Common Problems

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libvorbis — two vulnerabilities Related CVEs: CVE-2007-3106 CVE-2008-1419 CVE-2008-1420 CVE-2008-1423 CVE-2009-3379 CVE-2017-14160 CVE-2017-14632 CVE-2017-14633  +3 more Upstream summary: Two vulnerabilities were fixed in the upstream repository: The bark_noise_hybridmp function allows […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: github-release-monitor — multiple vulnerabilities Related CVEs: CVE-2025-55183 CVE-2025-55184 Upstream summary: https://nextjs.org/blog/security-update-2025-12-11 reports: Description (Medium) Source Code Exposure: CVE-2025-55183 A specifically crafted HTTP request can cause a Server Function to return […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openssl — potential SSL 2.0 rollback Related CVEs: CVE-2005-2969 Upstream summary: Vulnerability: Such applications are affected if they use the option SSL_OP_MSIE_SSLV2_RSA_PADDING. This option is implied by use of SSL_OP_ALL, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openssl — potential SSL 2.0 rollback Related CVEs: CVE-2005-2969 Upstream summary: Vulnerability: Such applications are affected if they use the option SSL_OP_MSIE_SSLV2_RSA_PADDING. This option is implied by use of SSL_OP_ALL, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: squirrelmail — random variable overwrite vulnerability Related CVEs: CVE-2004-1036 CVE-2005-0075 CVE-2005-0103 CVE-2005-0104 CVE-2005-1769 CVE-2005-2095 CVE-2006-4019 Upstream summary: The SquirrelMail developers report: A logged in user could overwrite random variables in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-redcarpet — XSS vulnerability Upstream summary: Daniel LeCheminant reports: When markdown is being presented as HTML, there seems to be a strange interaction between _ and @ that lets an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vlc — arbitrary code execution in the RealMedia processor Related CVEs: CVE-2008-5032 CVE-2008-5036 CVE-2008-5276 Upstream summary: Tobias Klein from TrapKit reports: The VLC media player contains an integer overflow vulnerability […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-strawberry-graphql — Multiple vulnerabilities Related CVEs: CVE-2026-35523 CVE-2026-35526 Upstream summary: The Strawberry GraphQL project reports: Strawberry up until version 0.312.3 is vulnerable to an authentication bypass on WebSocket subscription endpoints. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Mozilla — Sandbox escape Related CVEs: CVE-2025-14321 CVE-2025-14322 Upstream summary: https://bugzilla.mozilla.org/show_bug.cgi?id=1996473 reports: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. Table of contents Symptom & Impact […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2015-5589 CVE-2015-5590 CVE-2015-6831 CVE-2015-6832 CVE-2015-6833 CVE-2015-7803 CVE-2015-7804 Upstream summary: PHP reports: Phar: Fixed bug #69720 (Null pointer dereference in phar_get_fp_offset()). Fixed bug #70433 (Uninitialized […]