FreeBSD

FreeBSD 13 — krb5-appl — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — krb5-appl — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: krb5-appl — telnetd code execution vulnerability Related CVEs: CVE-2011-4862 Upstream summary: The MIT Kerberos Team reports: When an encryption key is supplied via the TELNET protocol, its length is not […]

Read more
FreeBSD 14 — git-p — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — git-p — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: git — multiple vulnerabilities Related CVEs: CVE-2024-50349 CVE-2024-52006 CVE-2025-27613 CVE-2025-27614 CVE-2025-46835 CVE-2025-48384 CVE-2025-48385 CVE-2025-48386 Upstream summary: Git development team reports: CVE-2025-27613: Gitk: When a user clones an untrusted repository and […]

Read more
FreeBSD 13 — bind97-base — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — bind97-base — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dns/bind9* — crash on deliberately constructed combination of records Related CVEs: CVE-2012-5166 Upstream summary: ISC reports: A deliberately constructed combination of records could cause named to hang while populating the […]

Read more
FreeBSD 15 — py37-WsgiDAV — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py37-WsgiDAV — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-WsgiDAV — XSS vulnerability Related CVEs: CVE-2022-41905 Upstream summary: Implementations using this library with directory browsing enabled may be susceptible to Cross Site Scripting (XSS) attacks. Table of contents Symptom […]

Read more
FreeBSD 15 — py39-treq — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py39-treq — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-treq — sensitive information leak vulnerability Related CVEs: CVE-2022-23607 Upstream summary: Treq's request methods (`treq.get`, `treq.post`, `HTTPClient.request`, `HTTPClient.get`, etc.) accept cookies as a dictionary. Such cookies are not bound to […]

Read more
FreeBSD 14 — ja-postgresql — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — ja-postgresql — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: postgresql — encoding based SQL injection Related CVEs: CVE-2005-0227 CVE-2005-0244 CVE-2005-0245 CVE-2005-0246 CVE-2005-0247 CVE-2006-2313 CVE-2006-2314 Upstream summary: The PostgreSQL development team reports: An attacker able to submit crafted strings to […]

Read more
FreeBSD 14 — ruby23-gems — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — ruby23-gems — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: RubyGems — multiple vulnerabilities Related CVEs: CVE-2017-0903 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 Upstream summary: RubyGems Security Advisories: CVE-2019-8320: Delete directory using symlink when decompressing tar CVE-2019-8321: Escape sequence injection […]

Read more
FreeBSD 14 — polarssl — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — polarssl — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mbed TLS (PolarSSL) — multiple vulnerabilities Related CVEs: CVE-2013-4623 CVE-2013-5915 CVE-2015-1182 CVE-2015-5291 CVE-2018-0487 CVE-2018-0488 Upstream summary: Simon Butcher reports: Defend against Bellcore glitch attacks by verifying the results of RSA […]

Read more
FreeBSD 15 — xtrabackup — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — xtrabackup — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: qpress — directory traversal Related CVEs: CVE-2022-45866 Upstream summary: [email protected] reports: qpress before PierreLvx/qpress 20220819 and before version 11.3, as used in Percona XtraBackup and other products, allows directory traversal […]

Read more
CHAT