FreeBSD

FreeBSD 13 — py27-requests — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py27-requests — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: www/py-requests — Information disclosure vulnerability Upstream summary: The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which […]

Read more
FreeBSD 14 — silc-toolkit — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — silc-toolkit — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: silc-toolkit — Format string vulnerabilities Related CVEs: CVE-2009-3051 Upstream summary: SILC Changlog reports: An unspecified format string vulnerability exists in silc-toolkit. Table of contents Symptom & Impact Environment & Reproduction […]

Read more
FreeBSD 15 — viewvc — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — viewvc — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: viewvc — Arbitrary server filesystem content Related CVEs: CVE-2025-54141 Upstream summary: cmpilato reports: The ViewVC standalone web server (standalone.py) is a script provided in the ViewVC distribution for the purposes […]

Read more
FreeBSD 13 — R — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — R — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: R — arbitrary code execution vulnerability Related CVEs: CVE-2024-27322 Upstream summary: HiddenLayer Research reports: Deserialization of untrusted data can occur in the R statistical programming language, enabling a maliciously crafted […]

Read more
FreeBSD 12 — rubygem-rack — multiple vulnerabilities (15 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — rubygem-rack — multiple vulnerabilities (15 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rack — possible denial of service vulnerability in header parsing Related CVEs: CVE-2011-4815 CVE-2011-4838 CVE-2011-5036 CVE-2011-5037 CVE-2015-1840 CVE-2015-3224 CVE-2015-3225 CVE-2015-3226  +7 more Upstream summary: ooooooo_q reports: Carefully crafted input can […]

Read more
FreeBSD 13 — libexif — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — libexif — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libexif — multiple vulnerabilities Related CVEs: CVE-2005-0664 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841  +2 more Upstream summary: Release notes: Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz […]

Read more
FreeBSD 12 — chocolate-doom — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — chocolate-doom — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chocolate-doom — Arbitrary code execution Related CVEs: CVE-2020-14983 Upstream summary: Michal Dardas from LogicalTrust reports: The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players […]

Read more
FreeBSD 14 — postsrsd — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — postsrsd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: postsrsd — Denial of service vulnerability Related CVEs: CVE-2020-35573 Upstream summary: postsrsd developer reports: PostSRSd could be tricked into consuming a lot of CPU time with an SRS address that […]

Read more
FreeBSD 15 — py39-ansible-base — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py39-ansible-base — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Ansible — Ansible user credentials disclosure in ansible-connection module Related CVEs: CVE-2021-3583 CVE-2021-3620 Upstream summary: Red Hat reports: A flaw was found in Ansible Engine's ansible-connection module, where sensitive information […]

Read more
FreeBSD 15 — linux-c7-libxml — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — linux-c7-libxml — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libxml2 — multiple vulnerabilities Related CVEs: CVE-2025-49794 CVE-2025-49795 CVE-2025-6021 CVE-2025-6170 Upstream summary: Alan Coopersmith reports: As discussed in https://gitlab.gnome.org/GNOME/libxml2/-/issues/913 the security policy of libxml2 has been changed to disclose vulnerabilities […]

Read more
CHAT