FreeBSD

FreeBSD 12 — rubygem-bson — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — rubygem-bson — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-bson — DoS and possible injection Related CVEs: CVE-2015-4412 Upstream summary: Phill MV reports: By submitting a specially crafted string to a service relying on the bson rubygem, an attacker […]

Read more
FreeBSD 15 — w3m-m17n — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — w3m-m17n — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: w3m — format string vulnerability Related CVEs: CVE-2006-6772 Upstream summary: An anonymous person reports: w3m-0.5.1 crashes when using the -dump or -backend options to open a HTTPS URL with a […]

Read more
FreeBSD 14 — apache+mod_ssl+mod_accel+ipv — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — apache+mod_ssl+mod_accel+ipv — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: apache — Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long) Related CVEs: CVE-2005-2088 CVE-2005-3352 CVE-2006-3747 Upstream summary: Apache ChangeLog reports: Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c […]

Read more
FreeBSD 12 — mysql81-server — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — mysql81-server — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: MySQL — Multiple vulnerabilities Upstream summary: Oracle reports: 36 new security patches for Oracle MySQL. 11 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over […]

Read more
FreeBSD 15 — zh-tin — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — zh-tin — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tin — buffer overflow vulnerabilities Upstream summary: Urs Janssen and Aleksey Salow report possible buffer overflows in tin versions 1.8.0 and 1.8.1. OpenPKG project elaborates there is an allocation off-by-one […]

Read more
FreeBSD 15 — plans — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — plans — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: plans — multiple vulnerabilities Upstream summary: Secunia reports: A vulnerability has been reported in Plans, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to […]

Read more
FreeBSD 13 — bind910-base — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — bind910-base — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bind — denial of service vulnerability Related CVEs: CVE-2015-1349 CVE-2015-4620 CVE-2015-5477 CVE-2015-5722 CVE-2015-5986 Upstream summary: ISC reports: An incorrect boundary check in openpgpkey_61.c can cause named to terminate due to […]

Read more
FreeBSD 13 — pglogical — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — pglogical — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pglogical — shell command injection in pglogical.create_subscription() Related CVEs: CVE-2021-3515 Upstream summary: 2ndQuadrant reports: Fix pg_dump/pg_restore execution (CVE-2021-3515) Correctly escape the connection string for both pg_dump and pg_restore so that […]

Read more
CHAT