FreeBSD

FreeBSD 12 — quiche — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — quiche — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: quiche — Infinite loop triggered by connection ID retirement Related CVEs: CVE-2024-1410 CVE-2024-1765 CVE-2025-4820 CVE-2025-4821 CVE-2025-7054 Upstream summary: Quiche Releases reports: This update includes 1 security fix: High CVE-2025-7054: Infinite […]

Read more
FreeBSD 14 — php5-filter — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — php5-filter — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-filter — Denial of Service Related CVEs: CVE-2010-3710 Upstream summary: The following DoS condition in filter extension was fixed in PHP 5.3.4 and PHP 5.2.15: Stack consumption vulnerability in the […]

Read more
FreeBSD 13 — privoxy — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — privoxy — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: privoxy — multiple vulnerabilities Related CVEs: CVE-2013-2503 CVE-2015-1030 CVE-2015-1031 CVE-2015-1201 CVE-2015-1380 CVE-2015-1381 CVE-2015-1382 CVE-2016-1982  +1 more Upstream summary: Privoxy Developers reports: Prevent invalid reads in case of corrupt chunk-encoded content. […]

Read more
FreeBSD 13 — spamassassin — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — spamassassin — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: spamassassin — Malicious rule configuration (.cf) files can be configured to run system commands Related CVEs: CVE-2016-1238 CVE-2017-15705 CVE-2018-11780 CVE-2018-11781 CVE-2018-11805 CVE-2019-12420 CVE-2020-1930 CVE-2020-1931  +1 more Upstream summary: The Apache […]

Read more
FreeBSD 14 — p5-libwww — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — p5-libwww — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: p5-libwww — possibility to remote servers to create file with a .(dot) character Related CVEs: CVE-2010-2253 Upstream summary: lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that […]

Read more
FreeBSD 13 — py311-matrix-synapse — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py311-matrix-synapse — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-matrix-synapse — federation denial of service via malformed events Related CVEs: CVE-2022-31052 CVE-2024-31208 CVE-2024-37302 CVE-2024-37303 CVE-2024-52805 CVE-2024-52815 CVE-2024-53863 CVE-2024-53867  +1 more Upstream summary: element-hq/synapse developers report: A malicious server can […]

Read more
FreeBSD 13 — py312-dj51-social-auth-app-django — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py312-dj51-social-auth-app-django — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not included. […]

Read more
FreeBSD 15 — php4-odbc — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — php4-odbc — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2007-0905 CVE-2007-0906 CVE-2007-0907 CVE-2007-0908 CVE-2007-0909 CVE-2007-0910 CVE-2007-0988 CVE-2007-1001 Upstream summary: The PHP development team reports: Security Enhancements and Fixes in PHP 5.2.2 and PHP […]

Read more
FreeBSD 15 — ja-mutt — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — ja-mutt — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mutt — denial of service via crafted mail message Related CVEs: CVE-2004-0078 CVE-2007-2683 CVE-2014-9116 Upstream summary: NVD reports: The write_one_header function in mutt 1.5.23 does not properly handle newline characters […]

Read more
CHAT