-14 |
| 213020 | Ports & Packages | Individual Port(s) | dinoex | Closed | FIXED | graphics/gd: Fix integer overflow in gdImageWebpCtx | 2016-10-16 |
| 213546 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Document axis2 vulnerability | 2016-10-18 |
| 213537 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | deskutils/py-khal: Update to 0.7.1 (security fixes) | 2016-10-18 |
| 213495 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | dns/c-ares: Update to 1.12.0 (CVE-2016-5180) | 2016-10-20 |
| 213536 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/axis2: Update to 1.7.3, Security Vulnerability, Take MAINTAINER'ship | 2016-10-20 |
| 213664 | Ports & Packages | Individual Port(s) | koobs | Closed | DUPLICATE | lang/php56: Update to 5.6.27 | 2016-10-21 |
| 213589 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php56 lang/php70: Update to latest versions (5.6.27, 7.0.12) - Fixes Security Vulnerabilities | 2016-10-21 |
| 213698 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | www/linux-c6-flashplugin11: 11.2r202.632 vulnerable, should update to 11.2r202.637 or later | 2016-10-24 |
| 213831 | Ports & Packages | Individual Port(s) | emulation | Closed | FIXED | www/linux-c6-flashplugin11: 11.2r202.637 vulnerable, Update to >= 11.2r202.643 | 2016-10-27 |
| 213603 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/node4: Update to 4.6.1 | 2016-10-28 |
| 213604 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/node: Update to 6.9.1 | 2016-10-28 |
| 213602 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/node012: Update to 0.12.17 | 2016-10-28 |
| 213640 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/openssh-portable: Security vulnerability (CVE-2016-8858) | 2016-10-29 |
| 213792 | Ports & Packages | Individual Port(s) | jhale | Closed | FIXED | www/axis2: Update to 1.7.4, Security Vulnerability | 2016-10-31 |
| 214000 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | ftp/curl: Update to 7.51.0 (Fixes multiple vulnerabilities) | 2016-11-02 |
| 214360 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in rubygem-gitlab (CVE-2016-9086) | 2016-11-09 |
| 212952 | Ports & Packages | Individual Port(s) | rene | Closed | FIXED | security/tor and security/tor-devel: Update to 0.2.8.9 and 0.2.9.4-alpha | 2016-11-15 |
| 214631 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: 45.5.0 (with enigmail 1.9.6.1) | 2016-11-22 |
| 211854 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Overcome By Eve | dns/powerdns*: backport CVE-2016-6172 fix to 3.x series | 2016-11-27 |
| 212612 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | databases/mysql57-server: CVE 2016-6662 | 2016-11-27 |
| 212613 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql56-server: CVE 2016-6662 | 2016-11-27 |
| 212614 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: CVE 2016-6662 | 2016-11-27 |
| 212606 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | databases/mysql*-server, databases/percona*-server: CVE 2016-6662 | 2016-11-27 |
| 214532 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | security/vuxml: Document www/libwww vulnerability | 2016-11-29 |
| 214546 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/libwww: Security vulnerabilities | 2016-11-29 |
| 210539 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | lang/python33: HTTP Header Injection in Python urllib (CVE-2016-5699) | 2016-11-30 |
| 214941 | Ports & Packages | Individual Port(s) | vd | Closed | FIXED | ftp/wget - missing vuxml entry | 2016-11-30 |
| 214951 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | textproc/linux-c6-expat: update to 2.0.1-13.el6_8, security/vuxml: Add entry for CVE-2016-0718 | 2016-12-01 |
| 214940 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | archivers/p7zip: Security vulnerability (CVE-2016-9296) | 2016-12-01 |
| 211099 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | java/jakarta-struts: Vulnerable to CVE-2016-3092 | 2016-12-01 |
| 214978 | Ports & Packages | Individual Port(s) | gecko | Closed | FIXED | www/firefox: update firefox and friends to 50.0.2/45.5.1 | 2016-12-02 |
