Logging Monitoring

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: squirrelmail — random variable overwrite vulnerability Related CVEs: CVE-2004-1036 CVE-2005-0075 CVE-2005-0103 CVE-2005-0104 CVE-2005-1769 CVE-2005-2095 CVE-2006-4019 Upstream summary: The SquirrelMail developers report: A logged in user could overwrite random variables in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-redcarpet — XSS vulnerability Upstream summary: Daniel LeCheminant reports: When markdown is being presented as HTML, there seems to be a strange interaction between _ and @ that lets an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vlc — arbitrary code execution in the RealMedia processor Related CVEs: CVE-2008-5032 CVE-2008-5036 CVE-2008-5276 Upstream summary: Tobias Klein from TrapKit reports: The VLC media player contains an integer overflow vulnerability […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-strawberry-graphql — Multiple vulnerabilities Related CVEs: CVE-2026-35523 CVE-2026-35526 Upstream summary: The Strawberry GraphQL project reports: Strawberry up until version 0.312.3 is vulnerable to an authentication bypass on WebSocket subscription endpoints. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Mozilla — Sandbox escape Related CVEs: CVE-2025-14321 CVE-2025-14322 Upstream summary: https://bugzilla.mozilla.org/show_bug.cgi?id=1996473 reports: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. Table of contents Symptom & Impact […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2015-5589 CVE-2015-5590 CVE-2015-6831 CVE-2015-6832 CVE-2015-6833 CVE-2015-7803 CVE-2015-7804 Upstream summary: PHP reports: Phar: Fixed bug #69720 (Null pointer dereference in phar_get_fp_offset()). Fixed bug #70433 (Uninitialized […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: WebCalendar — multiple vulnerabilities Related CVEs: CVE-2012-0846 CVE-2012-1495 CVE-2012-1496 Upstream summary: Hanno Boeck reports: Fixes [are now available] for various security vulnerabilities including LFI (local file inclusion), XSS (cross site […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenSSL — OOB memory access vulnerability Related CVEs: CVE-2023-5678 CVE-2023-6129 CVE-2023-6237 CVE-2024-0727 CVE-2024-2511 CVE-2024-4603 CVE-2024-4741 CVE-2024-5535  +2 more Upstream summary: The OpenSSL project reports: Low-level invalid GF(2^m) parameters lead to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-ormar — vulnerabilities Related CVEs: CVE-2026-26198 CVE-2026-27953 Upstream summary: https://github.com/ormar-orm/ormar/security/advisories reports: SQL Injection in aggregate functions min() and max() Pydantic Validation Bypass via __pk_only__ and __excluded__ Kwargs Injection in Model […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: End of Life Ports Upstream summary: These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take […]