Last update: 2008-12-02

ArchSheriff

A script to match NetBSD vulnerability database against Arch Linux packages

VULNERABILITIES (213)

Package Arch Version Version Affected Vuln Type
rxvt2.6.4rxvt<2.7.10remote-code-execution
ssh22.0.13ssh2<3.2.5weak-authentication
metamail2.7metamail<2.7nb2remote-code-execution
mplayer1.0rc2mplayer<1.0rc3nb2remote-code-execution
mplayer1.0rc2gmplayer<1.0rc3nb2remote-code-execution
mplayer1.0rc2mencoder<1.0rc3nb2remote-code-execution
mplayer1.0rc2mplayer>=1.0rc0<1.0rc4remote-code-execution
lha1.17lha<114.9nb2remote-code-execution
mplayer1.0rc2gmplayer<1.0rc4nb2remote-code-execution
libxml1.8.17libxml<1.8.17nb3remote-code-execution
imlib1.9.15imlib<1.9.15nb1remote-code-execution
mplayer1.0rc2mplayer<1.0rc5pl2remote-code-execution
mplayer1.0rc2mplayer<1.0rc5pl2remote-code-execution
mplayer1.0rc2mplayer<1.0rc5pl2remote-code-execution
a2ps4.13ca2ps<4.13.0.2nb5unsafe-shell-escape
a2ps4.13ca2ps<4.13.0.2nb7local-symlink-race
unarj2.63aunarj<2.65nb1remote-code-execution
unarj2.63aunarj<2.65nb1local-file-write
xli1.17.0xli<1.17.0nb2local-code-execution
xli1.17.0xli<1.17.0nb2buffer-overflow
xli1.17.0xli<1.17.0nb4buffer-overflow
gdk-pixbuf0.22.0gdk-pixbuf<0.22.0nb5denial-of-service
libcdaudio0.99.12libcdaudio<0.99.12nb1remote-code-execution
mplayer1.0rc2mplayer<1.0rc6nb2remote-code-execution
mplayer1.0rc2mplayer<1.0rc6nb2remote-code-execution
mplayer1.0rc2gmplayer<1.0rc6nb3remote-code-execution
mplayer1.0rc2gmplayer<1.0rc6nb3remote-code-execution
qmail1.03qmail<=1.0364bit-remote-code-execution
unzip5.52unzip<5.52nb2local-symlink-race
mplayer1.0rc2mplayer<1.0rc7nb2remote-code-execution
mplayer1.0rc2gmplayer<1.0rc7nb1remote-code-execution
arc5.21oarc<5.21enb2insecure-temp-files
zebedee2.4.1Azebedee<2.5.3denial-of-service
xli1.17.0xli<1.17.0nb5arbitrary-code-execution
libwww5.4.0libwww<5.4.0nb4denial-of-service
gdk-pixbuf0.22.0gdk-pixbuf<0.22.0nb6denial-of-service
gdk-pixbuf0.22.0gdk-pixbuf<0.22.0nb6arbitrary-code-execution
gdk-pixbuf0.22.0gdk-pixbuf<0.22.0nb6arbitrary-code-execution
mplayer1.0rc2mplayer<1.0rc7nb6buffer-overflow
mplayer1.0rc2gmplayer<1.0rc7nb4buffer-overflow
mplayer1.0rc2mencoder<1.0rc7nb2buffer-overflow
antiword0.37antiword<0.37nb1insecure-temp-files
honeyd1.5choneyd>=1.1<1.5remote-information-exposure
mplayer1.0rc2mplayer<1.0rc7nb10heap-overflow
mplayer1.0rc2gmplayer<1.0rc7nb6heap-overflow
mplayer1.0rc2mencoder<1.0rc7nb4heap-overflow
libtiff3.8.2tiff<3.8.2nb2arbitrary-code-execution
0verkill0.160verkill-[0-9]*denial-of-service
kadu0.6.0.2kadu-[0-9]*denial-of-service
php5.2.6php-curl-[45].[0-9]*security-bypass
libtiff3.8.2tiff<3.8.2nb3multiple-vulnerabilities
libwmf0.2.8.4libwmf<0.2.8.4nb4arbitrary-code-execution
honeyd1.5choneyd<1.5bdenial-of-service
mplayer1.0rc2mplayer<1.0rc8heap-overflow
mplayer1.0rc2gmplayer<1.0rc8heap-overflow
mplayer1.0rc2mencoder<1.0rc8heap-overflow
gdb6.8gdb>6arbitrary-code-execution
lha1.17lha<114.9nb3denial-of-service
lha1.17lha<114.9nb3code-execution
lha1.17lha<114.9nb3code-execution
lha1.17lha<114.9nb3denial-of-service
mplayer1.0rc2mplayer<1.0rc8remote-code-execution
