FreeBSD

FreeBSD 14 — horde-php — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — horde-php — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: horde — various problems in dereferrer Related CVEs: CVE-2005-0961 CVE-2005-3759 CVE-2006-1491 CVE-2006-2195 CVE-2006-3548 Upstream summary: Horde 3.1.2 release announcement: Security Fixes: Closed XSS problems in dereferrer (IE only), help viewer […]

Read more
FreeBSD 13 — rubygem-bson — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — rubygem-bson — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-bson — DoS and possible injection Related CVEs: CVE-2015-4412 Upstream summary: Phill MV reports: By submitting a specially crafted string to a service relying on the bson rubygem, an attacker […]

Read more
FreeBSD 13 — ghostscript-afpl-nox — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — ghostscript-afpl-nox — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ghostscript — insecure temporary file creation vulnerability Related CVEs: CVE-2004-0967 Upstream summary: Ghostscript is affected by an insecure temporary file creation vulnerability. This issue is likely due to a design […]

Read more
FreeBSD 14 — cyrus-imapd — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — cyrus-imapd — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cyrus-imapd — unbounded memory allocation Related CVEs: CVE-2002-1580 CVE-2004-1011 CVE-2004-1012 CVE-2004-1013 CVE-2005-0546 CVE-2009-2632 CVE-2015-8077 CVE-2015-8078  +5 more Upstream summary: Cyrus IMAP 3.8.3 Release Notes states: Fixed CVE-2024-34055: Cyrus-IMAP through 3.8.2 […]

Read more
FreeBSD 14 — bind99-base — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — bind99-base — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bind — denial of service vulnerability Related CVEs: CVE-2012-5166 CVE-2012-5688 CVE-2013-2266 CVE-2013-3919 CVE-2013-4854 CVE-2014-0591 CVE-2014-8500 CVE-2014-8680  +5 more Upstream summary: ISC reports: An incorrect boundary check in openpgpkey_61.c can cause […]

Read more
FreeBSD 13 — ko-unzip — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — ko-unzip — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: unzip — permission race vulnerability Related CVEs: CVE-2005-2475 Upstream summary: Imran Ghory reports a vulnerability within unzip. The vulnerability is caused by a race condition between extracting an archive and […]

Read more
FreeBSD 13 — lightzone — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — lightzone — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dcraw — integer overflow condition Related CVEs: CVE-2015-3885 Upstream summary: ocert reports: The dcraw tool, as well as several other projects re-using its code, suffers from an integer overflow condition […]

Read more
FreeBSD 14 — bogofilter — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — bogofilter — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bogofilter — heap corruption by invalid base64 input Related CVEs: CVE-2004-1007 CVE-2005-4591 CVE-2005-4592 CVE-2010-2494 CVE-2012-5468 Upstream summary: David Relson reports: Fix a heap corruption in base64 decoder on invalid input. […]

Read more
FreeBSD 14 — py27-salt — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py27-salt — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: salt — multiple vulnerabilities in salt-master process Related CVEs: CVE-2015-6918 CVE-2015-6941 CVE-2015-8034 CVE-2016-1866 CVE-2016-3176 CVE-2017-12791 CVE-2017-14695 CVE-2017-14696  +5 more Upstream summary: F-Secure reports: CVE-2020-11651 – Authentication bypass vulnerabilities The ClearFuncs […]

Read more
FreeBSD 14 — xerces-c — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — xerces-c — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: shibboleth-sp — vulnerable to forged user attribute data Related CVEs: CVE-2016-0729 CVE-2016-2099 CVE-2016-4463 CVE-2018-0486 CVE-2018-0489 Upstream summary: Shibboleth consortium reports: Shibboleth SP software vulnerable to additional data forgery flaws The […]

Read more
CHAT