Fix Prevention

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: froxlor — database password information leak Related CVEs: CVE-2015-5959 Upstream summary: [email protected] reports: An unauthenticated remote attacker is able to get the database password via webaccess due to wrong file […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gstreamer1-plugins-vorbis — Stack buffer-overflow in Vorbis decoder Related CVEs: CVE-2024-47538 Upstream summary: The GStreamer Security Center reports: Stack buffer-overflow in Vorbis decoder that can cause crashes for certain input files. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: django — multiple vulnerabilities Related CVEs: CVE-2009-3695 CVE-2010-3082 CVE-2014-0472 CVE-2014-0473 CVE-2014-0474 Upstream summary: The Django project reports: These releases address an unexpected code-execution issue, a caching issue which can expose […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Apache 1.3 — mod_proxy reverse proxy exposure Related CVEs: CVE-2004-0940 CVE-2005-2088 CVE-2005-3352 CVE-2006-3747 CVE-2011-3368 Upstream summary: Apache HTTP server project reports: An exposure was found when using mod_proxy in reverse […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: shibboleth-sp — vulnerable to forged user attribute data Related CVEs: CVE-2016-0729 CVE-2016-2099 CVE-2016-4463 CVE-2018-0486 CVE-2018-0489 Upstream summary: Shibboleth consortium reports: Shibboleth SP software vulnerable to additional data forgery flaws The […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mcpp — Heap-based buffer overflow Related CVEs: CVE-2019-14274 Upstream summary: [email protected] reports: MCPP 2.7.2 has a heap-based buffer overflow in the do_msg() function in support.c. Table of contents Symptom & […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: glibc — gethostbyname buffer overflow Related CVEs: CVE-2015-0235 Upstream summary: Robert Krátký reports: GHOST is a 'buffer overflow' bug affecting the gethostbyname() and gethostbyname2() function calls in the glibc library. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PuTTY and embedders (f.i., filezilla) — biased RNG with NIST P521/ecdsa-sha2-nistp521 signatures permits recovering private key Related CVEs: CVE-2024-31497 Upstream summary: Simon Tatham reports: ECDSA signatures using 521-bit keys (the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kanboard — Password Reset Poisoning via Host Header Injection Related CVEs: CVE-2017-12850 CVE-2017-12851 CVE-2024-36399 CVE-2024-55603 CVE-2025-52560 Upstream summary: GitHub Security Advisories reports: Kanboard allows password reset emails to be sent […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: The GIMP — Use after Free vulnerability Related CVEs: CVE-2016-4994 Upstream summary: The GIMP team reports: A Use-after-free vulnerability was found in the xcf_load_image function. Table of contents Symptom & […]