Logging Monitoring

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-imap — imap_open allows to run arbitrary shell commands via mailbox parameter Upstream summary: The PHP team reports: imap_open allows to run arbitrary shell commands via mailbox parameter. Table of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: KWallet-PAM — Access to privileged files Upstream summary: The KDE Community reports: kwallet-pam was doing file writing and permission changing as root that with correct timing and use of carefully […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: transmission-daemon — vulnerable to dns rebinding attacks Upstream summary: Google Project Zero reports: The transmission bittorrent client uses a client/server architecture, the user interface is the client which communicates to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: jupyter notebook — open redirect vulnerability Upstream summary: Jupyter reports: 6.1.5 is a security release, fixing one vulnerability: Fix open redirect vulnerability GHSA-c7vm-f5p4-8fqh (CVE to be assigned) Table of contents […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Okular — Local binary execution via action links Upstream summary: Albert Astals Cid: Okular can be tricked into executing local binaries via specially crafted PDF files. This binary execution can […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nettle 3.7.2 — fix serious ECDSA signature verify bug Upstream summary: Niels Möller reports: I've prepared a new bug-fix release of Nettle, a low-level cryptographics library, to fix a serious […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: roundcube-thunderbird_labels — RCE with custom label titles Upstream summary: The Roundcube project reports: Description: Remote code execution vulnerability in roundcube-thunderbird_labels when tb_label_modify_labels is enabled. Workaround: If you cannot upgrade to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: MySQL — Multiple vulnerabilities Upstream summary: Oracle reports: 36 new security patches for Oracle MySQL. 11 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pkcs11-helper — deserialize buffer overflow Upstream summary: Alon Bar-Lev reports: util: fix deserialize buffer overflow. thanks to Aarnav Bos. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: subversion — WebDAV fails to protect metadata Related CVEs: CVE-2004-0749 Upstream summary: In some situations, subversion metadata may be unexpectedly disclosed via WebDAV. A subversion advisory states: mod_authz_svn, the Apache […]