FreeBSD

FreeBSD 14 — apache22-itk-mpm — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — apache22-itk-mpm — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: apache22 — chunk header parsing defect Related CVEs: CVE-2012-0833 CVE-2012-2687 CVE-2012-3499 CVE-2012-4558 CVE-2013-1862 CVE-2013-1896 CVE-2013-5704 CVE-2013-6438  +5 more Upstream summary: Apache Foundation reports: CVE-2015-3183 core: Fix chunk header parsing defect. […]

Read more
FreeBSD 13 — osc — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — osc — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: osc — shell command injection via crafted _service files Related CVEs: CVE-2015-0778 Upstream summary: SUSE Security Update reports: osc before 0.151.0 allows remote attackers to execute arbitrary commands via shell […]

Read more
FreeBSD 15 — global — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — global — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: global — gozilla vulnerability Related CVEs: CVE-2017-17531 Upstream summary: MITRE reports: gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, […]

Read more
FreeBSD 15 — plasma6-plasma-workspace — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — plasma6-plasma-workspace — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: plasma[56]-plasma-workspace — Unauthorized users can access session manager Related CVEs: CVE-2024-36041 Upstream summary: David Edmundson reports: KSmserver, KDE's XSMP manager, incorrectly allows connections via ICE based purely on the host, […]

Read more
FreeBSD 13 — ja-ppxp — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — ja-ppxp — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ppxp — local root exploit Related CVEs: CVE-2005-0392 Upstream summary: A Debian Advisory reports: Jens Steube discovered that ppxp, yet another PPP program, does not release root privileges when opening […]

Read more
FreeBSD 15 — php71-gd — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — php71-gd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-gd and gd — Buffer over-read into uninitialized memory Related CVEs: CVE-2017-7890 Upstream summary: PHP developers report: The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka […]

Read more
FreeBSD 15 — amavisd-new — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — amavisd-new — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: amavisd-new — multipart boundary confusion Related CVEs: CVE-2024-28054 Upstream summary: The Amavis project reports: Emails which consist of multiple parts (`Content-Type: multipart/*`) incorporate boundary information stating at which point one […]

Read more
FreeBSD 13 — eog — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — eog — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: eog — out-of-bounds write Related CVEs: CVE-2016-6855 Upstream summary: Felix Riemann reports: CVE-2016-6855 out-of-bounds write in eog 3.10.2. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis […]

Read more
CHAT