FreeBSD

FreeBSD 14 — py37-fail2ban — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py37-fail2ban — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fail2ban — possible RCE vulnerability in mailing action using mailutils Related CVEs: CVE-2021-32749 Upstream summary: Jakub Żoczek reports: Command mail from mailutils package used in mail actions like mail-whois can […]

Read more
FreeBSD 12 — py30-django-devel — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py30-django-devel — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: django — multiple vulnerabilities Related CVEs: CVE-2009-3695 CVE-2010-3082 Upstream summary: The Django project reports: Please reference CVE/URL list for details Table of contents Symptom & Impact Environment & Reproduction Root […]

Read more
FreeBSD 12 — rubygem-activestorage — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — rubygem-activestorage — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Rails — multiple vulnerabilities Related CVEs: CVE-2020-8162 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 Upstream summary: Ruby on Rails blog: Hi everyone! Rails 5.2.4.3 and 6.0.3.1 have been released! These releases contain important […]

Read more
FreeBSD 15 — py310-cinder — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py310-cinder — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cinder — unauthorized data access Related CVEs: CVE-2014-3641 CVE-2022-47951 Upstream summary: Utkarsh Gupta reports: An issue was discovered in OpenStack Cinder before 19.1.2, 20.x before 20.0.2, and 21.0.0; Glance before […]

Read more
FreeBSD 14 — caml-light — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — caml-light — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: caml-light — insecure use of temporary files Related CVEs: CVE-2011-4119 Upstream summary: caml-light uses mktemp() insecurely, and also does unsafe things in /tmp during make install. Table of contents Symptom […]

Read more
FreeBSD 14 — libbrotli — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — libbrotli — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: brotli — buffer overflow Related CVEs: CVE-2016-1624 CVE-2016-1968 Upstream summary: Google Chrome Releases reports: [583607] High CVE-2016-1624: Buffer overflow in Brotli. Credit to lukezli. Mozilla Foundation reports: Security researcher Luke […]

Read more
FreeBSD 12 — isakmpd — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — isakmpd — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isakmpd payload handling denial-of-service vulnerabilities Related CVEs: CVE-2004-0218 CVE-2004-0219 CVE-2004-0220 CVE-2004-0221 CVE-2004-0222 Upstream summary: Numerous errors in isakmpd's input packet validation lead to denial-of-service vulnerabilities. From the Rapid7 advisory: The […]

Read more
FreeBSD 13 — linux-c7-libssh — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — linux-c7-libssh — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libssh2 — multiple issues Related CVEs: CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862  +1 more Upstream summary: libssh2 developers report: Defend against possible integer overflows in comp_method_zlib_decomp. Defend against […]

Read more
FreeBSD 15 — py39-spotipy — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py39-spotipy — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Spotipy — Spotipy's cache file, containing spotify auth token, is created with overly broad permissions Related CVEs: CVE-2023-23608 CVE-2025-27154 Upstream summary: [email protected] reports: Spotipy is a lightweight Python library for […]

Read more
FreeBSD 13 — py37-matrix-synapse — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py37-matrix-synapse — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-matrix-synapse — unbounded recursion in urlpreview Related CVEs: CVE-2019-5885 CVE-2020-26257 CVE-2020-26891 CVE-2021-29471 CVE-2021-39163 CVE-2021-39164 CVE-2021-41281 CVE-2022-31052 Upstream summary: Matrix developers report: This release fixes a vulnerability with Synapse's URL preview […]

Read more
CHAT