FreeBSD 13

FreeBSD 13 — varnish-libvmod-digest — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — varnish-libvmod-digest — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: www/varnish-libvmod-digest — base64 decoding vulnerability Related CVEs: CVE-2023-41104 Upstream summary: varnish developers report: Common usage of vmod-digest is for basic HTTP authentication, in which case it may be possible for […]

Read more
FreeBSD 13 — activemq — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — activemq — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: activemq — Unsafe deserialization Related CVEs: CVE-2015-5254 CVE-2016-0734 CVE-2016-0782 Upstream summary: Alvaro Muatoz, Matthias Kaiser and Christian Schneider reports: JMS Object messages depends on Java Serialization for marshaling/unmashaling of the […]

Read more
FreeBSD 13 — py310-dj52-social-auth-app-django — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py310-dj52-social-auth-app-django — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not included. […]

Read more
FreeBSD 13 — ecartis — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — ecartis — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ecartis — unauthorised access to admin interface Related CVEs: CVE-2003-0781 CVE-2003-0782 CVE-2004-0913 Upstream summary: A Debian security advisory reports: A problem has been discovered in ecartis, a mailing-list manager, which […]

Read more
FreeBSD 13 — gftp — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — gftp — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gftp — multiple vulnerabilities Related CVEs: CVE-2005-0372 CVE-2007-3961 CVE-2007-3962 Upstream summary: Gentoo reports: Kalle Olavi Niemitalo discovered two boundary errors in fsplib code included in gFTP when processing overly long […]

Read more
FreeBSD 13 — py310-django — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py310-django — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Django — multiple vulnerabilities Related CVEs: CVE-2022-28346 CVE-2022-28347 CVE-2022-34265 CVE-2022-36359 CVE-2022-41323 CVE-2023-23969 CVE-2023-24580 CVE-2023-31047  +12 more Upstream summary: Django reports: CVE-2025-59681: Potential SQL injection in QuerySet.annotate(), alias(), aggregate(), and extra() […]

Read more
FreeBSD 13 — rubygem-activesupport — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — rubygem-activesupport — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Rails — multiple vulnerabilities Related CVEs: CVE-2007-3227 CVE-2012-3463 CVE-2012-3464 CVE-2012-3465 CVE-2013-0155 CVE-2013-0156 CVE-2013-1854 CVE-2013-1856  +12 more Upstream summary: Ruby on Rails blog: Hi everyone! Rails 5.2.4.3 and 6.0.3.1 have been […]

Read more
FreeBSD 13 — freerdp — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — freerdp — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: freerdp — clients using the `/video` command line switch might read uninitialized data Related CVEs: CVE-2020-11017 CVE-2020-11018 CVE-2020-11019 CVE-2020-11038 CVE-2020-11039 CVE-2020-11040 CVE-2020-11041 CVE-2020-11043  +12 more Upstream summary: MITRE reports: All […]

Read more
FreeBSD 13 — drm-devel-kmod — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — drm-devel-kmod — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: drm graphics drivers — potential information disclusure via local access Related CVEs: CVE-2019-0154 CVE-2019-11112 CVE-2019-14615 Upstream summary: Intel reports: .A potential security vulnerability in Intel(R) Processor Graphics may allow information […]

Read more
CHAT