| 210155 | Ports & Packages | Individual Port(s) | emulation | Closed | FIXED | textproc/expat2 & textproc/linux-*-expat: Expat issues CVE-2012-6702 and CVE-2016-5300 | 2016-12-03 |
| 214936 | Ports & Packages | Individual Port(s) | royger | Closed | FIXED | emulators/xen {-tools/-kernel}: security advisories (XSA-185 - XSA-201) | 2016-12-04 |
| 206725 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security vulnerability in emulators/qemu-devel, emulators/qemu-sbruno | 2016-12-04 |
| 214488 | Base System | kern | kib | Closed | FIXED | mqueuefs mq_setattr() leaks stack memory | 2016-12-04 |
| 214520 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in ImageMagick (CVE-2016-9298) | 2016-12-04 |
| 214410 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in py-pillow (CVE-2016-9189, CVE-2016-9190) | 2016-12-04 |
| 214514 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in ImageMagick7 | 2016-12-04 |
| 214511 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/ImageMagick7: Update to 7.0.3-7 (security fixes) | 2016-12-05 |
| 214517 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/ImageMagick: Update to 6.9.6-4 (security fixes) | 2016-12-05 |
| 215096 | Ports & Packages | Individual Port(s) | apache | Closed | FIXED | www/apache24: Fix HTTP/2 DoS vulnerability | 2016-12-06 |
| 214925 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Update to 1.2.3 (Fixes security vulnerability) | 2016-12-14 |
| 215416 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid: update to 3.5.23 | 2016-12-23 |
| 215418 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid-devel: update to 4.0.17 | 2016-12-23 |
| 213199 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | archivers/file-roller CVE-2016-7162 | 2016-12-28 |
| 215576 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | mail/phpmailer: Update to 5.2.18 | 2017-01-03 |
| 215801 | Ports & Packages | Individual Port(s) | vanilla | Closed | FIXED | security/vuxml: Document security vulnerabilities in Irssi | 2017-01-06 |
| 215733 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 45.6.0 | 2017-01-06 |
| 215800 | Ports & Packages | Individual Port(s) | vanilla | Closed | FIXED | irc/irssi: Update to 0.8.21 (Security fixes) | 2017-01-08 |
| 214938 | Ports & Packages | Individual Port(s) | thierry | Closed | FIXED | science/hdf5-18 - multiple vulnerabilites & missing vuxml entry | 2017-01-09 |
| 214915 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/py-cryptography: Update to 1.6 (security fixes) | 2017-01-09 |
| 215464 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/lynx - multiple vulnerabilites | 2017-01-09 |
| 215085 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | devel/libdwarf: Update to 20161124 (Fixes many security vulnerabilities) | 2017-01-09 |
| 215805 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Document security vulnerabilities in libvncserver | 2017-01-09 |
| 215615 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/py-pillow: Update to 3.4.2 (security fixes) | 2017-01-09 |
| 214412 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | graphics/py-pillow: Multiple vulnerabilities (CVE-2016-9189, CVE-2016-9190) | 2017-01-09 |
| 215822 | Ports & Packages | Individual Port(s) | nobutaka | Closed | FIXED | www/w3m: Update request (has known security vulnerabilities) | 2017-01-09 |
| 215909 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | [exp-run] security/gnutls: Update to 3.5.8 | 2017-01-12 |
| 216059 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/wordpress chinese/wordpress-zh_CN chinese/wordpress-zh_TW japanese/wordpress german/wordpress russian/wordpress: Update to 4.7.1 | 2017-01-15 |
| 206678 | Base System | kern | lifanov | Closed | FIXED | OGIO_KEYMAP command does not restore priority level | 2017-01-17 |
| 216136 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | dns/powerdns: Upgrade to recent version (v4.0.2) - current(4.0.1) has critical vulnerabilities | 2017-01-18 |
| 216135 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | dns/powerdns-recursor: Upgrade to recent version (v4.0.4) - current(4.0.3) is vulnerable | 2017-01-18 |
