FreeBSD VuXML

Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

in the FreeBSD Ports Collection repository, path ports/security/vuxml/vuln.xml
as a local copy
as a local copy, compressed with bzip2
as a local copy, compressed with xz
as a local copy, compressed with zstandard

Please report security issues to the FreeBSD Security Team at <ports-secteam@FreeBSD.org>. Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.

git

git at FreshPorts.org

Entered	Topic
2023-04-26	git -- Multiple vulnerabilities
2023-02-21	git -- "git apply" overwriting paths outside the working tree
	git -- gitattributes parsing integer overflow
	git -- Heap overflow in `git archive`, `git log --format` leading to RCE
	git -- Local clone-based data exfiltration with non-local transports
2022-10-18	git -- Multiple vulnerabilities
2022-07-12	git -- privilege escalation
2020-04-22	malicious URLs can cause git to send a stored credential to wrong server
2020-04-22	malicious URLs may present credentials to wrong server
2018-06-02	Git -- Fix memory out-of-bounds and remote code execution vulnerabilities (CVE-2018-11233 and CVE-2018-11235)
2016-03-18	git -- integer overflow
2016-03-17	git -- potential code execution
2015-10-19	Git -- Execute arbitrary code
2014-12-19	git -- Arbitrary command execution on case-insensitive filesystems
2010-07-23	git -- buffer overflow vulnerability
2009-06-15	git -- denial of service vulnerability
2009-01-19	git -- gitweb privilege escalation