FreeBSD

FreeBSD 14 — ruby+pthreads — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — ruby+pthreads — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ruby — UTF-7 encoding XSS vulnerability in WEBrick Related CVEs: CVE-2006-5467 CVE-2006-6303 CVE-2008-1447 CVE-2008-2726 CVE-2008-3655 CVE-2008-3656 CVE-2008-3905 CVE-2009-1904  +1 more Upstream summary: The official ruby site reports: WEBrick have had […]

Read more
FreeBSD 14 — cassandra — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — cassandra — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cassandra3 — multiple vulnerabilities Related CVEs: CVE-2015-0225 CVE-2015-0886 CVE-2019-2684 CVE-2020-7238 CVE-2021-44521 CVE-2022-24823 CVE-2022-25857 CVE-2022-42003  +1 more Upstream summary: Cassandra tema reports: This release contains 6 security fixes including CVE-2022-24823: When […]

Read more
FreeBSD 13 — ctorrent — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — ctorrent — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Enhanced cTorrent — stack-based overflow Related CVEs: CVE-2009-1759 Upstream summary: Securityfocus reports: cTorrent and dTorrent are prone to a remote buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied […]

Read more
FreeBSD 15 — crispy-doom — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — crispy-doom — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chocolate-doom — Arbitrary code execution Related CVEs: CVE-2020-14983 Upstream summary: Michal Dardas from LogicalTrust reports: The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players […]

Read more
FreeBSD 13 — drupal6-cck — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — drupal6-cck — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: drupal6-cck — cross-site scripting Related CVEs: CVE-2009-1069 Upstream summary: Drupal CCK plugin developer reports: The Node reference and User reference sub-modules, which are part of the Content Construction Kit (CCK) […]

Read more
FreeBSD 15 — mitmproxy — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — mitmproxy — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mitmproxy — Insufficient Protection against HTTP Request Smuggling Related CVEs: CVE-2022-24766 Upstream summary: Zeyu Zhang reports: In mitmproxy 7.0.4 and below, a malicious client or server is able to perform […]

Read more
FreeBSD 14 — netatalk — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — netatalk — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: netatalk3 — multiple WolfSSL vulnerabilities Related CVEs: CVE-2008-5718 CVE-2024-1544 CVE-2024-38439 CVE-2024-38440 CVE-2024-38441 CVE-2024-5288 CVE-2024-5814 CVE-2024-5991 Upstream summary: Netatalk release reports: WolfSSL 5.7.0 (included in netatalk) includes multiple security vulnerabilities. Table […]

Read more
FreeBSD 14 — chicken — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — chicken — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chicken — multiple vulnerabilities Related CVEs: CVE-2014-9651 CVE-2015-4556 CVE-2016-6830 CVE-2016-6831 CVE-2016-9954 CVE-2017-11343 CVE-2017-6949 CVE-2017-9334 Upstream summary: CHICKEN reports: CVE-2017-6949: Unchecked malloc() call in SRFI-4 constructors when allocating in non-GC memory, […]

Read more
FreeBSD 13 — xterm — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — xterm — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xterm — DECRQSS remote command execution vulnerability Related CVEs: CVE-2008-2383 Upstream summary: SecurityFocus reports: The xterm program is prone to a remote command-execution vulnerability because it fails to sufficiently validate […]

Read more
FreeBSD 15 — cyrus-sasl-sql — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — cyrus-sasl-sql — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cyrus-sasl — Escape password for SQL insert/update commands Related CVEs: CVE-2022-24407 Upstream summary: Cyrus SASL 2.1.x Release Notes New in 2.1.28 reports: Escape password for SQL insert/update commands. Table of […]

Read more
CHAT