FreeBSD

FreeBSD 15 — py-asyncssh — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py-asyncssh — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-asyncssh — Allows bypass of authentication Upstream summary: mitre.org Reports: The SSH server implementation of AsyncSSH before 1.12.1 does not properly check whether authentication is completed before processing other requests […]

Read more
FreeBSD 15 — gpgme — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — gpgme — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gpgme — heap-based buffer overflow in gpgsm status handler Related CVEs: CVE-2014-3564 Upstream summary: Tomas Trnka reports: Gpgme contains a buffer overflow in the gpgsm status handler that could possibly […]

Read more
FreeBSD 15 — php72-imap — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — php72-imap — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-imap — imap_open allows to run arbitrary shell commands via mailbox parameter Upstream summary: The PHP team reports: imap_open allows to run arbitrary shell commands via mailbox parameter. Table of […]

Read more
FreeBSD 14 — shotwell — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — shotwell — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: shotwell — failure to encrypt authentication Upstream summary: Jens Georg reports: I have just released Shotwell 0.24.5 and 0.25.4 which turn on HTTPS encryption all over the publishing plugins. Users […]

Read more
FreeBSD 13 — py39-psutil — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py39-psutil — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-psutil — double free vulnerability Related CVEs: CVE-2019-18874 Upstream summary: ret2libc reports: psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs because of refcount mishandling within a […]

Read more
FreeBSD 15 — vips — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — vips — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Fix a buffer overflow in the tiff reader Upstream summary: libvips reports: A buffer overflow was found and fixed in the libvips code Table of contents Symptom & Impact Environment […]

Read more
FreeBSD 13 — py37-kerberos — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py37-kerberos — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-kerberos — DoS and MitM vulnerabilities Related CVEs: CVE-2015-3206 Upstream summary: macosforgebot reports: The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows […]

Read more
FreeBSD 13 — py310-kerberos — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py310-kerberos — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-kerberos — DoS and MitM vulnerabilities Related CVEs: CVE-2015-3206 Upstream summary: macosforgebot reports: The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows […]

Read more
FreeBSD 12 — isc-dhcp31-server — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — isc-dhcp31-server — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcp-server — server halt upon processing certain packets Related CVEs: CVE-2011-2748 CVE-2011-2749 Upstream summary: ISC reports: A pair of defects cause the server to halt upon processing certain packets. The […]

Read more
CHAT