FreeBSD

FreeBSD 12 — php55-fileinfo — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — php55-fileinfo — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Upstream summary: The PHP Group reports: Fileinfo: Fixed bug #71527 (Buffer over-write in finfo_open with malformed magic file). mbstring: Fixed bug #71906 (AddressSanitizer: negative-size-param (-1) in […]

Read more
FreeBSD 13 — xkbcomp — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — xkbcomp — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xkbcomp — Several vulnerabilities Related CVEs: CVE-2018-15859 CVE-2018-15861 CVE-2018-15863 Upstream summary: X.Org reports: Multiple issues have been found in xkbcomp that have been previously been published as CVEs in libxbkcommon. […]

Read more
FreeBSD 14 — py35-cryptography — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py35-cryptography — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cryptography — tag forgery vulnerability Related CVEs: CVE-2016-9243 CVE-2018-10903 Upstream summary: The Python Cryptographic Authority (PyCA) project reports: finalize_with_tag() allowed tag truncation by default which can allow tag forgery in […]

Read more
FreeBSD 12 — re2c — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — re2c — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: re2c — uncontrolled recursion Related CVEs: CVE-2018-21232 Upstream summary: re2c reports: re2c before 2.0 has uncontrolled recursion that causes stack consumption in find_fixed_tags. Table of contents Symptom & Impact Environment […]

Read more
FreeBSD 12 — cabextract — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — cabextract — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cabextract — directory traversal with UTF-8 symbols in filenames Related CVEs: CVE-2004-0916 CVE-2014-9556 CVE-2015-2060 Upstream summary: Cabextract ChangeLog reports: It was possible for cabinet files to extract to absolute file […]

Read more
FreeBSD 14 — rainloop-php — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — rainloop-php — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rainloop — cross-site-scripting (XSS) vulnerability Related CVEs: CVE-2022-29360 Upstream summary: Simon Scannell reports: The code vulnerability can be easily exploited by an attacker by sending a malicious email to a […]

Read more
FreeBSD 14 — rainloop-community-php — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — rainloop-community-php — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rainloop — cross-site-scripting (XSS) vulnerability Related CVEs: CVE-2022-29360 Upstream summary: Simon Scannell reports: The code vulnerability can be easily exploited by an attacker by sending a malicious email to a […]

Read more
FreeBSD 13 — ZendFramework — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — ZendFramework — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ZendFramework1 — SQL injection vulnerability Related CVEs: CVE-2012-3363 CVE-2015-7695 Upstream summary: Zend Framework developers report: The PDO adapters of Zend Framework 1 do not filter null bytes values in SQL […]

Read more
FreeBSD 15 — sympa — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — sympa — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sympa — Inappropriate use of the cookie parameter can be a security threat. This parameter may also not provide sufficient security. Related CVEs: CVE-2005-0073 CVE-2012-2352 CVE-2015-1306 CVE-2020-29668 CVE-2020-9369 Upstream summary: […]

Read more
CHAT