FreeBSD

FreeBSD 14 — freexl — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — freexl — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Multiple exploitable heap-based buffer overflow vulnerabilities exists in FreeXL 1.0.3 Related CVEs: CVE-2015-2776 CVE-2017-2923 CVE-2017-2924 Upstream summary: Cisco TALOS reports: An exploitable heap based buffer overflow vulnerability exists in the […]

Read more
FreeBSD 12 — php70-bcmath — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — php70-bcmath — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2016-3074 Upstream summary: The PHP Group reports: BCMath: Fixed bug #72093 (bcpowmod accepts negative scale and corrupts _one_ definition). Exif: Fixed bug #72094 (Out […]

Read more
FreeBSD 15 — openssh-portable-base — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — openssh-portable-base — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenSSH — Memory corruption in sshd Upstream summary: The OpenSSH development team reports: A memory corruption vulnerability exists in the post- authentication sshd process when an AES-GCM cipher ([email protected] or […]

Read more
FreeBSD 14 — py313t-pdfminer.six — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py313t-pdfminer.six — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-pdfminer.six — Arbitrary Code Execution in pdfminer.six via Crafted PDF Input Related CVEs: CVE-2025-64512 Upstream summary: Pieter Marsman reports: pdfminer.six will execute arbitrary code from a malicious pickle file if […]

Read more
FreeBSD 13 — cyrus-sasl-sql — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — cyrus-sasl-sql — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cyrus-sasl — Escape password for SQL insert/update commands Related CVEs: CVE-2022-24407 Upstream summary: Cyrus SASL 2.1.x Release Notes New in 2.1.28 reports: Escape password for SQL insert/update commands. Table of […]

Read more
FreeBSD 14 — py37-yaml — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — py37-yaml — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PyYAML — arbitrary code execution Related CVEs: CVE-2017-18342 CVE-2020-14343 CVE-2020-1747 Upstream summary: A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary […]

Read more
FreeBSD 15 — iodine — security advisory — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — iodine — security advisory — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: iodined — authentication bypass Upstream summary: Erik Ekman of the iodine project reports: The client could bypass the password check by continuing after getting error from the server and guessing […]

Read more
FreeBSD 15 — vte — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — vte — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vte — Classic terminal title set+query attack Related CVEs: CVE-2010-2713 Upstream summary: Kees Cook reports: Janne Snabb discovered that applications using VTE, such as gnome-terminal, did not correctly filter window […]

Read more
FreeBSD 13 — php56-xsl — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — php56-xsl — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2015-6834 CVE-2015-6835 CVE-2015-6836 CVE-2015-6837 CVE-2015-6838 Upstream summary: PHP reports: Core: Fixed bug #70172 (Use After Free Vulnerability in unserialize()). Fixed bug #70219 (Use after […]

Read more
FreeBSD 12 — emacs-devel — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 12

FreeBSD 12 — emacs-devel — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Emacs — Arbitrary code execution vulnerability Related CVEs: CVE-2022-45939 CVE-2022-48337 CVE-2022-48338 CVE-2022-48339 CVE-2024-53920 CVE-2025-1244 Upstream summary: Problem Description A shell injection vulnerability exists in GNU Emacs due to improper handling […]

Read more
CHAT