| 212305 | Base System | bin | emaste | Closed | FIXED | Security: possible to edit crontab of other user | 2017-01-19 |
| 215802 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | net/libvncserver: Update to 0.9.11 (Security fixes) | 2017-01-22 |
| 216540 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/wordpress chinese/wordpress-zh_CN chinese/wordpress-zh_TW japanese/wordpress german/wordpress: Update to 4.7.2 | 2017-01-30 |
| 216515 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | russian/wordpress: Update to 4.7.2 | 2017-01-30 |
| 204410 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb55-server: Multiple security vulnerabilities | 2017-02-01 |
| 216664 | Ports & Packages | Individual Port(s) | feld | Closed | Overcome By Eve | lang/php70 - CVE-2017-5340 | 2017-02-04 |
| 216659 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | textproc/libebml - missing vuxml entries | 2017-02-04 |
| 216663 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | lang/guile2 - CVE-2016-8605 & CVE-2016-8606 | 2017-02-04 |
| 216662 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | databases/mantis - CVE-2016-6837 | 2017-02-04 |
| 216666 | Ports & Packages | Individual Port(s) | bsd | Closed | Not A Bug | multimedia/zoneminder - CVE-2016-10140 | 2017-02-06 |
| 215989 | Ports & Packages | Individual Port(s) | rm | Closed | FIXED | shells/lshell: Update to 0.9.18, take MAINTAINER'ship | 2017-02-06 |
| 215271 | Ports & Packages | Individual Port(s) | cpm | Closed | FIXED | www/chromium: maybe use system ffmpeg | 2017-02-06 |
| 207494 | Ports & Packages | Individual Port(s) | wen | Closed | Overcome By Eve | www/typo3: Update to 7.6.4 | 2017-02-15 |
| 216952 | Ports & Packages | Individual Port(s) | madpilot | Closed | FIXED | graphics/optipng: update to 0.7.6 | 2017-02-16 |
| 198815 | Ports & Packages | Individual Port(s) | feld | Closed | Feedback Timeou | devel/m6811-binutils: Multiple security vulnerabilities | 2017-02-18 |
| 202571 | Services | Bug Tracker | bugmeister | Closed | FIXED | Links like "ports|src|doc rNUMBER" use http instead of https | 2017-02-18 |
| 216584 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 45.7.1 | 2017-03-03 |
| 216665 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/ikiwiki - multiple vulnerabilities | 2017-03-05 |
| 216661 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/chicken - multiple vulnerabilities | 2017-03-05 |
| 215865 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | www/tomcat8 {tomcat7,tomcat6}: update to 8.0.40, 7.0.74, 6.0.49 | 2017-03-18 |
| 217878 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | irc/irssi: Update to 1.0.2 | 2017-03-22 |
| 215481 | Ports & Packages | Individual Port(s) | robak | Closed | FIXED | textproc/apache-poi update to version 3.15 | 2017-03-28 |
| 217993 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba44: Fails to build with new Uses/samba.mk. Update fixes CVE-2017-2619 | 2017-03-31 |
| 215651 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | devel/py-Jinja2: Update to 2.8.2 | 2017-04-04 |
| 211248 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | databases/mysql55-server, databases/mysql56-server, databases/mysql57-server: Multiple CVE | 2017-04-25 |
| 218934 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Quarterly (2017Q2) branch version vulnerable | 2017-04-29 |
| 218671 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | security/vuxml: Document dovecot2 vulnerability | 2017-04-30 |
| 219006 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 52.1.0 | 2017-05-02 |
| 219271 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | [exp-run] print/freetype2 update to 2.8 | 2017-05-21 |
| 219045 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server: Upgrade to latest version(v10.1.23) - current(v10.1.22) has critical vulnerabilities | 2017-05-30 |
| 219527 | Base System | misc | delphij | Closed | FIXED | Flawed umask handling in /etc/rc.d/random | 2017-05-31 |
| 219662 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | net/freeradius{2,3}: Update to 3.0.14 (CVE-2017-9148 FreeRADIUS TLS resumption authentication bypass) | 2017-06-01 |
