Common Problems

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libXfont — permission bypass when opening files through symlinks Related CVEs: CVE-2007-5760 CVE-2007-5958 CVE-2007-6427 CVE-2007-6428 CVE-2007-6429 CVE-2008-0006 CVE-2011-2895 CVE-2013-6462  +9 more Upstream summary: the freedesktop.org project reports: A non-privileged X […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: duo — Two-factor authentication bypass Upstream summary: The duo security team reports: An untrusted user may be able to set the http_proxy variable to an invalid address. If this happens, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bugzilla — multiple vulnerabilities Related CVEs: CVE-2004-1061 CVE-2005-2173 CVE-2005-2174 CVE-2006-0913 CVE-2006-0914 CVE-2006-0915 CVE-2006-0916 CVE-2006-2420  +9 more Upstream summary: A Bugzilla Security Advisory reports: Cross-Site Scripting When viewing a single bug […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xfce — multiple vulnerabilities Related CVEs: CVE-2007-6531 CVE-2007-6532 Upstream summary: Gentoo reports: A remote attacker could entice a user to install a specially crafted "rc" file to execute arbitrary code […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Sanitize — XSS vulnerability Related CVEs: CVE-2018-3740 Upstream summary: Sanitize release: Fixed an HTML injection vulnerability that could allow XSS. When Sanitize <= 4.6.2 is used in combination with libxml2 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rockdodger — buffer overflows Upstream summary: The environment variable HOME is copied without regard to buffer size, which can be used to gain elevated privilege if the binary is installed […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cgit — directory traversal vulnerability Related CVEs: CVE-2016-1899 CVE-2016-1900 CVE-2016-1901 CVE-2018-14912 Upstream summary: Jann Horn reports: cgit_clone_objects in CGit before 1.2.1 has a directory traversal vulnerability when `enable-http-clone=1` is not […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wget — security flaw in caching credentials passed as a part of the URL Related CVEs: CVE-2004-1487 CVE-2004-1488 CVE-2010-2252 CVE-2014-4877 CVE-2016-4971 CVE-2016-7098 CVE-2017-13089 CVE-2017-13090  +2 more Upstream summary: Gynvael Coldwind […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php5 — multiple vulnerabilities Related CVEs: CVE-2015-6831 CVE-2015-6832 CVE-2015-6833 Upstream summary: The PHP project reports: Core: Fixed bug #69793 (Remotely triggerable stack exhaustion via recursive method calls). Fixed bug #70121 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Fix a buffer overflow in the tiff reader Upstream summary: libvips reports: A buffer overflow was found and fixed in the libvips code Table of contents Symptom & Impact Environment […]