FreeBSD

FreeBSD 15 — nghttp — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — nghttp — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nghttp2 — CWE-617: Reachable Assertion Related CVEs: CVE-2015-8659 CVE-2016-1544 CVE-2018-1000168 CVE-2019-9511 CVE-2019-9513 CVE-2020-11080 CVE-2026-27135 Upstream summary: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6 reports: nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in […]

Read more
FreeBSD 14 — pypy — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — pypy — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Python — DoS via malformed XML-RPC / HTTP POST request Related CVEs: CVE-2012-0845 Upstream summary: Jan Lieskovsky reports, A denial of service flaw was found in the way Simple XML-RPC […]

Read more
FreeBSD 12 — milter-bogom — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — milter-bogom — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: milter-bogom — headerless message crash Upstream summary: Juan J. Marítnez reports: The milter crashes while processing a headerless message Impact: bogom crashes and sendmail moves it to error state Table […]

Read more
FreeBSD 13 — py311-h — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py311-h — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: h11 accepts some malformed Chunked-Encoding bodies Related CVEs: CVE-2025-43859 Upstream summary: h11 reports: h11 is a Python implementation of HTTP/1.1. Prior to version 0.16.0, a leniency in h11's parsing of […]

Read more
FreeBSD 12 — php56-mbstring — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — php56-mbstring — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: oniguruma — multiple vulnerabilities Related CVEs: CVE-2015-8874 CVE-2016-5766 CVE-2016-5767 CVE-2016-5768 CVE-2016-5769 CVE-2016-5770 CVE-2016-5771 CVE-2016-5772  +5 more Upstream summary: the PHP project reports: A stack out-of-bounds read occurs in match_at() during […]

Read more
FreeBSD 14 — potrace — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — potrace — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: potrace — multiple memory failure Related CVEs: CVE-2016-8685 CVE-2016-8686 Upstream summary: potrace reports: CVE-2016-8685: invalid memory access in findnext CVE-2016-8686: memory allocation failure Table of contents Symptom & Impact Environment […]

Read more
FreeBSD 15 — dokuwiki-devel — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — dokuwiki-devel — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dokuwiki — Local File Inclusion with register_globals on Related CVEs: CVE-2006-4674 CVE-2006-4675 CVE-2006-4679 CVE-2006-5098 CVE-2006-5099 CVE-2007-3930 CVE-2009-1960 Upstream summary: DokuWiki reports: A security hole was discovered which allows an attacker […]

Read more
FreeBSD 15 — getmail — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — getmail — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: getmail — symlink vulnerability during maildir delivery Related CVEs: CVE-2004-0881 Upstream summary: David Watson reports a symlink vulnerability in getmail. If run as root (not the recommended mode of operation), […]

Read more
FreeBSD 12 — py33-pillow — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py33-pillow — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Pillow — multiple vulnerabilities Related CVEs: CVE-2016-0740 CVE-2016-0775 CVE-2016-9189 CVE-2016-9190 Upstream summary: Pillow reports: Pillow prior to 3.3.2 may experience integer overflow errors in map.c when reading specially crafted image […]

Read more
FreeBSD 14 — libsixel — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — libsixel — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Memory leak in different components Related CVEs: CVE-2018-14072 CVE-2018-14073 Upstream summary: MITRE reports: bsixel 1.8.1 has a memory leak in sixel_decoder_decode in decoder.c, image_buffer_resize in fromsixel.c, sixel_decode_raw in fromsixel.c and […]

Read more
CHAT