mplayer1.0rc2gmplayer<1.0rc8remote-code-execution
mplayer1.0rc2mencoder<1.0rc8remote-code-execution
mplayer1.0rc2mplayer<1.0rc9nb3buffer-overflow
mplayer1.0rc2gmplayer<1.0rc9nb1buffer-overflow
mplayer1.0rc2mencoder<1.0rc9nb2buffer-overflow
qt33.3.8qt3-libs<3.3.8nb2cross-site-scripting
mplayer1.0rc2mplayer<1.0rc9nb7remote-user-shell
mplayer1.0rc2gmplayer<1.0rc9nb2remote-user-shell
qt33.3.8qt3-libs<3.3.8nb3remote-user-shell
koffice1.6.3koffice<1.6.3nb1arbitrary-code-execution
denyhosts2.6py{23,24}-denyhosts<2.6nb1denial-of-service
denyhosts2.6py{23,24}-denyhosts<2.6nb1denial-of-service
squidguard1.2.0squidGuard<1.2.1acl-bypass
qt33.3.8qt3-libs<3.3.8nb5remote-user-shell
fetchmail6.3.8fetchmail<6.3.8nb1denial-of-service
koffice1.6.3koffice<1.6.3nb4arbitrary-code-execution
ircservices5.0.62ircservices<5.0.63denial-of-service
libsndfile1.0.17libsndfile<1.0.17nb2arbitrary-code-execution
mplayer1.0rc2mplayer<1.0rc10nb2buffer-overflow
mplayer1.0rc2mencoder<1.0rc10nb1buffer-overflow
mplayer1.0rc2gmplayer<1.0rc10nb3buffer-overflow
sdl_image1.2.6SDL_image<1.2.6nb1buffer
sdl_image1.2.6SDL_image<1.2.6nb2buffer
splitvt1.6.5splitvt<1.6.6privilege-escalation
silc-toolkit1.0.2silc-toolkit<1.1.6buffer-overflow
synce-dccm0.9.1synce-dccm<0.9.2arbitrary-script-execution
mplayer1.0rc2mplayer<1.0rc10nb2remote-system-access
mplayer1.0rc2mplayer<1.0rc10nb2remote-system-access
mplayer1.0rc2mencoder<1.0rc10nb1remote-system-access
mplayer1.0rc2mencoder<1.0rc10nb1remote-system-access
mplayer1.0rc2gmplayer<1.0rc10nb3remote-system-access
mplayer1.0rc2gmplayer<1.0rc10nb3remote-system-access
perl-net-dns0.62p5-Net-DNS<0.63remote-denial-of-service
jasper1.900.1jasper<1.900.1nb2denial-of-service
nss_ldap257nss_ldap<259data-manipulation
silc-toolkit1.0.2silc-toolkit<1.1.2buffer-overflow
unzip5.52unzip<5.52nb4arbitrary-code-execution
qemu0.9.1qemu<=0.9.1information-disclosure
freetype11.3.1freetype<2.3.4denial-of-service
silc-toolkit1.0.2silc-toolkit<1.1.7buffer-overflow
rxvt2.6.4rxvt<2.7.10nb6privilege-escalation
wterm6.2.9wterm<6.2.9nb8privilege-escalation
mrxvt0.5.3mrxvt<0.5.3nb3privilege-escalation
perl-archive-tar1.34p5-Archive-Tar<1.37directory-traversal
xpdf3.02_pl2xpdf<3.02pl2nb1remote-system-access
konversation1.0.1konversation<1.0.1nb8arbitrary-command-execution
id3lib3.8.3id3lib<3.8.3nb4privilege-escalation
vorbis-tools1.2.0vorbis-tools<1.2.0nb1arbitrary-code-execution
sdl_sound1.0.1SDL_sound<1.0.2arbitrary-code-execution
qemu0.9.1qemu-[0-9]*security-bypass
xmp2.5.1xmp-[0-9]*arbitrary-code-execution
realplayer11.0.0.4028RealPlayerGold-[0-9]*arbitrary-code-execution
mplayer1.0rc2mplayer<1.0rc10nb7arbitrary-code-execution
mplayer1.0rc2gmplayer<1.0rc10nb5arbitrary-code-execution
quake31.32cquake3arena-[0-9]*arbitrary-code-execution
sarg2.2.5sarg-[0-9]*unspecified
libvorbis1.2.0libvorbis<1.2.0nb1arbitrary-code-execution
libvorbis1.2.0libvorbis<1.2.0nb1arbitrary-code-execution
libvorbis1.2.0libvorbis<1.2.0nb1arbitrary-code-execution
uudeview0.5.20uudeview<0.5.20nb2insecure-temporary-files
uudeview0.5.20uulib<0.5.20nb4insecure-temporary-files
