Common Problems

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nas — multiple vulnerabilities Related CVEs: CVE-2013-4256 CVE-2013-4257 CVE-2013-4258 Upstream summary: Hamid Zamani reports: multiple security problems (buffer overflows, format string vulnerabilities and missing input sanitising), which could lead to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: curl — password overflow vulnerability Related CVEs: CVE-2017-8816 CVE-2017-8817 CVE-2017-8818 CVE-2018-14618 Upstream summary: curl security problems: CVE-2018-14618: NTLM password overflow via integer overflow The internal function Curl_ntlm_core_mk_nt_hash multiplies the length […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hafiye — lack of terminal escape sequence filtering Upstream summary: A siyahsapka.org advisory reads: Hafiye-1.0 doesnt filter the payload when printing it to the terminal. A malicious attacker can send […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gnome-screensaver — Multiple monitor hotplug issues Related CVEs: CVE-2010-0414 CVE-2010-0422 Upstream summary: Ray Strode reports: Under certain circumstances it is possible to circumvent the security of screen locking functionality of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: django — multiple vulnerabilities Related CVEs: CVE-2014-0480 CVE-2014-0481 CVE-2014-0482 CVE-2014-0483 CVE-2015-0219 CVE-2015-0220 CVE-2015-0221 CVE-2015-0222  +12 more Upstream summary: Tim Graham reports: Malicious redirect and possible XSS attack via user-supplied redirect […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Tomcat — Request Smuggling Related CVEs: CVE-2020-11996 CVE-2020-13934 CVE-2020-13935 CVE-2020-9484 CVE-2022-34305 CVE-2022-42252 Upstream summary: Apache Tomcat reports: If Tomcat was configured to ignore invalid HTTP headers via setting rejectIllegalHeader to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: zinf — potential buffer overflow playlist support Upstream summary: The audio player Zinf is vulnerable to a buffer-overflow bug in the management of the playlist files. Table of contents Symptom […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: avahi — denial of service Related CVEs: CVE-2010-2244 CVE-2011-1002 Upstream summary: Avahi developers reports: A vulnerability has been reported in Avahi, which can be exploited by malicious people to cause […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fetchmail — potential crash when authenticating to SMTP server Related CVEs: CVE-2003-0792 CVE-2005-2335 CVE-2005-3088 CVE-2005-4348 CVE-2006-0321 CVE-2006-5867 CVE-2006-5974 CVE-2007-1558  +11 more Upstream summary: Matthias Andree reports: fetchmail's SMTP client, when […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: urllib3 — multiple vulnerabilities Related CVEs: CVE-2018-20060 CVE-2019-11236 CVE-2019-11324 Upstream summary: NIST reports: (by search in the range 2018/01/01 – 2019/11/10): urllib3 before version 1.23 does not remove the Authorization […]