FreeBSD

FreeBSD 15 — sylpheed-claws — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — sylpheed-claws — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: claws-mail — POP3 Format String Vulnerability Related CVEs: CVE-2005-0667 CVE-2005-0926 CVE-2007-2958 Upstream summary: A Secunia Advisory reports: A format string error in the "inc_put_error()" function in src/inc.c when displaying a […]

Read more
FreeBSD 14 — crispy-doom — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — crispy-doom — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chocolate-doom — Arbitrary code execution Related CVEs: CVE-2020-14983 Upstream summary: Michal Dardas from LogicalTrust reports: The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players […]

Read more
FreeBSD 15 — xorg-libraries — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — xorg-libraries — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xpm — image decoding vulnerabilities Related CVEs: CVE-2004-0687 CVE-2004-0688 Upstream summary: Chris Evans discovered several vulnerabilities in the libXpm image decoder: A stack-based buffer overflow in xpmParseColors An integer overflow […]

Read more
FreeBSD 14 — php73-exif — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — php73-exif — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PHP — Multiple vulnerabilities in EXIF module Related CVEs: CVE-2019-11034 CVE-2019-11035 Upstream summary: The PHP project reports: Heap-buffer-overflow in php_ifd_get32s (CVE-2019-11034) Heap-buffer-overflow in exif_iif_add_value (CVE-2019-11035) Table of contents Symptom & […]

Read more
FreeBSD 13 — openvpn-polarssl — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — openvpn-polarssl — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenVPN — out-of-bounds write in legacy key-method 1 Related CVEs: CVE-2017-12166 CVE-2017-7478 CVE-2017-7479 CVE-2017-7508 CVE-2017-7512 CVE-2017-7520 CVE-2017-7521 CVE-2017-7522 Upstream summary: Steffan Karger reports: The bounds check in read_key() was performed […]

Read more
FreeBSD 13 — drm-devel-kmod — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — drm-devel-kmod — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: drm graphics drivers — potential information disclusure via local access Related CVEs: CVE-2019-0154 CVE-2019-11112 CVE-2019-14615 Upstream summary: Intel reports: .A potential security vulnerability in Intel(R) Processor Graphics may allow information […]

Read more
FreeBSD 12 — ghostscript9-agpl-base — multiple vulnerabilities (12 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — ghostscript9-agpl-base — multiple vulnerabilities (12 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ghostscript — exploitable buffer overflow in (T)BCP in PS interpreter Related CVEs: CVE-2015-3228 CVE-2018-15908 CVE-2018-15909 CVE-2018-15910 CVE-2018-15911 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813  +4 more Upstream summary: [email protected] reports: In Artifex Ghostscript through […]

Read more
FreeBSD 14 — py31-graphite-web — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py31-graphite-web — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-graphite-web — Multiple vulnerabilities Related CVEs: CVE-2013-5093 Upstream summary: Graphite developers report: This release contains several security fixes for cross-site scripting (XSS) as well as a fix for a remote-execution […]

Read more
FreeBSD 15 — rubygem-rails-html-sanitizer — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — rubygem-rails-html-sanitizer — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rails-html-sanitizer — possible XSS vulnerability Related CVEs: CVE-2015-7576 CVE-2015-7577 CVE-2015-7581 CVE-2016-0751 CVE-2016-0752 CVE-2016-0753 CVE-2018-3741 Upstream summary: OSS-Security list: There is a possible XSS vulnerability in rails-html-sanitizer. The gem allows non-whitelisted […]

Read more
FreeBSD 14 — py38-pyrad — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py38-pyrad — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pyrad — multiple vulnerabilities Related CVEs: CVE-2013-0294 CVE-2013-0342 Upstream summary: Nathaniel McCallum reports: packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which […]

Read more
CHAT