wordnet3.0WordNet<3.0nb1arbitrary-code-execution
xemacs21.5.28xemacs{,-nox11}-[0-9]*arbitrary-code-execution
xemacs21.5.28xemacs{,-nox11}-[0-9]*arbitrary-code-execution
openssl0.9.8iopenssl<0.9.8gnb1denial-of-service
freetype11.3.1freetype<2.3.6arbitrary-code-execution
fetchmail6.3.8fetchmail<6.3.8nb3denial-of-service
acroread8.1.2acroread8<8.1.2nb1arbitrary-code-execution
openldap-clients2.3.43openldap-client<2.4.9nb1denial-of-service
vte0.17.4vte-[0-9]*utmp-entry-spoofing
libzvt2.0.1libzvt-[0-9]*utmp-entry-spoofing
realplayer11.0.0.4028RealPlayerGold-[0-9]*arbitrary-code-execution
pan0.133pan-[0-9]*denial-of-service
python242.4.5python24<2.4.5nb2denial-of-service
python242.4.5python24<2.4.5nb2arbitrary-code-execution
tomcat5.5.27apache-tomcat55-[0-9]*cross-site-scripting
tomcat5.5.27apache-tomcat55-[0-9]*cross-site-scripting
tomcat5.5.27jakarta-tomcat5-[0-9]*directory-traversal
libxslt1.1.24libxslt<1.1.24nb1arbitrary-code-execution
pdns2.9.21powerdns<2.9.21nb2data-manipulation
ipsec-tools0.7.1ipsec-tools-[0-9]*denial-of-service
postfix2.5.3postfix<2.5.4privilege-escalation
postfix2.5.3postfix<2.5.4information-exposure
bitlbee1.0.4bitlbee<1.2.2security-bypass
libtiff3.8.2tiff<3.8.2nb4arbitrary-code-execution
ruby1.8.7_p72ruby18-base<1.8.7.72nb1denial-of-service
gpsdrive2.10pre4gpsdrive-[0-9]*privilege-escalation
libxml22.6.32libxml2<2.7.0denial-of-service
postfix2.5.3postfix<2.5.5denial-of-service
proftpd1.3.1proftpd<1.3.2rc2arbitrary-command-execution
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.17arbitrary-code-execution
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.17privilege-escalation
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.17privilege-escalation
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.17memory-corruption
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.17cross-site-scripting
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.17cross-site-scripting
faad22.6.1faad2<2.6.1nb1arbitrary-code-execution
mplayer1.0rc2gmplayer<1.0rc10nb6remote-user-shell
mplayer1.0rc2mencoder<1.0rc10nb3remote-user-shell
mplayer1.0rc2mplayer<1.0rc10nb8remote-user-shell
xerces-c2.8.0xerces-c<3.0.0denial-of-service
libxml22.6.32libxml2<2.7.1nb1denial-of-service
xen3.3.0xentools33<3.3.0nb2security-bypass
xen3.3.0xentools3-[0-9]*security-bypass
jhead2.82jhead<2.84privilege-escalation
tomcat5.5.27jakarta-tomcat5-[0-9]*security-bypass
enscript1.6.4enscript-[0-9]*arbitrary-code-execution
gpsd2.37gpsd<2.37nb1remote-information-exposure
libspf21.2.5libspf2<1.2.8arbitrary-code-execution
jhead2.82jhead<=2.84privilege-escalation
lynx2.8.6lynx<2.8.6.4privilege-escalation
acroread8.1.2acroread8<8.1.3multiple-vulnerabilities
gnutls2.4.2gnutls<2.6.1remote-security-bypass
moinmoin1.7.2py{24,25}-moin-[0-9]*remote-information-exposure
moinmoin1.7.2py{24,25}-moin-[0-9]*remote-information-exposure
clamav0.94clamav<0.94.1remote-system-access
nagios3.0.5nagios-base-[0-9]*cross-site-scripting
fwbuilder3.0.1fwbuilder{,21}-[0-9]*privilege-escalation
fwbuilder3.0.1fwbuilder{,21}-[0-9]*privilege-escalation
