Common Problems

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chrony <= 3.5.1 data corruption through symlink vulnerability writing the pidfile Related CVEs: CVE-2015-1821 CVE-2015-1822 CVE-2015-1853 CVE-2020-14367 Upstream summary: Miroslav Lichvar reports: chrony-3.5.1 […] fixes a security issue in writing […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: epiphany — untrusted search path vulnerability Related CVEs: CVE-2008-5983 CVE-2008-5985 Upstream summary: CVE Mitre reports: Untrusted search path vulnerability in the Python interface in Epiphany 2.22.3, and possibly other versions, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nas — multiple vulnerabilities Related CVEs: CVE-2013-4256 CVE-2013-4257 CVE-2013-4258 Upstream summary: Hamid Zamani reports: multiple security problems (buffer overflows, format string vulnerabilities and missing input sanitising), which could lead to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: curl — password overflow vulnerability Related CVEs: CVE-2017-8816 CVE-2017-8817 CVE-2017-8818 CVE-2018-14618 Upstream summary: curl security problems: CVE-2018-14618: NTLM password overflow via integer overflow The internal function Curl_ntlm_core_mk_nt_hash multiplies the length […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hafiye — lack of terminal escape sequence filtering Upstream summary: A siyahsapka.org advisory reads: Hafiye-1.0 doesnt filter the payload when printing it to the terminal. A malicious attacker can send […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gnome-screensaver — Multiple monitor hotplug issues Related CVEs: CVE-2010-0414 CVE-2010-0422 Upstream summary: Ray Strode reports: Under certain circumstances it is possible to circumvent the security of screen locking functionality of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: django — multiple vulnerabilities Related CVEs: CVE-2014-0480 CVE-2014-0481 CVE-2014-0482 CVE-2014-0483 CVE-2015-0219 CVE-2015-0220 CVE-2015-0221 CVE-2015-0222  +12 more Upstream summary: Tim Graham reports: Malicious redirect and possible XSS attack via user-supplied redirect […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Tomcat — Request Smuggling Related CVEs: CVE-2020-11996 CVE-2020-13934 CVE-2020-13935 CVE-2020-9484 CVE-2022-34305 CVE-2022-42252 Upstream summary: Apache Tomcat reports: If Tomcat was configured to ignore invalid HTTP headers via setting rejectIllegalHeader to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: zinf — potential buffer overflow playlist support Upstream summary: The audio player Zinf is vulnerable to a buffer-overflow bug in the management of the playlist files. Table of contents Symptom […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: avahi — denial of service Related CVEs: CVE-2010-2244 CVE-2011-1002 Upstream summary: Avahi developers reports: A vulnerability has been reported in Avahi, which can be exploited by malicious people to cause […]