FreeBSD

FreeBSD 13 — php82-composer — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — php82-composer — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PHP Composer — Multiple vulnerabilities Related CVEs: CVE-2023-43655 CVE-2024-24821 CVE-2024-35241 CVE-2024-35242 CVE-2026-40176 CVE-2026-40261 Upstream summary: Composer project reports: Fixed command injection via malicious Perforce reference (GHSA-gqw4-4w2p-838q / CVE-2026-40261) Fixed command […]

Read more
FreeBSD 15 — golddig — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — golddig — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: golddig — local buffer overflow vulnerabilities Related CVEs: CVE-2005-0121 Upstream summary: Two buffer overflow vulnerabilities where detected. Both issues can be used by local users to gain group games privileges […]

Read more
FreeBSD 13 — rubygem-sinatra — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — rubygem-sinatra — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sinatra — XSS vulnerability Related CVEs: CVE-2018-11627 Upstream summary: Sinatra blog: Sinatra had a critical vulnerability since v2.0.0. The purpose of this release is to fix CVE-2018-11627. The vulnerability is […]

Read more
FreeBSD 12 — php70-imap — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — php70-imap — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-imap — imap_open allows to run arbitrary shell commands via mailbox parameter Upstream summary: The PHP team reports: imap_open allows to run arbitrary shell commands via mailbox parameter. Table of […]

Read more
FreeBSD 13 — icecast — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — icecast — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: icecast — Cross-Site Scripting Vulnerability Related CVEs: CVE-2001-0784 CVE-2001-1083 CVE-2001-1229 CVE-2001-1230 CVE-2002-0177 CVE-2004-0781 Upstream summary: Caused by improper filtering of HTML code in the status display, it is possible for […]

Read more
FreeBSD 12 — linux-f10-curl — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — linux-f10-curl — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cURL — inappropriate GSSAPI delegation Related CVEs: CVE-2011-2192 Upstream summary: cURL reports: When doing GSSAPI authentication, libcurl unconditionally performs credential delegation. This hands the server a copy of the client's […]

Read more
FreeBSD 12 — linux-c7-libssh — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — linux-c7-libssh — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libssh2 — multiple issues Related CVEs: CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862  +1 more Upstream summary: libssh2 developers report: Defend against possible integer overflows in comp_method_zlib_decomp. Defend against […]

Read more
FreeBSD 15 — php-suhosin — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — php-suhosin — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — open_basedir Race Condition Vulnerability Related CVEs: CVE-2006-5178 Upstream summary: Stefan Esser reports: PHP's open_basedir feature is meant to disallow scripts to access files outside a set of configured […]

Read more
FreeBSD 12 — linux-tiff — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — linux-tiff — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tiff — Multiple integer overflows Related CVEs: CVE-2004-0803 CVE-2004-0804 CVE-2004-0886 CVE-2004-1183 CVE-2004-1308 CVE-2005-1544 CVE-2009-2347 CVE-2010-1411 Upstream summary: Tielei Wang: Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 […]

Read more
FreeBSD 13 — go-devel — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — go-devel — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: go — invalid headers are normalized, allowing request smuggling Related CVEs: CVE-2019-16276 Upstream summary: The Go project reports: net/http (through net/textproto) used to accept and normalize invalid HTTP/1.1 headers with […]

Read more
CHAT