| 219783 | Ports & Packages | Individual Port(s) | bofh | Closed | Overcome By Eve | graphics/tiffgt is vulnerable, possibly duplicate | 2017-06-06 |
| 219827 | Ports & Packages | Individual Port(s) | vlad-fbsd | Closed | FIXED | irc/irssi: Update to 1.0.3 (security fixes) | 2017-06-08 |
| 214952 | Ports & Packages | Individual Port(s) | portmgr | Closed | Not Enough Info | graphics/tiff - CVE-2016-8331 | 2017-06-09 |
| 216660 | Ports & Packages | Individual Port(s) | feld | Closed | Overcome By Eve | graphics/png - CVE-2016-10087 | 2017-06-09 |
| 216658 | Ports & Packages | Individual Port(s) | feld | Closed | Overcome By Eve | security/vuxml: graphics/tiff < 4.0.7 has multiple vulnerabilities (2016Q4 or older) | 2017-06-09 |
| 216654 | Ports & Packages | Individual Port(s) | feld | Closed | Not Enough Info | lang/php70-gd & lang/php56-gd - CVE-2016-8670 | 2017-06-09 |
| 219789 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | mail/roundcube: Update to 1.2.5 (security fix) | 2017-06-09 |
| 220031 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/rt44: Add security patches from BestPractical | 2017-06-17 |
| 220134 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/p5-Crypt-OpenSSL-CA: adding functionality for parse existing CRL | 2017-06-19 |
| 220544 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | irc/irssi: Update to 1.0.4 (security fixes) | 2017-07-08 |
| 220664 | Ports & Packages | Individual Port(s) | osa | Closed | FIXED | www/nginx www/nginx-devel: Update to latest versions (fixing CVE-2017-7529) | 2017-07-12 |
| 220160 | Ports & Packages | Individual Port(s) | apache | Closed | FIXED | www/apache24: Update to 2.4.26 (addresses multiple CVE reports) | 2017-07-14 |
| 220742 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-mgmt/cacti: Update to 1.1.13 (Fixes security vulnerability) | 2017-07-17 |
| 220797 | Ports & Packages | Individual Port(s) | olivier | Closed | FIXED | net-mgmt/collectd5: update to 5.7.2 (Fixes security vulnerability) | 2017-07-23 |
| 220823 | Ports & Packages | Individual Port(s) | olivier | Closed | FIXED | security/strongswan: Update to 5.5.3 (Fixes security vulnerabilities) | 2017-07-23 |
| 220435 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | www/smarty3: Update to 3.1.31 | 2017-07-24 |
| 220977 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | devel/gsoap: Update to 2.8.50 (Fixes security vulnerability: CVE-2017-9765) | 2017-07-25 |
| 219864 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/tor-devel: Update to 0.3.1.3-alpha | 2017-07-25 |
| 219863 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/tor: Update to 0.3.0.8 (Security fixes) | 2017-07-25 |
| 221014 | Ports & Packages | Individual Port(s) | mm | Closed | FIXED | net-im/jabberd: Update to 2.6.1 (Fixes security vulnerability: CVE-2017-10807) | 2017-07-27 |
| 220849 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | databases/mysql55-server databases/mysql56-server databases/mysql57-server security/vuxml: Update to latest (Fixes security vulnerabilities) | 2017-08-07 |
| 221128 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Needs to be updated to 5.5.57 | 2017-08-07 |
| 221362 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | ftp/curl: Security update to 7.55.0 | 2017-08-10 |
| 220713 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document security vulnerability in evince and atril (CVE-2017-1000083) | 2017-08-22 |
| 220608 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | graphics/poppler: Update to >= 0.56.0, Multiple security (CVE) vulnerabilities | 2017-08-24 |
| 219801 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | mail/squirrelmail, mail/squirrelmail-translations: Update to 20170705 (Also fixes CVE-2017-7692) | 2017-08-25 |
| 220869 | Ports & Packages | Individual Port(s) | woodsb02 | Closed | FIXED | sysutils/py-salt : Update to 2017.7.1 | 2017-08-26 |
| 221417 | Base System | bin | bugs | Closed | FIXED | pw usermod silently ignores -G "" | 2017-09-08 |
| 221539 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | sysutils/py-supervisor: Update to 3.3.3, Fixes security vulnerability | 2017-09-19 |
