FreeBSD

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-imap — imap_open allows to run arbitrary shell commands via mailbox parameter Upstream summary: The PHP team reports: imap_open allows to run arbitrary shell commands via mailbox parameter. Table of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libsndfile_project — Integer overflow in dataend calculation Related CVEs: CVE-2009-0186 CVE-2009-1788 CVE-2009-1791 CVE-2011-2696 CVE-2017-12562 CVE-2017-14245 CVE-2017-14246 CVE-2017-14634  +12 more Upstream summary: [email protected] reports: Multiple signed integers overflow in function au_read_header […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: png — memory corruption/possible remote code execution Related CVEs: CVE-2011-3048 Upstream summary: The PNG project reports: libpng fails to correctly handle malloc() failures for text chunks (in png_set_text_2()), which can […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bitmessage — remote code execution vulnerability Upstream summary: Bitmessage developers report: A remote code execution vulnerability has been spotted in use against some users running PyBitmessage v0.6.2. The cause was […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: silc-client — Format string vulnerability Related CVEs: CVE-2009-3051 Upstream summary: SILC changelog reports: An unspecified format string vulnerability exists in silc-client. Table of contents Symptom & Impact Environment & Reproduction […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: www/py-requests — Information disclosure vulnerability Upstream summary: The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Apache OpenOffice — master password vulnerabilities Related CVEs: CVE-2014-3575 CVE-2015-1774 CVE-2015-4551 CVE-2015-5212 CVE-2015-5213 CVE-2015-5214 CVE-2016-1513 CVE-2017-12607  +11 more Upstream summary: The Apache Openoffice project reports: Apache OpenOffice supports the storage […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-graphite-web — Multiple vulnerabilities Related CVEs: CVE-2013-5093 Upstream summary: Graphite developers report: This release contains several security fixes for cross-site scripting (XSS) as well as a fix for a remote-execution […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Okular — Local binary execution via action links Upstream summary: Albert Astals Cid: Okular can be tricked into executing local binaries via specially crafted PDF files. This binary execution can […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openhab — log4j remote code injection Related CVEs: CVE-2021-44228 Upstream summary: Openhab reports: Any openHAB instance that is publicly available or which consumes untrusted content from remote servers is potentially […]