FreeBSD

FreeBSD 13 — graphite — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — graphite — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: graphite2 — out-of-bounds write with malicious font Related CVEs: CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 CVE-2016-1969 CVE-2016-1977 CVE-2016-2790 CVE-2016-2791  +12 more Upstream summary: Mozilla Foundation reports: An out-of-bounds write in the Graphite […]

Read more
FreeBSD 13 — ruby24-gems — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — ruby24-gems — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: RubyGems — multiple vulnerabilities Related CVEs: CVE-2017-0903 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 Upstream summary: RubyGems Security Advisories: CVE-2019-8320: Delete directory using symlink when decompressing tar CVE-2019-8321: Escape sequence injection […]

Read more
FreeBSD 12 — libksba — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — libksba — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libksba — local denial of service vulnerabilities Related CVEs: CVE-2016-4353 CVE-2016-4354 CVE-2016-4355 CVE-2016-4356 Upstream summary: Martin Prpic, Red Hat Product Security Team, reports: Denial of Service due to stack overflow […]

Read more
FreeBSD 13 — slurm-wlm — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — slurm-wlm — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: slurm-wlm — Several security issues Related CVEs: CVE-2018-7033 CVE-2023-49933 CVE-2023-49934 CVE-2023-49935 CVE-2023-49936 CVE-2023-49937 CVE-2023-49938 Upstream summary: Slurm releases notes: Description CVE-2023-49933 through CVE-2023-49938 Slurm versions 23.11.1, 23.02.7, 22.05.11 are now […]

Read more
FreeBSD 14 — ettercap — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — ettercap — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ettercap — out-of-bound read vulnerability Related CVEs: CVE-2013-0722 CVE-2017-6430 Upstream summary: Ettercap GitHub issue: Etterfilter results in an invalid read of 8 bytes when parsing a crafted file. Table of […]

Read more
FreeBSD 14 — py312-ormar — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py312-ormar — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-ormar — vulnerabilities Related CVEs: CVE-2026-26198 CVE-2026-27953 Upstream summary: https://github.com/ormar-orm/ormar/security/advisories reports: SQL Injection in aggregate functions min() and max() Pydantic Validation Bypass via __pk_only__ and __excluded__ Kwargs Injection in Model […]

Read more
FreeBSD 14 — owncloudclient — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — owncloudclient — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: owncloudclient — Improper validation of certificates when using self-signed certificates Related CVEs: CVE-2015-7298 Upstream summary: owncloud.org reports: The ownCloud Desktop Client was vulnerable against MITM attacks until version 2.0.0 in […]

Read more
FreeBSD 13 — postgresql96-server — multiple vulnerabilities (19 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — postgresql96-server — multiple vulnerabilities (19 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL — Possible man-in-the-middle attacks Related CVEs: CVE-2016-5423 CVE-2016-5424 CVE-2017-15098 CVE-2017-15099 CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 CVE-2018-1052  +11 more Upstream summary: The PostgreSQL Project reports: CVE-2021-23214: A man-in-the-middle with the ability to […]

Read more
FreeBSD 13 — py37-urllib — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py37-urllib — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: urllib3 — multiple vulnerabilities Related CVEs: CVE-2018-20060 CVE-2019-11236 CVE-2019-11324 Upstream summary: NIST reports: (by search in the range 2018/01/01 – 2019/11/10): urllib3 before version 1.23 does not remove the Authorization […]

Read more
FreeBSD 12 — py35-pillow — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py35-pillow — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Pillow — Multiple vulnerabilities Related CVEs: CVE-2016-0740 CVE-2016-0775 CVE-2016-9189 CVE-2016-9190 CVE-2019-16865 CVE-2019-19911 CVE-2020-5310 CVE-2020-5311  +2 more Upstream summary: Pillow developers report: This release addresses several security problems, as well as […]

Read more
CHAT