FreeBSD 15

FreeBSD 15 — ipsec-tools — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — ipsec-tools — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ipsec-tools — remotely exploitable computational-complexity attack Related CVEs: CVE-2008-3651 CVE-2008-3652 CVE-2016-10396 Upstream summary: Robert Foggia via NetBSD GNATS reports: The ipsec-tools racoon daemon contains a remotely exploitable computational complexity attack […]

Read more
FreeBSD 15 — librsvg — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — librsvg — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: librsvg2 — multiple vulnerabilities Related CVEs: CVE-2015-7557 CVE-2015-7558 CVE-2019-20446 Upstream summary: Librsvg2 developers reports: Backport the following fixes from 2.46.x: Librsvg now has limits on the number of loaded XML […]

Read more
FreeBSD 15 — rubygem-loofah — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — rubygem-loofah — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Loofah — XSS vulnerability Related CVEs: CVE-2018-16468 CVE-2018-8048 CVE-2019-15587 Upstream summary: GitHub issue: This issue has been created for public disclosure of an XSS vulnerability that was responsibly reported by […]

Read more
FreeBSD 15 — pligg — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — pligg — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Pligg CMS — XSS Vulnerability Related CVEs: CVE-2009-4786 CVE-2009-4787 CVE-2009-4788 Upstream summary: Netsparker reports: Proof of Concept URL for XSS in Pligg CMS: Page: groups.php Parameter Name: keyword Parameter Type: […]

Read more
FreeBSD 15 — rubygem-mail — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — rubygem-mail — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-mail — multiple vulnerabilities Related CVEs: CVE-2011-0739 CVE-2012-2139 CVE-2012-2140 Upstream summary: rubygem-mail — multiple vulnerabilities Two issues were fixed. They are a file system traversal in file_delivery method and arbitrary […]

Read more
FreeBSD 15 — py39-h — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py39-h — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: h11 accepts some malformed Chunked-Encoding bodies Related CVEs: CVE-2025-43859 Upstream summary: h11 reports: h11 is a Python implementation of HTTP/1.1. Prior to version 0.16.0, a leniency in h11's parsing of […]

Read more
FreeBSD 15 — py312-virtualenv — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py312-virtualenv — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: virtualenv — CWE-59: Improper Link Resolution Before File Access ('Link Following') Related CVEs: CVE-2026-22702 Upstream summary: https://github.com/pypa/virtualenv/security/advisories/GHSA-597g-3phw-6986 reports: virtualenv is a tool for creating isolated virtual python environments. Prior to […]

Read more
FreeBSD 15 — libsodium — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — libsodium — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: security/libsodium — crypto_core_ed25519_is_valid_point mishandles checks for whether an elliptic curve point is valid Related CVEs: CVE-2025-69277 Upstream summary: Libsodium maintainer reports: The function crypto_core_ed25519_is_valid_point(), a low-level function used to check […]

Read more
FreeBSD 15 — mybb — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — mybb — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mybb — multible vulnerabilities Upstream summary: mybb Team reports: High risk: Installer RCE on settings file write Medium risk: Arbitrary upload paths and Local File Inclusion RCE Medium risk: XSS […]

Read more
CHAT