FreeBSD

FreeBSD 14 — apr — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — apr — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Apache APR — DoS vulnerabilities Related CVEs: CVE-2009-0023 CVE-2009-1955 CVE-2009-1956 CVE-2009-3560 CVE-2009-3720 CVE-2010-1623 CVE-2011-0419 CVE-2011-1928 Upstream summary: The Apache Portable Runtime Project reports: Reimplement apr_fnmatch() from scratch using a non-recursive […]

Read more
FreeBSD 13 — pngcrush — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — pngcrush — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pngcrush — libpng Uninitialised Pointer Arrays Vulnerability Related CVEs: CVE-2009-0040 Upstream summary: Secunia reports: A vulnerability has been reported in Pngcrush, which can be exploited by malicious people to potentially […]

Read more
FreeBSD 14 — pcre-utf — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — pcre-utf — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pcre — arbitrary code execution Related CVEs: CVE-2005-2491 CVE-2007-1659 CVE-2007-1660 CVE-2007-1661 CVE-2007-1662 CVE-2007-4766 CVE-2007-4767 CVE-2007-4768 Upstream summary: Debian project reports: Tavis Ormandy of the Google Security Team has discovered several […]

Read more
FreeBSD 13 — vte — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — vte — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vte — Classic terminal title set+query attack Related CVEs: CVE-2010-2713 Upstream summary: Kees Cook reports: Janne Snabb discovered that applications using VTE, such as gnome-terminal, did not correctly filter window […]

Read more
FreeBSD 13 — xrdb — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — xrdb — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xrdb — root hole via rogue hostname Related CVEs: CVE-2011-0465 Upstream summary: Matthias Hopf reports: By crafting hostnames with shell escape characters, arbitrary commands can be executed in a root […]

Read more
FreeBSD 13 — tinyproxy — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — tinyproxy — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tinyproxy — ACL lists ineffective when range is configured Related CVEs: CVE-2011-1499 Upstream summary: When including a line to allow a network of IP addresses, the access to tinyproxy 56 […]

Read more
FreeBSD 15 — py39-borgbackup — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py39-borgbackup — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Borg (Backup) — flaw in cryptographic authentication scheme in Borg allowed an attacker to fake archives and indirectly cause backup data loss. Related CVEs: CVE-2023-36811 Upstream summary: Thomas Waldmann reports: […]

Read more
FreeBSD 14 — racoon — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 14

FreeBSD 14 — racoon — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: racoon — remote denial-of-service Related CVEs: CVE-2004-0155 CVE-2004-0164 CVE-2004-0183 CVE-2004-0184 CVE-2004-0392 CVE-2004-0403 CVE-2005-0398 Upstream summary: Sebastian Krahmer discovered that the racoon ISAKMP daemon could be crashed with a maliciously crafted […]

Read more
FreeBSD 13 — linux-f10-png — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 13

FreeBSD 13 — linux-f10-png — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: png — memory corruption/possible remote code execution Related CVEs: CVE-2011-3048 Upstream summary: The PNG project reports: libpng fails to correctly handle malloc() failures for text chunks (in png_set_text_2()), which can […]

Read more
FreeBSD 15 — py38-httpx — vulnerability — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py38-httpx — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-httpx — input validation vulnerability Related CVEs: CVE-2021-41945 Upstream summary: lebr0nli reports: Encode OSS httpx <=1.0.0.beta0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `httpx.URL.copy_with`. […]

Read more
CHAT