chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2026-28348 CVE-2026-28350 Upstream summary: pkgsrc audit-packages flagged py{27,310,311,312,313,314}-lxml-html-clean<0.4.4 for vulnerability class 'cross-site-scripting'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2026-28348 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2020-25657 Upstream summary: pkgsrc audit-packages flagged py{27,36,37,38,39}-m2crypto-[0-9]* for vulnerability class 'timing-attack'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-25657 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2026-32116 Upstream summary: pkgsrc audit-packages flagged py{27,310,311,312,313,314}-magic-wormhole<0.23.0 for vulnerability class 'path-traversal'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2026-32116 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]