Fix Prevention

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hive — authorization logic vulnerability Related CVEs: CVE-2015-7521 Upstream summary: Sushanth Sowmyan reports: Some partition-level operations exist that do not explicitly also authorize privileges of the parent table. This can […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-matrix-synapse — federation denial of service via malformed events Related CVEs: CVE-2020-26257 CVE-2020-26891 CVE-2021-29471 CVE-2021-39163 CVE-2021-39164 CVE-2021-41281 CVE-2022-31052 CVE-2024-31208  +7 more Upstream summary: element-hq/synapse developers report: A malicious server can […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: multiple buffer overflows in xboing Related CVEs: CVE-2004-0149 Upstream summary: Steve Kemp reports (in a Debian bug submission): Due to improper bounds checking it is possible for a malicious user […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libsrtp — DoS via crafted RTP header vulnerability Related CVEs: CVE-2015-6360 Upstream summary: libsrtp reports: Prevent potential DoS attack due to lack of bounds checking on RTP header CSRC count […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cyrus-imapd — unbounded memory allocation Related CVEs: CVE-2002-1580 CVE-2004-1011 CVE-2004-1012 CVE-2004-1013 CVE-2005-0546 CVE-2009-2632 CVE-2015-8077 CVE-2015-8078  +5 more Upstream summary: Cyrus IMAP 3.8.3 Release Notes states: Fixed CVE-2024-34055: Cyrus-IMAP through 3.8.2 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: unzip — permission race vulnerability Related CVEs: CVE-2005-2475 Upstream summary: Imran Ghory reports a vulnerability within unzip. The vulnerability is caused by a race condition between extracting an archive and […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libproxy — stack-based buffer overflow Related CVEs: CVE-2012-4504 Upstream summary: Tomas Hoger reports: A buffer overflow flaw was discovered in the libproxy's url::get_pac() used to download proxy.pac proxy auto-configuration file. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: apache22 — chunk header parsing defect Related CVEs: CVE-2012-0833 CVE-2012-2687 CVE-2012-3499 CVE-2012-4558 CVE-2013-1862 CVE-2013-1896 CVE-2013-5704 CVE-2013-6438  +5 more Upstream summary: Apache Foundation reports: CVE-2015-3183 core: Fix chunk header parsing defect. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xview — multiple buffer overflows in xv_parse_one Related CVEs: CVE-2005-0076 Upstream summary: A Debian Security Advisory reports: Erik Sjölund discovered that programs linked against xview are vulnerable to a number […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-gd and gd — Buffer over-read into uninitialized memory Related CVEs: CVE-2017-7890 Upstream summary: PHP developers report: The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka […]