FreeBSD

FreeBSD 15 — chrony — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — chrony — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chrony <= 3.5.1 data corruption through symlink vulnerability writing the pidfile Related CVEs: CVE-2015-1821 CVE-2015-1822 CVE-2015-1853 CVE-2020-14367 Upstream summary: Miroslav Lichvar reports: chrony-3.5.1 […] fixes a security issue in writing […]

Read more
FreeBSD 15 — isc-dhcp — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — isc-dhcp — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcpd — format string vulnerabilities Related CVEs: CVE-2004-1006 Upstream summary: The ISC DHCP programs are vulnerable to several format string vulnerabilities which may allow a remote attacker to execute arbitrary […]

Read more
FreeBSD 15 — hlstats — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — hlstats — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hlstats — multiple cross site scripting vulnerabilities Related CVEs: CVE-2006-4454 CVE-2006-6780 CVE-2006-6781 CVE-2007-2812 Upstream summary: Kefka reports multiple cross site scripting vulnerabilities within hlstats. The vulnerabilities are caused due to […]

Read more
FreeBSD 12 — cross-binutils — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — cross-binutils — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: GNU binutils — multiple vulnerabilities Related CVEs: CVE-2014-8501 CVE-2014-8502 CVE-2014-8503 Upstream summary: US-CERT/NIST reports: The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause […]

Read more
FreeBSD 13 — mupdf — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — mupdf — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mupdf — multiple vulnerabilities Related CVEs: CVE-2016-6265 CVE-2016-6525 Upstream summary: Tobias Kortkamp reports: Heap-based buffer overflow in the pdf_load_mesh_params function in pdf/pdf-shade.c in MuPDF allows remote attackers to cause a […]

Read more
FreeBSD 12 — imwheel — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — imwheel — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: imwheel — insecure handling of PID file Upstream summary: A Computer Academic Underground advisory describes the consequences of imwheel's handling of the process ID file (PID file): imwheel exclusively uses […]

Read more
FreeBSD 14 — pear-Net_Ping — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — pear-Net_Ping — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PEAR — Net_Ping and Net_Traceroute remote arbitrary command injection Related CVEs: CVE-2009-4024 CVE-2009-4025 Upstream summary: PEAR Security Advisory reports: Multiple remote arbitrary command injections have been found in the Net_Ping […]

Read more
FreeBSD 15 — syslog-ng — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — syslog-ng — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: syslog-ng2 — startup directory leakage in the chroot environment Related CVEs: CVE-2008-5110 Upstream summary: Florian Grandel reports: I have not had the time to analyze all of syslog-ng code. But […]

Read more
CHAT