svn commit: r403819 - head/security/vuxml
Mark Felder
feld at FreeBSD.org
Tue Dec 15 22:06:14 UTC 2015
Author: feld
Date: Tue Dec 15 22:06:12 2015
New Revision: 403819
URL: https://svnweb.freebsd.org/changeset/ports/403819
Log:
Document openjdk8 vulnerabilities
PR: 204269
Security: CVE-2015-4908
Security: CVE-2015-4916
Security: CVE-2015-4906
Security: CVE-2015-4872
Security: CVE-2015-4911
Security: CVE-2015-4893
Security: CVE-2015-4803
Security: CVE-2015-4903
Security: CVE-2015-4734
Security: CVE-2015-4842
Security: CVE-2015-4882
Security: CVE-2015-4840
Security: CVE-2015-4902
Security: CVE-2015-4871
Security: CVE-2015-4806
Security: CVE-2015-4810
Security: CVE-2015-4868
Security: CVE-2015-4901
Security: CVE-2015-4844
Security: CVE-2015-4805
Security: CVE-2015-4860
Security: CVE-2015-4883
Security: CVE-2015-4843
Security: CVE-2015-4881
Security: CVE-2015-4835
Modified:
head/security/vuxml/vuln.xml
Modified: head/security/vuxml/vuln.xml
==============================================================================
--- head/security/vuxml/vuln.xml Tue Dec 15 22:02:43 2015 (r403818)
+++ head/security/vuxml/vuln.xml Tue Dec 15 22:06:12 2015 (r403819)
@@ -58,6 +58,60 @@ Notes:
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="a5934ba8-a376-11e5-85e9-14dae9d210b8">
+ <topic>java -- multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>openjdk8</name>
+ <name>openjdk8-jre</name>
+ <range><lt>8.66.17</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Oracle reports:</p>
+ <blockquote cite="http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html#AppendixJAVA">
+ <p>This Critical Patch Update contains 25 new security fixes
+ for Oracle Java SE. 24 of these vulnerabilities may be remotely
+ exploitable without authentication, i.e., may be exploited over a
+ network without the need for a username and password.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html#AppendixJAVA</url>
+ <cvename>CVE-2015-4835</cvename>
+ <cvename>CVE-2015-4881</cvename>
+ <cvename>CVE-2015-4843</cvename>
+ <cvename>CVE-2015-4883</cvename>
+ <cvename>CVE-2015-4860</cvename>
+ <cvename>CVE-2015-4805</cvename>
+ <cvename>CVE-2015-4844</cvename>
+ <cvename>CVE-2015-4901</cvename>
+ <cvename>CVE-2015-4868</cvename>
+ <cvename>CVE-2015-4810</cvename>
+ <cvename>CVE-2015-4806</cvename>
+ <cvename>CVE-2015-4871</cvename>
+ <cvename>CVE-2015-4902</cvename>
+ <cvename>CVE-2015-4840</cvename>
+ <cvename>CVE-2015-4882</cvename>
+ <cvename>CVE-2015-4842</cvename>
+ <cvename>CVE-2015-4734</cvename>
+ <cvename>CVE-2015-4903</cvename>
+ <cvename>CVE-2015-4803</cvename>
+ <cvename>CVE-2015-4893</cvename>
+ <cvename>CVE-2015-4911</cvename>
+ <cvename>CVE-2015-4872</cvename>
+ <cvename>CVE-2015-4906</cvename>
+ <cvename>CVE-2015-4916</cvename>
+ <cvename>CVE-2015-4908</cvename>
+ </references>
+ <dates>
+ <discovery>2015-10-20</discovery>
+ <entry>2015-12-15</entry>
+ </dates>
+ </vuln>
+
<vuln vid="daadef86-a366-11e5-8b40-20cf30e32f6d">
<topic>subversion -- multiple vulnerabilities</topic>
<affects>
More information about the svn-ports-head
mailing list