FreeBSD

FreeBSD 15 — nexus2-oss — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — nexus2-oss — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nexus2-oss — Apache ActiveMQ JMX vulnerability Related CVEs: CVE-2019-15893 CVE-2019-16530 CVE-2019-5475 CVE-2020-13920 CVE-2020-15012 Upstream summary: Sonatype reports: CVE-2020-13920: Apache ActiveMQ JMX is vulnerable to a MITM attack Table of contents […]

Read more
FreeBSD 14 — jansson — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — jansson — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: jansson — local denial of service vulnerabilities Related CVEs: CVE-2016-4425 Upstream summary: QuickFuzz reports: A crash caused by stack exhaustion parsing a JSON was found. Table of contents Symptom & […]

Read more
FreeBSD 13 — cyrus-imapd — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — cyrus-imapd — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cyrus-imapd — unbounded memory allocation Related CVEs: CVE-2002-1580 CVE-2004-1011 CVE-2004-1012 CVE-2004-1013 CVE-2005-0546 CVE-2009-2632 CVE-2015-8077 CVE-2015-8078  +5 more Upstream summary: Cyrus IMAP 3.8.3 Release Notes states: Fixed CVE-2024-34055: Cyrus-IMAP through 3.8.2 […]

Read more
FreeBSD 15 — mod_dav_svn-lts — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — mod_dav_svn-lts — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Subversion — Multiple vulnerabilities in server code Related CVEs: CVE-2021-28544 CVE-2022-24070 Upstream summary: Subversion project reports: Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization […]

Read more
FreeBSD 14 — py38-cryptography — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py38-cryptography — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cryptography — includes a vulnerable copy of OpenSSL Related CVEs: CVE-2023-0286 CVE-2023-23931 Upstream summary: pyca/cryptography's wheels include a statically linked copy of OpenSSL. The versions of OpenSSL included in cryptography […]

Read more
FreeBSD 14 — giflib — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — giflib — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: giflib — heap overflow Related CVEs: CVE-2015-7555 Upstream summary: Hans Jerry Illikainen reports: A heap overflow may occur in the giffix utility included in giflib-5.1.1 when processing records of the […]

Read more
FreeBSD 12 — postgresql12-client — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — postgresql12-client — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL — libpq retains an error message from man-in-the-middle Related CVEs: CVE-2022-41862 CVE-2024-10977 CVE-2024-7348 Upstream summary: PostgreSQL project reports: Client use of server error message in PostgreSQL allows a server […]

Read more
FreeBSD 13 — emacs — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — emacs — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Emacs — Arbitrary code execution vulnerability Related CVEs: CVE-2005-0100 CVE-2008-3949 CVE-2012-3479 CVE-2022-45939 CVE-2022-48337 CVE-2022-48338 CVE-2022-48339 CVE-2024-30202  +5 more Upstream summary: Problem Description A shell injection vulnerability exists in GNU Emacs […]

Read more
FreeBSD 15 — eternalterminal — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — eternalterminal — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: net/eternalterminal — Multiple vulnerabilities Related CVEs: CVE-2022-48257 CVE-2022-48258 Upstream summary: Mitre reports: etserver and etclient have predictable logfile names in /tmp and they are world-readable logfiles Table of contents Symptom […]

Read more
FreeBSD 13 — nl-openoffice — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — nl-openoffice — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openoffice — DOC document heap overflow vulnerability Related CVEs: CVE-2004-0752 CVE-2005-0941 Upstream summary: AD-LAB reports that a heap-based buffer overflow vulnerability exists in OpenOffice's handling of DOC documents. When reading […]

Read more
CHAT