FreeBSD 14

FreeBSD 14 — p5-Catalyst-Authentication-Credential-HTTP — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — p5-Catalyst-Authentication-Credential-HTTP — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: p5-Catalyst-Authentication-Credential-HTTP — Insecure source of randomness Related CVEs: CVE-2025-40920 Upstream summary: perl-catalyst project reports: Catalyst::Authentication::Credential::HTTP versions 1.018 and earlier for Perl generate nonces using the Perl Data::UUID library. * Data::UUID […]

Read more
FreeBSD 14 — py39-h — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py39-h — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: h11 accepts some malformed Chunked-Encoding bodies Related CVEs: CVE-2025-43859 Upstream summary: h11 reports: h11 is a Python implementation of HTTP/1.1. Prior to version 0.16.0, a leniency in h11's parsing of […]

Read more
FreeBSD 14 — mailman-exim4-with-htdig — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — mailman-exim4-with-htdig — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mailman < 2.1.38 — CSRF vulnerability of list mod or member against list admin page Related CVEs: CVE-2021-43331 CVE-2021-43332 CVE-2021-44227 Upstream summary: Mark Sapiro reports: A list moderator or list […]

Read more
FreeBSD 14 — zeek — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — zeek — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: zeek — potential DoS vulnerability Upstream summary: Wojtulewicz of Corelight reports: A specially-crafted series of MIME headers sent via SMTP or HTTP could cause Zeek to use large amounts of […]

Read more
FreeBSD 14 — netqmail — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — netqmail — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: qmail — 64 bit integer overflows with possible remote code execution on large SMTP requests Related CVEs: CVE-2005-1513 CVE-2005-1514 CVE-2005-1515 Upstream summary: Georgi Guninski writes: There are several issues with […]

Read more
FreeBSD 14 — sudosh — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — sudosh — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sudosh — buffer overflow Upstream summary: ISS reports: sudosh2 and sudosh3 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the replay() function. By persuading a […]

Read more
FreeBSD 14 — nas — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — nas — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nas — multiple vulnerabilities Related CVEs: CVE-2013-4256 CVE-2013-4257 CVE-2013-4258 Upstream summary: Hamid Zamani reports: multiple security problems (buffer overflows, format string vulnerabilities and missing input sanitising), which could lead to […]

Read more
FreeBSD 14 — bmon — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — bmon — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bmon — unsafe set-user-ID application Upstream summary: Jon Nistor reported that the FreeBSD port of bmon was installed set-user-ID root, and executes commands using relative paths. This could allow local […]

Read more
CHAT