| 222621 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security Vulnerability in ImageMagick (CVE-2017-14741) | 2017-09-27 |
| 222622 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | graphics/ImageMagick7: Please MFH r450491 (contains a security vulnerability fix) | 2017-09-27 |
| 222683 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Please use correct ISO date format | 2017-09-29 |
| 222739 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | dns/dnsmasq: Security update to 2.78 | 2017-10-02 |
| 220586 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | textproc/jq: Dependency update: devel/oniguruma5 -> devel/oniguruma6 | 2017-10-08 |
| 220438 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | devel/oniguruma6: Update to 6.4.0 | 2017-10-09 |
| 222952 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document vulnerability in nss (CVE-2017-7805) | 2017-10-12 |
| 222957 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in FFmpeg < 3.3.4 | 2017-10-13 |
| 204643 | Base System | kern | kp | Closed | FIXED | [msdosfs] [panic] Crash while accessing files with large, non-english names | 2017-10-13 |
| 222398 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python27: Update to 2.7.14 | 2017-10-14 |
| 223051 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document vulnerability in wpa_supplicant and hostapd | 2017-10-16 |
| 221747 | Ports & Packages | Individual Port(s) | lev | Closed | Overcome By Eve | devel/subversion: 1.9.7 should be MFH to quarterly | 2017-10-17 |
| 223107 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | net-mgmt/cacti: Update to 1.1.26 [security] | 2017-10-19 |
| 219514 | Ports & Packages | Individual Port(s) | timur | Closed | Overcome By Eve | net/samba{35+}: Security vulnerability: CVE-2017-7494 (RCE) | 2017-10-30 |
| 223482 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server - invalid vuxml entry | 2017-11-07 |
| 223583 | Ports & Packages | Individual Port(s) | girgen | Closed | FIXED | databases/postgresql{92,93,94,95,96,10}-server: Please merge to 2017Q4, (security) update from r453847 | 2017-11-10 |
| 223557 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | security/vuxml: Document vulnerability in roundcube (CVE-2017-16651) | 2017-11-11 |
| 223547 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Update to 1.3.3, fixes security vulnerability (CVE-2017-16651) | 2017-11-11 |
| 220818 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | devel/oniguruma5: Fix multiple vulnerabilities in 5.9.6_p1 | 2017-11-26 |
| 220809 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php56: Change from oniguruma5 to oniguruma6 | 2017-11-26 |
| 199167 | Ports & Packages | Individual Port(s) | christer.edwards | Closed | Not Accepted | sysutils/py-salt: Run master as non root user | 2017-11-26 |
| 223577 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | net/wireshark: update to 2.4.2 | 2017-11-27 |
| 223756 | Ports & Packages | Individual Port(s) | pizzamig | Closed | FIXED | net-mgmt/cacti: Update to 1.1.28 [security] | 2017-11-27 |
| 223962 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in ftp/curl | 2017-12-05 |
| 200888 | Base System | gnu | pfg | Closed | FIXED | [patch] libiberty: integer overflow (CVE-2012-3509) | 2017-12-12 |
| 224221 | Ports & Packages | Individual Port(s) | marcus | Closed | Overcome By Eve | net/wireshark: update to 2.4.3 | 2017-12-14 |
| 219154 | Base System | bin | kib | Closed | FIXED | [PATCH] buffer overflows in realpath(3) | 2017-12-17 |
| 217099 | Ports & Packages | Individual Port(s) | amdmi3 | Closed | FIXED | ports-mgmt/fbsdmon: Please delete this port | 2017-12-17 |
| 224335 | Ports & Packages | Individual Port(s) | yuri | Closed | FIXED | security/tor: CVE-2017-8819 needs to be fixed in quarterly branch too | 2017-12-28 |
| 224729 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | www/otrs: Update to 5.0.26 (security) | 2018-01-02 |
| 225007 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | www/awstats: Update to 7.7 (security) | 2018-01-11 |
