FreeBSD 15

FreeBSD 15 — Thunderbird — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — Thunderbird — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Mozilla — Sandbox escape Related CVEs: CVE-2025-14321 CVE-2025-14322 Upstream summary: https://bugzilla.mozilla.org/show_bug.cgi?id=1996473 reports: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. Table of contents Symptom & Impact […]

Read more
FreeBSD 15 — tt-rss — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — tt-rss — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tt-rss — multiple vulnerabilities Related CVEs: CVE-2016-10033 CVE-2016-10045 CVE-2016-6175 CVE-2017-5223 CVE-2020-25787 CVE-2020-25788 CVE-2020-25789 Upstream summary: tt-rss project reports: The cached_url feature mishandles JavaScript inside an SVG document. imgproxy in plugins/af_proxy_http/init.php […]

Read more
FreeBSD 15 — xpm — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — xpm — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xpm — image decoding vulnerabilities Related CVEs: CVE-2004-0687 CVE-2004-0688 Upstream summary: Chris Evans discovered several vulnerabilities in the libXpm image decoder: A stack-based buffer overflow in xpmParseColors An integer overflow […]

Read more
FreeBSD 15 — libadplug — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — libadplug — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libadplug — Various vulnerabilities Related CVEs: CVE-2019-14690 CVE-2019-14691 CVE-2019-14692 CVE-2019-14732 CVE-2019-14733 CVE-2019-14734 CVE-2019-15151 Upstream summary: Malvineous on Github reports: This release fixes the following security issues: buffer overflow in .bmf […]

Read more
FreeBSD 15 — openssh — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — openssh — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openssh — multiple vulnerabilities Related CVEs: CVE-2006-4924 CVE-2006-5051 Upstream summary: Problem Description The CRC compensation attack detector in the sshd(8) daemon, upon receipt of duplicate blocks, uses CPU time cubic […]

Read more
FreeBSD 15 — file — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — file — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: file — Heap buffer overflow possible Related CVEs: CVE-2007-1536 CVE-2014-1943 CVE-2014-2270 CVE-2014-3710 CVE-2014-8116 CVE-2014-8117 Upstream summary: mitre reports cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number […]

Read more
FreeBSD 15 — libreoffice — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — libreoffice — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libreoffice — Macro URL arbitrary script execution Related CVEs: CVE-2015-1774 CVE-2016-4324 CVE-2018-6871 CVE-2020-12802 CVE-2020-12803 CVE-2025-1080 Upstream summary: [email protected] reports: LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice […]

Read more
FreeBSD 15 — isc-dhcp31-server — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — isc-dhcp31-server — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcp-server — server halt upon processing certain packets Related CVEs: CVE-2011-2748 CVE-2011-2749 Upstream summary: ISC reports: A pair of defects cause the server to halt upon processing certain packets. The […]

Read more
FreeBSD 15 — lha — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — lha — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: lha — numerous vulnerabilities when extracting archives Related CVEs: CVE-2004-0234 CVE-2004-0235 CVE-2004-0694 CVE-2004-0745 CVE-2004-0769 CVE-2004-0771 Upstream summary: Source code reviews of lha by Lukasz Wojtow, Thomas Biege, and others uncovered […]

Read more
FreeBSD 15 — linux-c6-flac — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — linux-c6-flac — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: flac — Multiple vulnerabilities Related CVEs: CVE-2014-8962 CVE-2014-9028 Upstream summary: Erik de Castro Lopo reports: Google Security Team member, Michele Spagnuolo, recently found two potential problems in the FLAC code […]

Read more
CHAT