FreeBSD

FreeBSD 15 — git-cvs — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — git-cvs — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: git — multiple vulnerabilities Related CVEs: CVE-2024-50349 CVE-2024-52006 CVE-2025-27613 CVE-2025-27614 CVE-2025-46835 CVE-2025-48384 CVE-2025-48385 CVE-2025-48386 Upstream summary: Git development team reports: CVE-2025-27613: Gitk: When a user clones an untrusted repository and […]

Read more
FreeBSD 13 — py310-twisted — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py310-twisted — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-twisted — cookie and authorization headers are leaked when following cross-origin redirects Upstream summary: Twisted developers report: Cookie and Authorization headers are leaked when following cross-origin redirects in twited.web.client.RedirectAgent and […]

Read more
FreeBSD 13 — evolution — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — evolution — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: evolution — remote format string vulnerabilities Related CVEs: CVE-2005-0102 CVE-2005-2549 CVE-2005-2550 Upstream summary: A SITIC Vulnerability Advisory reports: Evolution suffers from several format string bugs when handling data from remote […]

Read more
FreeBSD 13 — acme.sh — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — acme.sh — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: acme.sh — closes potential remote vuln Upstream summary: Neil Pang reports: HiCA was injecting arbitrary code/commands into the certificate obtaining process and acme.sh is running them on the client machine. […]

Read more
FreeBSD 12 — asterisk-bristuff — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — asterisk-bristuff — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: asterisk — remote heap overwrite vulnerability Upstream summary: Adam Boileau of Security-Assessment.com reports: The Asterisk Skinny channel driver for Cisco SCCP phones (chan_skinny.so) incorrectly validates a length value in the […]

Read more
FreeBSD 13 — mysql81-client — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — mysql81-client — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: MySQL — Multiple vulnerabilities Upstream summary: Oracle reports: 36 new security patches for Oracle MySQL. 11 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over […]

Read more
FreeBSD 12 — py37-borgbackup — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — py37-borgbackup — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Borg (Backup) — flaw in cryptographic authentication scheme in Borg allowed an attacker to fake archives and indirectly cause backup data loss. Related CVEs: CVE-2023-36811 Upstream summary: Thomas Waldmann reports: […]

Read more
FreeBSD 15 — varnish — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — varnish — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Vinyl/Varnish — HTTP/2 parsing deficiency Related CVEs: CVE-2013-4484 CVE-2017-8807 CVE-2022-23959 CVE-2023-43622 CVE-2023-44487 CVE-2025-30346 CVE-2025-8671 Upstream summary: Vinyl Development Team reports: A deficiency in HTTP/2 request parsing can be exploited to […]

Read more
FreeBSD 13 — podman — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — podman — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: podman — TLS connection used to pull VM images was not validated Related CVEs: CVE-2025-6032 Upstream summary: RedHat, Inc. reports: A flaw was found in Podman. The podman machine init […]

Read more
FreeBSD 14 — ledger — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — ledger — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ledger — multiple vulnerabilities Related CVEs: CVE-2017-2807 CVE-2017-2808 Upstream summary: Talos reports: An exploitable buffer overflow vulnerability exists in the tag parsing functionality of Ledger-CLI 3.1.1. A specially crafted journal […]

Read more
CHAT