FreeBSD

FreeBSD 13 — heartbeat — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — heartbeat — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: heartbeat — insecure temporary file creation vulnerability Related CVEs: CAN-2005-2231 Upstream summary: Eric Romang reports a temporary file creation vulnerability within heartbeat. The vulnerability is caused by hardcoded temporary file […]

Read more
FreeBSD 15 — rubygem-websocket-extensions — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — rubygem-websocket-extensions — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: websocket-extensions — ReDoS vulnerability Related CVEs: CVE-2020-7663 Upstream summary: Changelog: Remove a ReDoS vulnerability in the header parser (CVE-2020-7663) Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
FreeBSD 14 — exim-mysql — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — exim-mysql — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: exim — local privilege escalation Related CVEs: CVE-2004-0400 CVE-2005-0021 CVE-2005-0022 CVE-2011-0017 Upstream summary: exim.org reports: CVE-2011-0017 – check return value of setuid/setgid. This is a privilege escalation vulnerability whereby the […]

Read more
FreeBSD 13 — libsamplerate — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — libsamplerate — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libsamplerate — multiple vulnerabilities Related CVEs: CVE-2017-7697 Upstream summary: NVD reports: In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in src_sinc.c via a crafted audio file. […]

Read more
FreeBSD 15 — librsvg2-rust — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — librsvg2-rust — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: librsvg2 — multiple vulnerabilities Related CVEs: CVE-2019-20446 Upstream summary: Librsvg2 developers reports: Backport the following fixes from 2.46.x: Librsvg now has limits on the number of loaded XML elements, and […]

Read more
FreeBSD 14 — zh-phpbb-tw — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — zh-phpbb-tw — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: phpbb — NULL byte injection vulnerability Related CVEs: CVE-2005-3310 CVE-2005-3415 CVE-2005-3416 CVE-2005-3417 CVE-2005-3418 CVE-2005-3419 CVE-2005-3420 CVE-2005-3536  +2 more Upstream summary: Secunia reports: ShAnKaR has discovered a vulnerability in phpBB, which […]

Read more
FreeBSD 13 — py34-diffoscope — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py34-diffoscope — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: diffoscope — arbitrary file write Related CVEs: CVE-2017-0359 Upstream summary: Ximin Luo reports: [v67] introduced a security hole where diffoscope may write to arbitrary locations on disk depending on the […]

Read more
FreeBSD 13 — py35-diffoscope — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py35-diffoscope — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: diffoscope — arbitrary file write Related CVEs: CVE-2017-0359 Upstream summary: Ximin Luo reports: [v67] introduced a security hole where diffoscope may write to arbitrary locations on disk depending on the […]

Read more
FreeBSD 15 — libpano — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — libpano — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libpano13 — arbitrary memory access through format string vulnerability Related CVEs: CVE-2021-20307 Upstream summary: libpano13 developers reports: Fix crash and security issue caused by malformed filename prefix Table of contents […]

Read more
FreeBSD 15 — sogo-activesync — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — sogo-activesync — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SOGo — SAML user authentication impersonation Related CVEs: CVE-2021-33054 Upstream summary: sogo.nu reports: SOGo was not validating the signatures of any SAML assertions it received. This means any actor with […]

Read more
CHAT