| 225240 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql56-server: Update to 5.6.39 fixes multiple CVE | 2018-01-17 |
| 225446 | Ports & Packages | Individual Port(s) | zeising | Closed | FIXED | mail/dovecot: Fix memory leak in auth_client_request_abort() (CVE-2017-15132) | 2018-01-31 |
| 225241 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Update to 5.5.59 fixes multiple CVE | 2018-01-31 |
| 225585 | Ports & Packages | Individual Port(s) | adamw | Closed | FIXED | mail/dovecot: FOLLOW UP: Fix memory leak in auth_client_request_abort() | 2018-02-01 |
| 225611 | Ports & Packages | Individual Port(s) | nobutaka | Closed | FIXED | www/w3m Multiple vulnerabilities affecting w3m | 2018-02-04 |
| 225767 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | security/vuxml: Document vulnerability in Mailman (CVE-2018-5950) | 2018-02-08 |
| 225783 | Ports & Packages | Individual Port(s) | cpm | Closed | FIXED | security/vuxml: Document vulnerability in mpv (CVE-2018-6360) | 2018-02-09 |
| 224960 | Ports & Packages | Individual Port(s) | yuri | Closed | FIXED | graphics/optipng: update to 0.7.7 | 2018-02-12 |
| 225804 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document vulnerability in uWSGI (CVE-2018-6758) | 2018-02-13 |
| 225706 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/uwsgi: Fix potential stack overflow in uwsgi_expand_path() | 2018-02-13 |
| 211100 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Overcome By Eve | editors/libreoffice: Update to latest version, security vulnerability (CVE-2016-4324) | 2018-02-23 |
| 225797 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document vulnerability in LibreOffice (CVE-2018-6871 / CVE-2018-1055) | 2018-02-24 |
| 221201 | Base System | kern | kp | Closed | FIXED | [pf] Prevent possible endless loop when searching for an unused nat port | 2018-02-26 |
| 223319 | Ports & Packages | Individual Port(s) | ale | Closed | Overcome By Eve | lang/php56: Update to 5.6.32 (Fixes security vulnerabilities) | 2018-02-26 |
| 224191 | Ports & Packages | Individual Port(s) | hrs | Closed | FIXED | security/heimdal: update to 7.5.0 (security update, fixes remote DoS) | 2018-02-28 |
| 226271 | Ports & Packages | Individual Port(s) | multimedia | Closed | FIXED | audio/libsndfile: Fix for multiple vulnerabilities | 2018-03-04 |
| 203912 | Ports & Packages | Individual Port(s) | w.schwarzenfeld | Closed | FIXED | www/owncloud: Cleartext Password Logs | 2018-03-04 |
| 226437 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | net-mgmt/netmagis-common: update to 2.3.4 | 2018-03-11 |
| 226355 | Ports & Packages | Individual Port(s) | marcus | Closed | FIXED | net/wireshark: update to 2.4.5 | 2018-03-14 |
| 226892 | Ports & Packages | Individual Port(s) | gecko | Closed | FIXED | mail/thunderbird: update to 52.7.0 | 2018-03-27 |
| 223733 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | www/webkit2-gtk3: update to 2.18.3 (SECURITY), enable Wayland support | 2018-04-10 |
| 227476 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Update to 1.3.6 (a security update for CVE-2018-9846 | 2018-04-14 |
| 227246 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php56: Update to 5.6.35, Fixes security vulnerabilities | 2018-04-26 |
| 227767 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Update to MySQL-Server 5.5.60 to fix multiple CVE | 2018-04-26 |
| 227621 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.22 fixes multiple CVE | 2018-05-06 |
| 228038 | Ports & Packages | Individual Port(s) | python | Closed | DUPLICATE | lang/python27: Update to 2.7.15 (bugfix & likely security update) | 2018-05-07 |
| 228148 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server: Update to 10.1.33 | 2018-05-13 |
| 227642 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | [PATCH] mail/sympa: security update to 2.6.32 | 2018-05-23 |
| 206581 | Base System | kern | net | Closed | FIXED | bxe_ioctl_nvram handler is faulty | 2018-05-23 |
| 220584 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: Security vulnerabilities (CVE-2017-10971, CVE-2017-10972) | 2018-05-23 |
