FreeBSD

FreeBSD 13 — php52-sqlite — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — php52-sqlite — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php5-sqlite — open_basedir bypass Related CVEs: CVE-2012-3365 Upstream summary: MITRE CVE team reports: The SQLite functionality in PHP before 5.3.15 allows remote attackers to bypass the open_basedir protection mechanism via […]

Read more
FreeBSD 15 — py310-WsgiDAV — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py310-WsgiDAV — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-WsgiDAV — XSS vulnerability Related CVEs: CVE-2022-41905 Upstream summary: Implementations using this library with directory browsing enabled may be susceptible to Cross Site Scripting (XSS) attacks. Table of contents Symptom […]

Read more
FreeBSD 14 — postgresql13-client — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — postgresql13-client — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL — Multiple vulnerabilities Related CVEs: CVE-2022-41862 CVE-2024-10977 CVE-2024-7348 CVE-2025-1094 CVE-2025-12817 CVE-2025-12818 CVE-2025-4207 Upstream summary: https://www.postgresql.org/support/security/CVE-2025-12818/ reports: Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input […]

Read more
FreeBSD 13 — py27-pycrypto — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py27-pycrypto — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pycrypto — PRNG reseed race condition Related CVEs: CVE-2013-1445 Upstream summary: Dwayne Litzenberger reports: In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator (PRNG) exhibits a race condition that may […]

Read more
FreeBSD 15 — py310-flask-security — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py310-flask-security — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-flask-security — user redirect to arbitrary URL vulnerability Related CVEs: CVE-2021-23385 Upstream summary: Snyk reports: This affects all versions of package Flask-Security. When using the `get_post_logout_redirect` and `get_post_login_redirect` functions, it […]

Read more
FreeBSD 13 — py27-graphite-web — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — py27-graphite-web — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-graphite-web — Multiple vulnerabilities Related CVEs: CVE-2013-5093 Upstream summary: Graphite developers report: This release contains several security fixes for cross-site scripting (XSS) as well as a fix for a remote-execution […]

Read more
FreeBSD 15 — py37-flask-caching — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py37-flask-caching — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-flask-caching — remote code execution or local privilege escalation vulnerabilities Related CVEs: CVE-2021-33026 Upstream summary: subnix reports: The Flask-Caching extension through 2.0.2 for Flask relies on Pickle for serialization, which […]

Read more
FreeBSD 13 — rubygem19-rdoc — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — rubygem19-rdoc — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Ruby — XSS exploit of RDoc documentation generated by rdoc Related CVEs: CVE-2013-0256 Upstream summary: Ruby developers report: RDoc documentation generated by rdoc bundled with ruby are vulnerable to an […]

Read more
FreeBSD 14 — vim-lite — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — vim-lite — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vim — arbitrary command execution Related CVEs: CVE-2004-1138 CVE-2005-2368 CVE-2007-2953 CVE-2008-2712 CVE-2008-3076 CVE-2016-1248 Upstream summary: Mitre reports: vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' […]

Read more
FreeBSD 14 — mercurial — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — mercurial — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mercurial — multiple issues Related CVEs: CVE-2016-3068 CVE-2016-3069 CVE-2016-3105 CVE-2016-3630 CVE-2017-1000115 CVE-2017-1000116 Upstream summary: mercurial developers reports: Mercurial prior to version 4.3 is vulnerable to a missing symlink check that […]

Read more
CHAT