FreeBSD 12

FreeBSD 12 — plasma5-plasma-workspace — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — plasma5-plasma-workspace — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: plasma[56]-plasma-workspace — Unauthorized users can access session manager Related CVEs: CVE-2024-36041 Upstream summary: David Edmundson reports: KSmserver, KDE's XSMP manager, incorrectly allows connections via ICE based purely on the host, […]

Read more
FreeBSD 12 — usermin — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — usermin — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: webmin — unauthenticated remote code execution Related CVEs: CVE-2005-3912 CVE-2005-3962 CVE-2019-15107 Upstream summary: Joe Cooper reports: I've rolled out Webmin version 1.930 and Usermin version 1.780 for all repositories. This […]

Read more
FreeBSD 12 — erlang — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — erlang — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Erlang – Absolute Path in Zip Module Related CVEs: CVE-2011-0766 CVE-2025-32433 CVE-2025-4748 Upstream summary: https://github.com/erlang/otp/security/advisories/GHSA-9g37-pgj9-wrhc reports: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang […]

Read more
FreeBSD 12 — rubygem-passenger — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — rubygem-passenger — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-passenger — arbitrary file read vulnerability Related CVEs: CVE-2013-2119 CVE-2015-7519 CVE-2017-16355 Upstream summary: Phusion reports: The cPanel Security Team discovered a vulnerability in Passenger that allows users to list the […]

Read more
FreeBSD 12 — freeimage — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — freeimage — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: freeimage — code execution vulnerability Related CVEs: CVE-2015-0852 CVE-2015-3885 CVE-2016-5684 Upstream summary: TALOS reports: An exploitable out-of-bounds write vulnerability exists in the XMP image handling functionality of the FreeImage library. […]

Read more
FreeBSD 12 — py37-cryptography — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py37-cryptography — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cryptography — includes a vulnerable copy of OpenSSL Related CVEs: CVE-2018-10903 CVE-2023-0286 CVE-2023-23931 Upstream summary: pyca/cryptography's wheels include a statically linked copy of OpenSSL. The versions of OpenSSL included in […]

Read more
FreeBSD 12 — py37-yaml — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py37-yaml — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PyYAML — arbitrary code execution Related CVEs: CVE-2017-18342 CVE-2020-14343 CVE-2020-1747 Upstream summary: A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary […]

Read more
FreeBSD 12 — py39-cinder — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py39-cinder — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cinder — unauthorized data access Related CVEs: CVE-2014-3641 CVE-2020-10755 CVE-2022-47951 Upstream summary: Utkarsh Gupta reports: An issue was discovered in OpenStack Cinder before 19.1.2, 20.x before 20.0.2, and 21.0.0; Glance […]

Read more
FreeBSD 12 — qt6-base — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — qt6-base — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: qt6-base — DoS in QColorTransferGenericFunction Related CVEs: CVE-2023-51714 CVE-2024-33861 CVE-2025-5992 Upstream summary: Andy Shaw reports: When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial […]

Read more
FreeBSD 12 — evolution — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — evolution — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: evolution — remote format string vulnerabilities Related CVEs: CVE-2005-0102 CVE-2005-2549 CVE-2005-2550 Upstream summary: A SITIC Vulnerability Advisory reports: Evolution suffers from several format string bugs when handling data from remote […]

Read more
CHAT