Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2016-11-29 subversion -- Unrestricted XML entity expansion in mod_dontdothat and Subversionclients using http(s)
2016-04-28 subversion -- multiple vulnerabilities
2015-12-15 subversion -- multiple vulnerabilities
2015-08-06 subversion -- multiple vulnerabilities
2015-03-31 subversion -- DoS vulnerabilities
2014-12-15 subversion -- DoS vulnerabilities
2014-08-11 subversion -- several vulnerabilities
2014-02-26 subversion -- mod_dav_svn vulnerability
2013-11-25 subversion -- multiple vulnerabilities
2013-09-02 svnserve is vulnerable to a local privilege escalation vulnerability via symlink attack.
2013-07-24 subversion -- remotely triggerable "Assertion failed" DoS vulnerability or read overflow.
2013-05-31 devel/subversion -- contrib hook-scripts can allow arbitrary code execution
devel/subversion -- fsfs repositories can be corrupted by newline characters in filenames
devel/subversion -- svnserve remotely triggerable DoS
2013-04-05 Subversion -- multiple vulnerabilities
2011-06-02 Subversion -- multiple vulnerabilities
2011-03-05 subversion -- remote HTTP DoS vulnerability
2011-01-13 subversion -- multiple DoS
2009-08-06 subversion -- heap overflow vulnerability
2004-09-26 subversion -- WebDAV fails to protect metadata
2004-05-19 subversion date parsing vulnerability