FreeBSD

FreeBSD 12 — py37-flask-security — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py37-flask-security — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-flask-security — user redirect to arbitrary URL vulnerability Related CVEs: CVE-2021-23385 Upstream summary: Snyk reports: This affects all versions of package Flask-Security. When using the `get_post_logout_redirect` and `get_post_login_redirect` functions, it […]

Read more
FreeBSD 15 — subversion-python — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — subversion-python — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: subversion — WebDAV fails to protect metadata Related CVEs: CVE-2004-0749 Upstream summary: In some situations, subversion metadata may be unexpectedly disclosed via WebDAV. A subversion advisory states: mod_authz_svn, the Apache […]

Read more
FreeBSD 12 — imlib — multiple vulnerabilities (12 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — imlib — multiple vulnerabilities (12 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: imlib2 — denial of service vulnerabilities Related CVEs: CVE-2004-0802 CVE-2004-0817 CVE-2004-1025 CVE-2004-1026 CVE-2006-4806 CVE-2006-4807 CVE-2006-4808 CVE-2006-4809  +4 more Upstream summary: Enlightenment reports: GIF loader: Fix segv on images without colormap […]

Read more
FreeBSD 13 — otrs — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — otrs — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OTRS — Multiple vulnerabilities Related CVEs: CVE-2010-0438 CVE-2010-2080 CVE-2010-4071 CVE-2011-1518 CVE-2011-2746 CVE-2012-2582 CVE-2012-4600 CVE-2012-4751  +12 more Upstream summary: OTRS reports: An attacker who is logged into OTRS as an agent […]

Read more
FreeBSD 12 — dendrite — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — dendrite — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dendrite — Server-side request forgery vulnerability Related CVEs: CVE-2022-36009 CVE-2024-52594 Upstream summary: Dendrite team reports: This is a security release, gomatrixserverlib was vulnerable to server-side request forgery, serving content from […]

Read more
FreeBSD 14 — xzgv — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — xzgv — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: zgv, xzgv — heap overflow vulnerability Related CVEs: CVE-2004-0994 CVE-2006-1060 Upstream summary: Gentoo reports: Andrea Barisani of Gentoo Linux discovered xzgv and zgv allocate insufficient memory when rendering images with […]

Read more
FreeBSD 14 — py27-graphite-web — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py27-graphite-web — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-graphite-web — Multiple vulnerabilities Related CVEs: CVE-2013-5093 Upstream summary: Graphite developers report: This release contains several security fixes for cross-site scripting (XSS) as well as a fix for a remote-execution […]

Read more
FreeBSD 15 — fspd — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — fspd — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fsp buffer overflow and directory traversal vulnerabilities Related CVEs: CVE-2003-1022 CVE-2004-0011 Upstream summary: The Debian security team reported a pair of vulnerabilities in fsp: A vulnerability was discovered in fsp, […]

Read more
FreeBSD 12 — pyblosxom — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — pyblosxom — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pyblosxom — atom flavor multiple XML injection vulnerabilities Upstream summary: Security Focus reports: PyBlosxom is prone to multiple XML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before […]

Read more
FreeBSD 13 — squid-devel — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — squid-devel — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: squid — Vulnerable to Denial of Service attack Related CVEs: CVE-2016-10002 CVE-2016-10003 CVE-2016-4553 CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 CVE-2018-1000024 CVE-2018-1000027 Upstream summary: Louis Dion-Marcil reports: Due to incorrect pointer handling Squid is […]

Read more
CHAT