FreeBSD

FreeBSD 15 — getmail — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — getmail — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: getmail — symlink vulnerability during maildir delivery Related CVEs: CVE-2004-0881 Upstream summary: David Watson reports a symlink vulnerability in getmail. If run as root (not the recommended mode of operation), […]

Read more
FreeBSD 12 — py33-pillow — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py33-pillow — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Pillow — multiple vulnerabilities Related CVEs: CVE-2016-0740 CVE-2016-0775 CVE-2016-9189 CVE-2016-9190 Upstream summary: Pillow reports: Pillow prior to 3.3.2 may experience integer overflow errors in map.c when reading specially crafted image […]

Read more
FreeBSD 14 — libsixel — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — libsixel — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Memory leak in different components Related CVEs: CVE-2018-14072 CVE-2018-14073 Upstream summary: MITRE reports: bsixel 1.8.1 has a memory leak in sixel_decoder_decode in decoder.c, image_buffer_resize in fromsixel.c, sixel_decode_raw in fromsixel.c and […]

Read more
FreeBSD 12 — py311-httpx — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py311-httpx — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-httpx — input validation vulnerability Related CVEs: CVE-2021-41945 Upstream summary: lebr0nli reports: Encode OSS httpx <=1.0.0.beta0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `httpx.URL.copy_with`. […]

Read more
FreeBSD 14 — squashfs-tools — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — squashfs-tools — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: squashfs-tools — Integer overflow Related CVEs: CVE-2015-4645 Upstream summary: Phillip Lougher reports: Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a […]

Read more
FreeBSD 14 — py31-pycrypto — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py31-pycrypto — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pycrypto — PRNG reseed race condition Related CVEs: CVE-2013-1445 Upstream summary: Dwayne Litzenberger reports: In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator (PRNG) exhibits a race condition that may […]

Read more
FreeBSD 13 — chicken — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — chicken — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chicken — multiple vulnerabilities Related CVEs: CVE-2014-9651 CVE-2015-4556 CVE-2016-6830 CVE-2016-6831 CVE-2016-9954 CVE-2017-11343 CVE-2017-6949 CVE-2017-9334 Upstream summary: CHICKEN reports: CVE-2017-6949: Unchecked malloc() call in SRFI-4 constructors when allocating in non-GC memory, […]

Read more
FreeBSD 13 — py35-django — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py35-django — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Django — multiple vulnerabilities Related CVEs: CVE-2016-2048 CVE-2016-2512 CVE-2016-2513 CVE-2016-9013 CVE-2016-9014 CVE-2017-12794 CVE-2017-7233 CVE-2017-7234  +12 more Upstream summary: Django Release notes: CVE-2020-24583: Incorrect permissions on intermediate-level directories on Python 3.7+ […]

Read more
FreeBSD 14 — zgv — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — zgv — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: zgv, xzgv — heap overflow vulnerability Related CVEs: CVE-2004-0994 CVE-2006-1060 Upstream summary: Gentoo reports: Andrea Barisani of Gentoo Linux discovered xzgv and zgv allocate insufficient memory when rendering images with […]

Read more
FreeBSD 14 — py26-graphite-web — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py26-graphite-web — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-graphite-web — Multiple vulnerabilities Related CVEs: CVE-2013-5093 Upstream summary: Graphite developers report: This release contains several security fixes for cross-site scripting (XSS) as well as a fix for a remote-execution […]

Read more
CHAT