FreeBSD 13

FreeBSD 13 — coturn — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — coturn — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: coturn — information leakage Related CVEs: CVE-2020-4067 Upstream summary: Felix Dörre reports: The issue is that STUN/TURN response buffer is not initialized properly. (CWE 665) This is a leak of […]

Read more
FreeBSD 13 — openldap24-server — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — openldap24-server — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nested filters leads to stack overflow Related CVEs: CVE-2020-12243 Upstream summary: Howard Chu reports: nested filters leads to stack overflow Table of contents Symptom & Impact Environment & Reproduction Root […]

Read more
FreeBSD 13 — php81-composer — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — php81-composer — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Composer — Multiple command injections via malicious git/hg branch names Related CVEs: CVE-2022-24828 CVE-2023-43655 CVE-2024-24821 CVE-2024-35241 CVE-2024-35242 Upstream summary: Composer project reports: The status, reinstall and remove commands with packages […]

Read more
FreeBSD 13 — py37-fail2ban — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py37-fail2ban — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fail2ban — possible RCE vulnerability in mailing action using mailutils Related CVEs: CVE-2021-32749 Upstream summary: Jakub Żoczek reports: Command mail from mailutils package used in mail actions like mail-whois can […]

Read more
FreeBSD 13 — gtar — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — gtar — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gtar — buffer overflow in rmt client Related CVEs: CVE-2006-0300 CVE-2006-6097 CVE-2007-4131 CVE-2007-4476 CVE-2010-0624 Upstream summary: Jakob Lell reports: The rmt client implementation of GNU Tar/Cpio contains a heap-based buffer […]

Read more
FreeBSD 13 — mambo — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — mambo — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mambo — multiple SQL injection vulnerabilities Related CVEs: CVE-2005-2002 CVE-2006-0871 CVE-2006-1794 CVE-2006-3262 CVE-2006-3263 Upstream summary: James Bercegay reports: Mambo is vulnerable to an Authentication Bypass issue that is due to […]

Read more
FreeBSD 13 — mdbook — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — mdbook — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mdbook — XSS in mdBook's search page Related CVEs: CVE-2020-26297 Upstream summary: Rust Security Response Working Group reports: The search feature of mdBook (introduced in version 0.1.4) was affected by […]

Read more
FreeBSD 13 — crispy-doom — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — crispy-doom — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chocolate-doom — Arbitrary code execution Related CVEs: CVE-2020-14983 Upstream summary: Michal Dardas from LogicalTrust reports: The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players […]

Read more
FreeBSD 13 — libexo — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — libexo — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: XFCE — Allows executing malicious .desktop files pointing to remote code Related CVEs: CVE-2022-32278 Upstream summary: XFCE Project reports: Prevent executing possibly malicious .desktop files from online sources (ftp://, http:// […]

Read more
FreeBSD 13 — rubygem-activeresource — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — rubygem-activeresource — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rails — multiple vulnerabilities Related CVEs: CVE-2013-4491 CVE-2013-6414 CVE-2013-6415 CVE-2013-6416 CVE-2013-6417 Upstream summary: Rails weblog: Rails 3.2.16 and 4.0.2 have been released! These two releases contain important security fixes, so […]

Read more
CHAT