FreeBSD 13

FreeBSD 13 — php5-zip — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — php5-zip — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — ZipArchive segfault with FL_UNCHANGED on empty archive Related CVEs: CVE-2010-3709 CVE-2011-0421 Upstream summary: US-CERT/NIST reports: The _zip_name_locate function in zip_name_locate.c in the Zip extension in PHP before 5.3.6 […]

Read more
FreeBSD 13 — apache-event — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — apache-event — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Apache — Insecure LD_LIBRARY_PATH handling Related CVEs: CVE-2011-3192 CVE-2012-0883 Upstream summary: Apache reports: Insecure handling of LD_LIBRARY_PATH was found that could lead to the current working directory to be searched […]

Read more
FreeBSD 13 — wget — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — wget — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wget — security flaw in caching credentials passed as a part of the URL Related CVEs: CVE-2004-1487 CVE-2004-1488 CVE-2010-2252 CVE-2014-4877 CVE-2016-4971 CVE-2016-7098 CVE-2017-13089 CVE-2017-13090  +2 more Upstream summary: Gynvael Coldwind […]

Read more
FreeBSD 13 — linux-c7-expat — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — linux-c7-expat — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Vulnerability found in Expat Related CVEs: CVE-2016-0718 CVE-2026-45186 Upstream summary: Expat 2.8.1 was released yesterday. The key motivation for cutting a release and doing so now was: Fixing vulnerability CVE-2026-45186 […]

Read more
FreeBSD 13 — pear-Horde_Image — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — pear-Horde_Image — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pear-Horde_Image — DoS vulnerability Related CVEs: CVE-2017-9773 CVE-2017-9774 Upstream summary: Michael J Rubinsky reports: The second vulnerability (CVE-2017-9773) is a DOS vulnerability. This only affects Horde installations that do not […]

Read more
FreeBSD 13 — qutebrowser — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — qutebrowser — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: qutebrowser — Reloading page with certificate errors shows a green URL Related CVEs: CVE-2018-10895 CVE-2020-11054 Upstream summary: Qutebrowser developers report: After a certificate error was overridden by the user, qutebrowser […]

Read more
FreeBSD 13 — py36-buildbot — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py36-buildbot — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: buildbot — OAuth Authentication Vulnerability Related CVEs: CVE-2019-12300 CVE-2019-7313 Upstream summary: Buildbot accepted user-submitted authorization token from OAuth and used it to authenticate user. The vulnerability can lead to malicious […]

Read more
FreeBSD 13 — chicken — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — chicken — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chicken — multiple vulnerabilities Related CVEs: CVE-2014-9651 CVE-2015-4556 CVE-2016-6830 CVE-2016-6831 CVE-2016-9954 CVE-2017-11343 CVE-2017-6949 CVE-2017-9334 Upstream summary: CHICKEN reports: CVE-2017-6949: Unchecked malloc() call in SRFI-4 constructors when allocating in non-GC memory, […]

Read more
FreeBSD 13 — prometheus — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — prometheus — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: prometheus2 — basic authentication bypass Related CVEs: CVE-2021-29622 CVE-2022-46146 Upstream summary: Prometheus team reports: Prometheus and its exporters can be secured by a web.yml file that specifies usernames and hashed […]

Read more
FreeBSD 13 — php5-odbc — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — php5-odbc — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2007-0905 CVE-2007-0906 CVE-2007-0907 CVE-2007-0908 CVE-2007-0909 CVE-2007-0910 CVE-2007-0988 CVE-2007-1001 Upstream summary: The PHP development team reports: Security Enhancements and Fixes in PHP 5.2.2 and PHP […]

Read more
CHAT