FreeBSD 14

FreeBSD 14 — fish — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — fish — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: shells/fish — arbitrary code execution via git Related CVEs: CVE-2014-2905 CVE-2014-2906 CVE-2014-2914 CVE-2014-3219 CVE-2014-3856 CVE-2022-20001 Upstream summary: Peter Ammon reports: fish is a command line shell. fish version 3.1.0 through […]

Read more
FreeBSD 14 — sgeee — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — sgeee — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sge — local root exploit in bundled rsh executable Upstream summary: Sun Microsystems reports: The SGE 6.0u7_1 release fixes a security bug which can allow malicious users to gain root […]

Read more
FreeBSD 14 — fuser — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — fuser — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fuser — missing user's privileges check Upstream summary: Denis Barov reports: sysutils/fuser allows user to send any signal to any process when installed with suid bit. Table of contents Symptom […]

Read more
FreeBSD 14 — squirrelmail-multilogin-plugin — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — squirrelmail-multilogin-plugin — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SquirrelMail — Plug-ins compromise Upstream summary: Problem Description: The SquirrelMail Web Server has been compromised, and three plugins are affected. The port of squirrelmail-sasql-plugin is safe (right MD5), and change_pass […]

Read more
FreeBSD 14 — pyblosxom — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — pyblosxom — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pyblosxom — atom flavor multiple XML injection vulnerabilities Upstream summary: Security Focus reports: PyBlosxom is prone to multiple XML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before […]

Read more
FreeBSD 14 — horde-imp — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — horde-imp — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: horde-imp — XSS vulnerability Upstream summary: The Horde team reports: Thanks to Naumann IT Security Consulting for reporting the XSS vulnerability. The major changes compared to IMP version H3 (4.3.7) […]

Read more
FreeBSD 14 — dojo — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — dojo — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dojo — cross-site scripting and other vulnerabilities Upstream summary: The Dojo Toolkit team reports: Some PHP files did not properly escape input. Some files could operate like "open redirects". A […]

Read more
FreeBSD 14 — sieve-connect — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — sieve-connect — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sieve-connect — TLS hostname verification was not occurring Upstream summary: sieve-connect developer Phil Pennock reports: sieve-connect was not actually verifying TLS certificate identities matched the expected hostname. Table of contents […]

Read more
CHAT