streamripper1.63.5streamripper-[0-9]*arbitrary-code-execution
libxml22.6.32libxml2<2.7.2nb2arbitrary-code-execution
libxml22.6.32libxml2<2.7.2nb2denial-of-service
imlib21.4.2imlib2<1.4.2nb1arbitrary-code-execution
opera9.62opera-[0-9]*arbitrary-code-execution
blender2.48ablender-[0-9]*arbitrary-code-execution
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.18information-disclosure
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13information-disclosure
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13information-disclosure
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13information-disclosure
thunderbird2.0.0.17thunderbird{,-gtk1}<2.0.0.18information-disclosure
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.18arbitrary-code-execution
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13arbitrary-code-execution
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13arbitrary-code-execution
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13arbitrary-code-execution
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.18arbitrary-code-execution
thunderbird2.0.0.17thunderbird{,-gtk1}<2.0.0.18arbitrary-code-execution
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13arbitrary-code-execution
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13arbitrary-code-execution
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13arbitrary-code-execution
firefox22.0.0.16firefox{,-bin,-gtk1}<2.0.0.18security-bypass
thunderbird2.0.0.17thunderbird{,-gtk1}<2.0.0.18security-bypass
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13security-bypass
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13security-bypass
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13security-bypass
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13information-disclosure
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13information-disclosure
seamonkey1.1.12seamonkey{,-bin,-gtk1}<1.1.13information-disclosure
thunderbird2.0.0.17thunderbird{,-gtk1}<2.0.0.18information-disclosure
libcdaudio0.99.12libcdaudio<0.99.12nb2arbitrary-code-execution
wireshark1.0.4wireshark<1.0.4nb1denial-of-service
amaya10.0.1amaya-[0-9]*system-access

WARNINGS (14)

Package Arch Version Version Affected Vuln Type
apache131.3.41ap-ssl<2.8.10remote-root-shell
xconq20071021xconq<7.4.1nb1local-code-execution
apache131.3.41ap-ssl<2.8.18remote-code-execution
courier-mta0.60.0sqwebmail<4.0.0remote-code-execution
apache131.3.41ap-ssl<2.8.19remote-code-execution
apache131.3.41ap-ssl<2.8.20weak-acl-enforcement
courier-mta0.60.0sqwebmail<6cross-site-scripting
courier-mta0.60.0sqwebmail<5.0.4nb1cross-site-scripting
courier-mta0.60.0sqwebmail<5.0.4nb1cross-site-scripting
apache131.3.41ap-ssl<2.8.24weak-authentication
courier-mta0.60.0sqwebmail<5.0.4nb2cross-site-scripting
ffmpeg20080715ffmpeg-0.4.*arbitrary-code-execution
ffmpeg20080715ffmpeg<0.4.9pre1nb4remote-code-execution
ffmpeg20080715ffmpeg<20080727denial-of-service

End Of Life (1)

Package Arch Version Version Affected Vuln Type
sqlitemanager1.2.0sqlitemanager-[0-9]*eol