FreeBSD

FreeBSD 12 — erlang — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — erlang — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Erlang – Absolute Path in Zip Module Related CVEs: CVE-2011-0766 CVE-2025-32433 CVE-2025-4748 Upstream summary: https://github.com/erlang/otp/security/advisories/GHSA-9g37-pgj9-wrhc reports: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang […]

Read more
FreeBSD 12 — bitcoin — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — bitcoin — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bitcoin — Denial of Service and Possible Mining Inflation Related CVEs: CVE-2012-3789 CVE-2015-3641 CVE-2018-17144 Upstream summary: Bitcoin Core reports: CVE-2018-17144, a fix for which was released on September 18th in […]

Read more
FreeBSD 15 — py38-pyrad — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py38-pyrad — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pyrad — multiple vulnerabilities Related CVEs: CVE-2013-0294 CVE-2013-0342 Upstream summary: Nathaniel McCallum reports: packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which […]

Read more
FreeBSD 13 — a2ps-letter — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — a2ps-letter — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: a2ps — insecure temporary file creation Related CVEs: CVE-2004-1170 CVE-2004-1377 Upstream summary: A Secunia Security Advisory reports that Javier Fernández-Sanguino Peña has found temporary file creation vulnerabilities in the fixps […]

Read more
FreeBSD 13 — squirrelmail — multiple vulnerabilities (14 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — squirrelmail — multiple vulnerabilities (14 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SquirrelMail — post-authentication access privileges Related CVEs: CVE-2004-1036 CVE-2005-0075 CVE-2005-0103 CVE-2005-0104 CVE-2005-1769 CVE-2005-2095 CVE-2006-0188 CVE-2006-0195  +6 more Upstream summary: Florian Grunow reports: An attacker able to exploit this vulnerability can […]

Read more
FreeBSD 13 — monotone — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — monotone — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: monotone — remote denial of service in default setup Upstream summary: The monotone developers report: Running "mtn ''" or "mtn ls ''" doesn't cause an internal error anymore. In monotone […]

Read more
FreeBSD 15 — websvn — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — websvn — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: websvn — reflected cross-site scripting Related CVEs: CVE-2008-5918 CVE-2008-5919 CVE-2009-0240 CVE-2013-6892 CVE-2016-2511 Upstream summary: Sebastien Delafond reports: Jakub Palaczynski discovered that websvn, a web viewer for Subversion repositories, does not […]

Read more
FreeBSD 14 — apache-struts — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — apache-struts — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Apache Commons FileUpload — denial of service (DoS) vulnerability Related CVEs: CVE-2016-3092 Upstream summary: Mark Thomas reports: CVE-2016-3092 is a denial of service vulnerability that has been corrected in the […]

Read more
FreeBSD 12 — freexl — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — freexl — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Multiple exploitable heap-based buffer overflow vulnerabilities exists in FreeXL 1.0.3 Related CVEs: CVE-2015-2776 CVE-2017-2923 CVE-2017-2924 Upstream summary: Cisco TALOS reports: An exploitable heap based buffer overflow vulnerability exists in the […]

Read more
FreeBSD 13 — postgresql91-server — multiple vulnerabilities (14 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — postgresql91-server — multiple vulnerabilities (14 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL — Denial-of-Service and Code Injection Vulnerabilities Related CVEs: CVE-2014-8161 CVE-2015-0241 CVE-2015-0242 CVE-2015-0243 CVE-2015-0244 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167  +6 more Upstream summary: PostgreSQL project reports: Security Fixes nested CASE expressions + […]

Read more
CHAT