FreeBSD 13

FreeBSD 13 — fluidsynth — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — fluidsynth — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fluidsynth — Use after free when using DLS files Related CVEs: CVE-2025-68617 Upstream summary: The fluidsynth authors report: A race condition during unloading of a DLS file can trigger a […]

Read more
FreeBSD 13 — freeimage — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — freeimage — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: freeimage — code execution vulnerability Related CVEs: CVE-2015-0852 CVE-2015-3885 CVE-2016-5684 Upstream summary: TALOS reports: An exploitable out-of-bounds write vulnerability exists in the XMP image handling functionality of the FreeImage library. […]

Read more
FreeBSD 13 — py311-dj51-social-auth-app-django — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py311-dj51-social-auth-app-django — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not included. […]

Read more
FreeBSD 13 — gforge — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — gforge — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gforge — XSS and email flood vulnerabilities Related CVEs: CVE-2005-0299 CVE-2005-2430 CVE-2005-2431 Upstream summary: Jose Antonio Coret reports that GForge contains multiple Cross Site Scripting vulnerabilities and an e-mail flood […]

Read more
FreeBSD 13 — libwasmtime — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — libwasmtime — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libwasmtime — host panic with fd_renumber WASIp1 function Related CVEs: CVE-2025-53901 Upstream summary: WasmTime development team reports: A bug in Wasmtime's implementation of the WASIp1 set of import functions can […]

Read more
FreeBSD 13 — WebCalendar-devel — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — WebCalendar-devel — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: WebCalendar — multiple vulnerabilities Related CVEs: CVE-2012-0846 CVE-2012-1495 CVE-2012-1496 Upstream summary: Hanno Boeck reports: Fixes [are now available] for various security vulnerabilities including LFI (local file inclusion), XSS (cross site […]

Read more
FreeBSD 13 — hadoop — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — hadoop — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hadoop2 — unauthorized disclosure of data vulnerability Related CVEs: CVE-2014-0230 CVE-2014-7810 CVE-2015-1776 Upstream summary: Arun Suresh reports: RPC traffic from clients, potentially including authentication credentials, may be intercepted by a […]

Read more
FreeBSD 13 — rubygem-geminabox — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — rubygem-geminabox — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-geminabox — XSS vulnerabilities Related CVEs: CVE-2017-14506 CVE-2017-14683 CVE-2017-16792 Upstream summary: NVD reports: Stored cross-site scripting (XSS) vulnerability in "geminabox" (Gem in a Box) before 0.13.10 allows attackers to inject […]

Read more
FreeBSD 13 — mariadb55-client — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — mariadb55-client — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: MariaDB — Vulnerability in C API Related CVEs: CVE-2015-3152 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836  +12 more Upstream summary: MariaDB reports: Difficult to exploit vulnerability allows unauthenticated attacker with […]

Read more
FreeBSD 13 — openexr — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — openexr — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openexr — multiple vulnerabilities Related CVEs: CVE-2018-18443 CVE-2018-18444 CVE-2021-20296 CVE-2021-3474 CVE-2021-3475 CVE-2021-3476 CVE-2021-3477 CVE-2021-3478  +12 more Upstream summary: Cary Phillips reports: [OpenEXR v3.4.11 is a p]atch release that addresses the […]

Read more
CHAT