| 228028 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python27: Update to 2.7.15 (bugfix & security update) | 2018-05-26 |
| 228072 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | net-im/py-matrix-synapse update to 0.28.1 to guarantee compatibility to server already updated and it's security relevant | 2018-06-06 |
| 219422 | Ports & Packages | Individual Port(s) | timur | Closed | Overcome By Eve | net/samba45: urgent revert to 4.5.7 from 4.5.8 | 2018-06-14 |
| 223629 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in GraphicsMagick 1.3.26 | 2018-06-20 |
| 220607 | Ports & Packages | Individual Port(s) | gecko | Closed | Overcome By Eve | www/libxul: Update to 52.2.0, Multiple (23) security (CVE) vulnerabilities | 2018-06-22 |
| 226491 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | [PATCH] devel/zziplib: update to 0.13.69 which fixes multiple CVEs | 2018-07-09 |
| 229452 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 52.9.0 | 2018-07-09 |
| 229753 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | ftp/curl: Update to 7.61.0 (Fixes CVE-2018-0500) | 2018-07-27 |
| 225636 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in GIMP | 2018-07-27 |
| 223626 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in FFmpeg | 2018-07-27 |
| 225805 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in OpenJPEG | 2018-07-27 |
| 215988 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple security vulnerabilities in lshell | 2018-07-27 |
| 226851 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | www/py-bleach: Update to 2.1.3 | 2018-07-27 |
| 226339 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/dropbear: update to 2018.76 | 2018-07-29 |
| 229846 | Ports & Packages | Individual Port(s) | decke | Closed | FIXED | net-im/py-matrix-synapse: Update to 0.32.2 | 2018-08-09 |
| 230512 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: Update to 1.5.0 (Fixes security vulnerabilities) | 2018-08-12 |
| 230361 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | devel/cgit: Update to 1.2.1 (Fixes CVE-2018-14912) | 2018-08-12 |
| 229861 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql80-server: Update to 8.0.12 fixes multiple CVE | 2018-08-14 |
| 229860 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | databases/mysql57-server: Update to 5.7.23 (Fixes multiple CVE's) | 2018-08-14 |
| 229485 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | dns/knot-resolver: Update to 2.4.1 (security fix - CVE-2018-10920) | 2018-08-15 |
| 226906 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | security/py-cryptography: Update to 2.3 (Fixes build with libressl* 2.7) | 2018-08-22 |
| 230666 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/botan2: Update to 2.7.0 | 2018-08-22 |
| 231054 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | security/vuxml: vuln.xml fix for wrong entry for wpa_supplicant (bad version range) | 2018-09-07 |
| 230932 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | databases/percona55-server: and -client update to 5.5.61-38.13 | 2018-09-09 |
| 230595 | Ports & Packages | Individual Port(s) | dinoex | Closed | FIXED | www/lighttpd: Update to 1.4.50 | 2018-09-20 |
| 231148 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | print/ghostscript9-agpl-base: Update to 9.24 | 2018-09-21 |
| 231718 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/apache24: Update to 2.4.35 | 2018-09-27 |
| 232123 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/gitea: Update to 1.5.1 (Fixes security vulnerability) | 2018-10-16 |
| 232344 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/libssh: Update to 0.8.4 (Fixes security vulnerability: CVE-2018-10933) | 2018-10-19 |
| 211580 | Base System | kern | jail | Closed | FIXED | deny system message buffer access from jails | 2018-10-20 |
| 232431 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby25: Update to 2.5.3 (Fixes multiple vulnerabilities: CVE-2018-1639[56]) | 2018-10-24 |
| 232435 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby24: Update to 2.4.5 (Fixes multiple vulnerabilities: CVE-2018-1639[56]) | 2018-10-24 |
