FreeBSD 14

FreeBSD 14 — softether-devel — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — softether-devel — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SoftEtherVPN — multiple vulnerabilities Related CVEs: CVE-2023-22325 CVE-2023-27395 CVE-2023-27516 CVE-2023-31192 CVE-2023-32275 CVE-2023-32634 Upstream summary: Daiyuu Nobori reports: The SoftEther VPN project received a high level code review and technical assistance […]

Read more
FreeBSD 14 — bouncycastle — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — bouncycastle — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bouncycastle15 — bcrypt password checking vulnerability Related CVEs: CVE-2017-13098 CVE-2018-1000180 CVE-2018-1000613 CVE-2020-15522 CVE-2020-28052 Upstream summary: The Bouncy Castle team reports: The OpenBSDBCrypt.checkPassword utility method compared incorrect data when checking the […]

Read more
FreeBSD 14 — openldap-server — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — openldap-server — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openldap — denial of service vulnerability Related CVEs: CVE-2006-4600 CVE-2007-5707 CVE-2007-5708 CVE-2008-0658 CVE-2015-6908 Upstream summary: Denis Andzakovic reports: By sending a crafted packet, an attacker may cause the OpenLDAP server […]

Read more
FreeBSD 14 — WebCalendar — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — WebCalendar — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: WebCalendar — Persistent XSS Related CVEs: CAN-2005-2320 CVE-2005-2717 CVE-2006-2762 CVE-2007-1343 CVE-2012-0846 Upstream summary: tom reports, There is no sanitation on the input of the location variable allowing for persistent XSS. […]

Read more
FreeBSD 14 — python313t — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — python313t — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Python — The webbrowser.open() API allows leading dashes Related CVEs: CVE-2025-15366 CVE-2025-15367 CVE-2026-0865 CVE-2026-1299 CVE-2026-4519 Upstream summary: https://github.com/python/cpython/pull/143931 reports: The webbrowser.open() API would accept leading dashes in the URL which […]

Read more
FreeBSD 14 — ipython — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — ipython — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: devel/ipython — multiple vulnerabilities Related CVEs: CVE-2015-4706 CVE-2015-4707 CVE-2015-5607 CVE-2015-6938 CVE-2015-7337 Upstream summary: Matthias Bussonnier reports: Summary: Local folder name was used in HTML templates without escaping, allowing XSS in […]

Read more
FreeBSD 14 — opendmarc — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — opendmarc — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenDMARC – Remote denial of service Related CVEs: CVE-2019-16378 CVE-2019-20790 CVE-2020-12272 CVE-2020-12460 CVE-2021-34555 Upstream summary: OpenDMARC 1.4.1 and 1.4.1.1 will dereference a NULL pointer when encountering a multi-value From: header […]

Read more
FreeBSD 14 — sdl2_sound — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — sdl2_sound — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sdl2_sound — multiple vulnerabilities Related CVEs: CVE-2023-45676 CVE-2023-45677 CVE-2023-45680 CVE-2023-45681 CVE-2023-45682 Upstream summary: GitHub Security Lab reports: stb_image.h and stb_vorbis libraries contain several memory access violations of different severity Wild […]

Read more
FreeBSD 14 — jakarta-tomcat — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — jakarta-tomcat — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tomcat — XSS vulnerability in sample applications Related CVEs: CVE-2005-2090 CVE-2007-0450 CVE-2007-1355 CVE-2007-1358 Upstream summary: The Apache Project reports: The JSP and Servlet included in the sample application within the […]

Read more
FreeBSD 14 — roundcube — multiple vulnerabilities (16 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — roundcube — multiple vulnerabilities (16 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Roundcube — Multiple vulnerabilities Related CVEs: CVE-2008-5619 CVE-2009-0413 CVE-2011-2937 CVE-2012-3508 CVE-2013-1904 CVE-2015-5381 CVE-2015-5383 CVE-2016-5103  +8 more Upstream summary: The Roundcube project reports: Cross-Site-Scripting vulnerability via SVG’s animate tag Information Disclosure […]

Read more
CHAT