pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/doc
Module Name: pkgsrc
Committed By: leot
Date: Sat Oct 11 10:06:44 UTC 2025
Modified Files:
pkgsrc/doc: pkg-vulnerabilities
Log Message:
pkg-vulnerabilities: add old CVEs with PKGBASEs starting with f
+ fastd,
p5-FCGI (not fixed),
fdupes,
fig2dev (CVE-2025-31162, CVE-2025-31163, CVE-2025-31164, CVE-2025-46397,
CVE-2025-46398, CVE-2025-46399, CVE-2025-46400 fixed upstream, 3.2.9a
affected),
file, flac, flightgear,
fluent-bit (CVE-2025-29477, CVE-2025-29478 and CVE-2024-26455
probably not fixed nor shared with upstream),
freeimage (none fixed upstream),
freerdp2, freetype2, frr
To generate a diff of this commit:
cvs rdiff -u -r1.606 -r1.607 pkgsrc/doc/pkg-vulnerabilities
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.606 pkgsrc/doc/pkg-vulnerabilities:1.607
--- pkgsrc/doc/pkg-vulnerabilities:1.606 Sat Oct 11 09:17:46 2025
+++ pkgsrc/doc/pkg-vulnerabilities Sat Oct 11 10:06:44 2025
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.606 2025/10/11 09:17:46 leot Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.607 2025/10/11 10:06:44 leot Exp $
#
#FORMAT 1.0.0
#
@@ -28314,3 +28314,80 @@ py{27,39,310,311,312,313,314}-ldap<3.4.5
py{27,39,310,311,312,313,314}-ldap<3.4.5 invalid-validation https://nvd.nist.gov/vuln/detail/CVE-2025-61912
wireshark<4.4.10 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2025-11626
poppler<25.10.0 use-after-free https://nvd.nist.gov/vuln/detail/CVE-2025-52885
+fastd<23 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2025-24356
+p5-FCGI-[0-9]* heap-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-40907
+fdupes<2.2.0 arbitrary-file-removal https://nvd.nist.gov/vuln/detail/CVE-2022-48682
+fig2dev-[0-9]* floating-point-exception https://nvd.nist.gov/vuln/detail/CVE-2025-31162
+fig2dev-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2025-31163
+fig2dev-[0-9]* heap-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-31164
+fig2dev-[0-9]* stack-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-46397
+fig2dev-[0-9]* stack-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-46398
+fig2dev-[0-9]* null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2025-46399
+fig2dev-[0-9]* null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2025-46400
+file<5.43 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2022-48554
+flac<1.4.0 buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2020-22219
+flightgear<2020.3.6 improper-authorization https://nvd.nist.gov/vuln/detail/CVE-2025-0781
+fluent-bit<1.8.0 use-after-free https://nvd.nist.gov/vuln/detail/CVE-2021-46878
+fluent-bit<1.8.0 heap-overflow https://nvd.nist.gov/vuln/detail/CVE-2021-46879
+fluent-bit<2.2.2 null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2024-23722
+fluent-bit<3.2.7 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-50608
+fluent-bit<3.2.7 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-50609
+fluent-bit-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2025-29477
+fluent-bit-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2025-29478
+fluent-bit-[0-9]* use-after-free https://nvd.nist.gov/vuln/detail/CVE-2024-26455
+freeimage-[0-9]* integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2023-47992
+freeimage-[0-9]* out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2023-47993
+freeimage-[0-9]* integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2023-47994
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-47995
+freeimage-[0-9]* integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2023-47996
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-47997
+freeimage-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-28562
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28563
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28564
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28565
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28567
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28568
+freeimage-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-28569
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28570
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28571
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28572
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28573
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28574
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28575
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28576
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28577
+freeimage-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-28578
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28579
+freeimage-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-28580
+freeimage-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-28581
+freeimage-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-28582
+freeimage-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-28583
+freeimage-[0-9]* denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-28584
+freeimage-[0-9]* stack-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-31570
+freerdp2<2.11.5 integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-22211
+freerdp2<22.11.6 integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-32039
+freerdp2<2.11.6 integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-32040
+freerdp2<2.11.6 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2024-32041
+freerdp2<2.11.6 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2024-32458
+freerdp2<2.11.6 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2024-32459
+freerdp2<2.11.6 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2024-32460
+freerdp2<3.5.1 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2024-32658
+freerdp2<3.5.1 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2024-32659
+freerdp2<3.5.1 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-32660
+freerdp2<3.5.1 null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2024-32661
+freerdp2<3.5.1 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2024-32662
+freetype2<2.9 integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-23022
+frr<8.4.3 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-38406
+frr<8.5 out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2023-38407
+frr<10.0 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-46752
+frr<10.0 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-46753
+frr<10.0 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-47234
+frr<10.0 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-47235
+frr<10.1 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-27913
+frr<10.1 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-31948
+frr<10.1 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-31949
+frr<10.1 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-31950
+frr<10.1 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-31951
+frr<10.1 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2024-34088
+frr<10.1 input-validation https://nvd.nist.gov/vuln/detail/CVE-2024-44070
+frr<10.1.2 invalid-validation https://nvd.nist.gov/vuln/detail/CVE-2024-55553
Home |
Main Index |
Thread Index |
Old Index