Common Problems

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: KDE — multiple vulnerabilities Upstream summary: oCERT reports: Ark input sanitization errors: The KDE archiving tool, Ark, performs insufficient validation which leads to specially crafted archive files, using unknown MIME […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libsndfile — out-of-bounds reads Related CVEs: CVE-2017-12562 CVE-2017-14245 CVE-2017-14246 CVE-2017-14634 CVE-2017-17456 CVE-2017-17457 CVE-2017-6892 CVE-2017-7585  +7 more Upstream summary: Xin-Jiang on Github reports: CVE-2017-14245 (Medium): An out of bounds read in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: puppet-agent MCollective plugin — Remote Code Execution vulnerability Related CVEs: CVE-2015-7331 Upstream summary: Puppet reports: Puppet Enterprise previously included a puppet-agent MCollective plugin that allowed you to pass the `–server` […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pyblosxom — atom flavor multiple XML injection vulnerabilities Upstream summary: Security Focus reports: PyBlosxom is prone to multiple XML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Bacula-Web — Multiple Vulnerabilities Related CVEs: CVE-2021-26119 CVE-2021-26120 Upstream summary: Bacula-Web reports: Address Smarty CVE Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: websvn — reflected cross-site scripting Related CVEs: CVE-2008-5918 CVE-2008-5919 CVE-2009-0240 CVE-2013-6892 CVE-2016-2511 Upstream summary: Sebastien Delafond reports: Jakub Palaczynski discovered that websvn, a web viewer for Subversion repositories, does not […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Privoxy — Multiple vulnerabilities (memory leak, XSS) Related CVEs: CVE-2012-0920 CVE-2013-4421 CVE-2013-4434 CVE-2016-3116 CVE-2016-7406 CVE-2016-7407 CVE-2016-7408 CVE-2016-7409  +6 more Upstream summary: Privoxy reports: cgi_error_no_template(): Encode the template name to prevent […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: activemq — Unsafe deserialization Related CVEs: CVE-2015-5254 CVE-2016-0734 CVE-2016-0782 Upstream summary: Alvaro Muatoz, Matthias Kaiser and Christian Schneider reports: JMS Object messages depends on Java Serialization for marshaling/unmashaling of the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dojo — cross-site scripting and other vulnerabilities Upstream summary: The Dojo Toolkit team reports: Some PHP files did not properly escape input. Some files could operate like "open redirects". A […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: puppet — Silent Configuration Failure Related CVEs: CVE-2012-1906 CVE-2012-1986 CVE-2012-1987 CVE-2012-1988 CVE-2012-1989 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866  +12 more Upstream summary: Puppet reports: A flaw was discovered in Puppet Agent where the […]