| 232699 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Update to MySQL-Server 5.5.62 to fix multiple CVE | 2018-10-26 |
| 232687 | Ports & Packages | Individual Port(s) | apache | Closed | FIXED | www/apache24: Update to 2.4.37 (Security and Bugfix Release) | 2018-10-28 |
| 232796 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 60.3.0 | 2018-10-30 |
| 227726 | Ports & Packages | Individual Port(s) | multimedia | Closed | FIXED | multimedia/ffmpeg: update to 4.0 | 2018-11-07 |
| 226184 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: increase requests quota for Google API Key | 2018-11-10 |
| 232685 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.24 fixes multiple CVE | 2018-11-16 |
| 233146 | Ports & Packages | Individual Port(s) | portmgr | Closed | FIXED | graphics/tiff: update to 4.10.0 | 2018-11-17 |
| 233139 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns: Update to 4.1.5 (Fixes security vulnerabilities) | 2018-11-20 |
| 233419 | Ports & Packages | Individual Port(s) | thierry | Closed | FIXED | www/tt-rss: Update to bc42dfb790 g20181122 due to CVE-2018-19296 | 2018-11-23 |
| 233420 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | mail/phpmailer: Update to 5.2.27 (Fixes CVE-2018-19296) | 2018-11-25 |
| 233478 | Base System | bin | bugs | New | --- | Authentication fails if password > 128 characters | 2018-11-28 |
| 233573 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | www/payara: Update to 5.183 | 2018-11-28 |
| 230151 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/py-asyncssh: Update to 1.14.0 (Fixes security vulnerability: CVE-2018-7749) | 2018-12-09 |
| 233603 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns-recursor: Update to 4.1.8 (Fixes CVE-2018-16855) | 2018-12-09 |
| 233847 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php56: Update to 5.6.39 | 2018-12-10 |
| 233953 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | databases/phpmyadmin: Update to 4.84 | 2018-12-12 |
| 234006 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-8: Update to 8.7.22 | 2018-12-15 |
| 234008 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-9: Update to 9.5.3 | 2018-12-15 |
| 233722 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | net/uriparser: Update to 0.9.0 | 2018-12-16 |
| 234191 | Ports & Packages | Individual Port(s) | leres | Closed | FIXED | security/bro: Update to 2.6.1 (Fixes Magellan vulnerability) | 2018-12-21 |
| 234103 | Ports & Packages | Individual Port(s) | enlightenment | Closed | FIXED | x11/terminology: Update to 1.3.1 (Fixes CVE-2018-20167: Incorrect escaping of crafted files results in code execution) | 2018-12-21 |
| 234013 | Ports & Packages | Individual Port(s) | doceng | Closed | FIXED | print/ghostscript9-agpl-base: Update to 9.26 (Fixes several security vulnerabilities) | 2018-12-23 |
| 234255 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | www/gitea: Update to 1.6.2 (Fixes security vulnerability) | 2018-12-26 |
| 233749 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Overcome By Eve | net/samba47, net/samba48: Merge ports r486043 to 2018Q4 (Fixes several vulnerabilities) | 2019-01-02 |
| 233712 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | databases/sqlite3: Update to 3.26.0 | 2019-01-02 |
| 233990 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: Update to 71.0.3578.98 | 2019-01-08 |
| 234113 | Base System | misc | cy | Closed | FIXED | Update SQlite to 3.26.0 | 2019-01-09 |
| 234798 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | irc/irssi: Update to 1.1.2 | 2019-01-10 |
| 206585 | Base System | kern | bugs | Closed | FIXED | hpt_set_info possible buffer overflow | 2019-01-14 |
| 206754 | Base System | kern | bugs | Closed | FIXED | Out of bounds negative array index in iicrdwr | 2019-01-15 |
| 235056 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | [new port] security/git-secret: tool for storing secret data in a git repo using gpg | 2019-01-19 |
| 234983 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.25 fixes multiple CVE | 2019-01-21 |
| 234473 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | graphics/openjpeg: Fix CVE-2018-6616 | 2019-01-24 |
