FreeBSD

FreeBSD 13 — awstats-devel — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — awstats-devel — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: awstats — arbitrary commands execution vulnerability Related CVEs: CVE-2008-3714 CVE-2008-5080 CVE-2010-4367 Upstream summary: Awstats change log reports: Security fix (Traverse directory of LoadPlugin) Security fix (Limit config to defined directory […]

Read more
FreeBSD 13 — openjph — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — openjph — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenJPH < 0.24.5 — multiple vulnerabilities Upstream summary: Aous Naman reports several vulnerabilities fixed in OpenJPH versions up to 0.24.5 and credits Cary Phillips for reporting them from the OSS-fuzz […]

Read more
FreeBSD 15 — rabbitmq — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — rabbitmq — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: RabbitMQ — Denial of Service via improper input validation Related CVEs: CVE-2015-0862 CVE-2016-9877 CVE-2021-22116 Upstream summary: Jonathon Knudsen of Synopsys Cybersecurity Research Center reports: All versions prior to 3.8.16 are […]

Read more
FreeBSD 12 — libwmf — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — libwmf — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libwmf — multiple vulnerabilities Related CVEs: CVE-2004-0941 CVE-2006-3376 CVE-2007-0455 CVE-2007-2756 CVE-2007-3472 CVE-2007-3473 CVE-2007-3477 CVE-2009-1364  +5 more Upstream summary: Mitre reports: Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 […]

Read more
FreeBSD 15 — postgresql13-client — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — postgresql13-client — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL — Multiple vulnerabilities Related CVEs: CVE-2022-41862 CVE-2024-10977 CVE-2024-7348 CVE-2025-1094 CVE-2025-12817 CVE-2025-12818 CVE-2025-4207 Upstream summary: https://www.postgresql.org/support/security/CVE-2025-12818/ reports: Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input […]

Read more
FreeBSD 13 — ark — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — ark — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ark — extraction outside of extraction directory Related CVEs: CVE-2020-16116 CVE-2020-24654 Upstream summary: Albert Astals Cid reports: Overview A maliciously crafted TAR archive containing symlink entries would install files anywhere […]

Read more
FreeBSD 12 — py310-treq — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py310-treq — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-treq — sensitive information leak vulnerability Related CVEs: CVE-2022-23607 Upstream summary: Treq's request methods (`treq.get`, `treq.post`, `HTTPClient.request`, `HTTPClient.get`, etc.) accept cookies as a dictionary. Such cookies are not bound to […]

Read more
FreeBSD 14 — mpack — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — mpack — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mpack — Information disclosure Related CVEs: CVE-2011-4919 Upstream summary: The oss-security list reports: Incorrect permissions on temporary files can lead to information disclosure. Table of contents Symptom & Impact Environment […]

Read more
CHAT