FreeBSD

FreeBSD 15 — linux_base-rl — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — linux_base-rl — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sqlite — integer overflow Related CVEs: CVE-2025-3277 CVE-2025-6965 Upstream summary: [email protected] reports: An integer overflow can be triggered in SQLites `concat_ws()` function. The resulting, truncated integer is then used to […]

Read more
FreeBSD 15 — ja-gd — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — ja-gd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gd — integer overflow Related CVEs: CVE-2004-0990 Upstream summary: infamous41md reports about the GD Graphics Library: There is an integer overflow when allocating memory in the routine that handles loading […]

Read more
FreeBSD 14 — surf — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — surf — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: surf — private information disclosure Related CVEs: CVE-2012-0842 Upstream summary: surf does not protect its cookie jar against access read access from other local users Table of contents Symptom & […]

Read more
FreeBSD 14 — pg_partman — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — pg_partman — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PG Partition Manager — arbitrary code execution Related CVEs: CVE-2021-33204 Upstream summary: PG Partition Manager reports: In the pg_partman (aka PG Partition Manager) extension before 4.5.1 for PostgreSQL, arbitrary code […]

Read more
FreeBSD 14 — accountsservice — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — accountsservice — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: AccountsService — Insufficient path check in user_change_icon_file_authorized_cb() Related CVEs: CVE-2018-14036 Upstream summary: NVD reports: Directory Traversal with ../ sequences occurs in AccountsService before 0.6.50 because of an insufficient path check […]

Read more
FreeBSD 15 — tt-rss — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — tt-rss — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tt-rss — multiple vulnerabilities Related CVEs: CVE-2016-10033 CVE-2016-10045 CVE-2016-6175 CVE-2017-5223 CVE-2020-25787 CVE-2020-25788 CVE-2020-25789 Upstream summary: tt-rss project reports: The cached_url feature mishandles JavaScript inside an SVG document. imgproxy in plugins/af_proxy_http/init.php […]

Read more
FreeBSD 15 — sylpheed — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — sylpheed — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: claws-mail — POP3 Format String Vulnerability Related CVEs: CVE-2005-0667 CVE-2005-0926 CVE-2007-2958 Upstream summary: A Secunia Advisory reports: A format string error in the "inc_put_error()" function in src/inc.c when displaying a […]

Read more
FreeBSD 14 — chocolate-doom — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — chocolate-doom — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chocolate-doom — Arbitrary code execution Related CVEs: CVE-2020-14983 Upstream summary: Michal Dardas from LogicalTrust reports: The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players […]

Read more
FreeBSD 12 — py38-flask-security — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py38-flask-security — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-flask-security — user redirect to arbitrary URL vulnerability Related CVEs: CVE-2021-23385 Upstream summary: Snyk reports: This affects all versions of package Flask-Security. When using the `get_post_logout_redirect` and `get_post_login_redirect` functions, it […]

Read more
CHAT