FreeBSD

FreeBSD 14 — eog — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — eog — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: eog — out-of-bounds write Related CVEs: CVE-2016-6855 Upstream summary: Felix Riemann reports: CVE-2016-6855 out-of-bounds write in eog 3.10.2. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis […]

Read more
FreeBSD 12 — mencoder — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — mencoder — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ffmpeg — remote denial of service in JPEG2000 decoder Related CVEs: CVE-2014-4610 CVE-2015-3395 CVE-2015-6761 CVE-2015-6818 CVE-2015-6819 CVE-2015-6820 CVE-2015-6821 CVE-2015-6822  +12 more Upstream summary: FFmpeg security reports: FFmpeg 2.8.6 fixes the […]

Read more
FreeBSD 12 — step-certificates — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — step-certificates — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: step-certificates — Authorization Bypass in ACME and SCEP Provisioners Related CVEs: CVE-2025-44005 Upstream summary: smallstep reports: An attacker can bypass authorization checks and force a Step CA ACME or SCEP […]

Read more
FreeBSD 15 — navidrome — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — navidrome — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: navidrome — multiple vulnerabilities Related CVEs: CVE-2025-27112 CVE-2025-48948 CVE-2025-48949 CVE-2026-25578 CVE-2026-25579 Upstream summary: An XSS vulnerability in the frontend allows a malicious attacker to inject code through the comment metadata […]

Read more
FreeBSD 14 — gimp-app — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — gimp-app — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: The GIMP — Use after Free vulnerability Related CVEs: CVE-2016-4994 Upstream summary: The GIMP team reports: A Use-after-free vulnerability was found in the xcf_load_image function. Table of contents Symptom & […]

Read more
FreeBSD 14 — rubygem-ruby-saml — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — rubygem-ruby-saml — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ruby-saml — XML signature wrapping attack Related CVEs: CVE-2016-5697 Upstream summary: RubySec reports: ruby-saml prior to version 1.3.0 is vulnerable to an XML signature wrapping attack in the specific scenario […]

Read more
FreeBSD 12 — xrdp — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — xrdp — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xrdp — Multiple vulnerabilities Related CVEs: CVE-2020-4044 CVE-2022-23468 CVE-2022-23477 CVE-2022-23478 CVE-2022-23479 CVE-2022-23480 CVE-2022-23481 CVE-2022-23482  +12 more Upstream summary: xrdp project reports: This release includes 8 security fixes: CVE-2026-32105 CVE-2026-32107 CVE-2026-32623 […]

Read more
FreeBSD 15 — rubygem-carrierwave — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — rubygem-carrierwave — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Carrierwave — Multiple vulnerabilities Related CVEs: CVE-2021-21288 CVE-2021-21305 Upstream summary: Community reports: Fix Code Injection vulnerability in CarrierWave::RMagick Fix SSRF vulnerability in the remote file download feature Table of contents […]

Read more
FreeBSD 13 — diablo-jdk — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — diablo-jdk — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: jdk — jar directory traversal vulnerability Related CVEs: CVE-2004-1029 CVE-2005-1080 Upstream summary: Pluf has discovered a vulnerability in Sun Java JDK/SDK, which potentially can be exploited by malicious people to […]

Read more
FreeBSD 12 — py312-pdfminer.six — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py312-pdfminer.six — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-pdfminer.six — Arbitrary Code Execution in pdfminer.six via Crafted PDF Input Related CVEs: CVE-2025-64512 Upstream summary: Pieter Marsman reports: pdfminer.six will execute arbitrary code from a malicious pickle file if […]

Read more
CHAT