FreeBSD

FreeBSD 13 — py37-buildbot — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py37-buildbot — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: buildbot — OAuth Authentication Vulnerability Related CVEs: CVE-2019-12300 CVE-2019-7313 Upstream summary: Buildbot accepted user-submitted authorization token from OAuth and used it to authenticate user. The vulnerability can lead to malicious […]

Read more
FreeBSD 15 — zip — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — zip — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: zip — long path buffer overflow Related CVEs: CVE-2004-1010 Upstream summary: A HexView security advisory reports: When zip performs recursive folder compression, it does not check for the length of […]

Read more
FreeBSD 13 — vlc-devel — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — vlc-devel — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vlc — arbitrary code execution in the RealMedia processor Related CVEs: CVE-2008-5032 CVE-2008-5036 CVE-2008-5276 Upstream summary: Tobias Klein from TrapKit reports: The VLC media player contains an integer overflow vulnerability […]

Read more
FreeBSD 15 — ja-trac — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — ja-trac — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: trac — potential DOS vulnerability Related CVEs: CVE-2005-3980 CVE-2005-4065 CVE-2005-4305 Upstream summary: Trac development team reports: 0.11.2 is a new stable maintenance release. It contains several security fixes and everyone […]

Read more
FreeBSD 12 — py311-WsgiDAV — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py311-WsgiDAV — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-WsgiDAV — XSS vulnerability Related CVEs: CVE-2022-41905 Upstream summary: Implementations using this library with directory browsing enabled may be susceptible to Cross Site Scripting (XSS) attacks. Table of contents Symptom […]

Read more
FreeBSD 13 — bind98-base — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — bind98-base — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bind — denial of service vulnerability Related CVEs: CVE-2012-5166 CVE-2012-5688 CVE-2013-2266 CVE-2013-3919 CVE-2013-4854 CVE-2014-0591 CVE-2014-8500 CVE-2014-8680 Upstream summary: ISC reports: We have today posted updated versions of 9.9.6 and 9.10.1 […]

Read more
FreeBSD 13 — rubygem-mail — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — rubygem-mail — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-mail — multiple vulnerabilities Related CVEs: CVE-2011-0739 CVE-2012-2139 CVE-2012-2140 Upstream summary: rubygem-mail — multiple vulnerabilities Two issues were fixed. They are a file system traversal in file_delivery method and arbitrary […]

Read more
FreeBSD 13 — couchdb — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — couchdb — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: couchdb — information sharing via couchjs processes Related CVEs: CVE-2012-5650 CVE-2017-12635 CVE-2017-12636 CVE-2018-11769 CVE-2018-17188 CVE-2018-8007 CVE-2021-39205 CVE-2023-26268 Upstream summary: Nick Vatamane reports: Design documents with matching document IDs, from databases […]

Read more
FreeBSD 13 — vinyl — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — vinyl — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Vinyl/Varnish — HTTP/2 parsing deficiency Upstream summary: Vinyl Development Team reports: A deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync attack (request smuggling), which […]

Read more
CHAT