FreeBSD

FreeBSD 15 — xlockmore — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — xlockmore — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xlockmore — local exploit Related CVEs: CVE-2012-4524 Upstream summary: Ignatios Souvatzis of NetBSD reports: Due to an error in the dclock screensaver in xlockmore, users who explicitly use this screensaver […]

Read more
FreeBSD 14 — viewvc-devel — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — viewvc-devel — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: viewvc — Arbitrary server filesystem content Related CVEs: CVE-2025-54141 Upstream summary: cmpilato reports: The ViewVC standalone web server (standalone.py) is a script provided in the ViewVC distribution for the purposes […]

Read more
FreeBSD 12 — py39-social-auth-app-django — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py39-social-auth-app-django — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2024-32879 CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not […]

Read more
FreeBSD 12 — oniguruma — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — oniguruma — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: oniguruma — multiple vulnerabilities Related CVEs: CVE-2017-9224 CVE-2017-9226 CVE-2017-9227 CVE-2017-9228 CVE-2019-13224 CVE-2019-13225 Upstream summary: A use-after-free in onig_new_deluxe() in regext.c in Oniguruma 6.9.2 allows attackers to potentially cause information disclosure, […]

Read more
FreeBSD 14 — postgresql-jdbc — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — postgresql-jdbc — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL JDBC library — Improper Authentication Related CVEs: CVE-2025-49146 Upstream summary: PostgreSQL JDBC Driver project reports: Client Allows Fallback to Insecure Authentication Despite channelBinding=require configuration. Fix channel binding required handling […]

Read more
FreeBSD 12 — gogs — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — gogs — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gogs — Multiple vulnerabilities Related CVEs: CVE-2022-1464 CVE-2024-39930 CVE-2024-39931 CVE-2024-39932 CVE-2024-39933 CVE-2024-44625 Upstream summary: [email protected] reports: CVE-2024-44625: Directory Traversal via the editFilePost function of internal/route/repo/editor.go. CVE-2024-39933: Gogs allows argument injection […]

Read more
FreeBSD 15 — pypy — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — pypy — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Python — DoS via malformed XML-RPC / HTTP POST request Related CVEs: CVE-2012-0845 Upstream summary: Jan Lieskovsky reports, A denial of service flaw was found in the way Simple XML-RPC […]

Read more
FreeBSD 13 — libevent — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — libevent — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libevent — multiple vulnerabilities Related CVEs: CVE-2014-6272 CVE-2016-10195 CVE-2016-10196 CVE-2016-10197 Upstream summary: Debian Security reports: CVE-2016-10195: The name_parse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have […]

Read more
CHAT