Operations

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libzip — integer overflow Related CVEs: CVE-2015-2331 Upstream summary: libzip developers report: Avoid integer overflow. Fixed similarly to patch used in PHP copy of libzip. Table of contents Symptom & […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mantis — multiple vulnerabilities Related CVEs: CVE-2018-16514 CVE-2019-15715 CVE-2019-8331 CVE-2020-25288 CVE-2020-25781 CVE-2020-25830 CVE-2020-28413 CVE-2020-35849  +7 more Upstream summary: Mantis 2.25.8 release reports: Security and maintenance release 0032432: Update guzzlehttp/psr7 to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygems — deserialization vulnerability Related CVEs: CVE-2015-3900 CVE-2017-0903 Upstream summary: oss-security mailing list: There is a possible unsafe object desrialization vulnerability in RubyGems. It is possible for YAML deserialization of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Memory leak in different components Related CVEs: CVE-2018-14072 CVE-2018-14073 Upstream summary: MITRE reports: bsixel 1.8.1 has a memory leak in sixel_decoder_decode in decoder.c, image_buffer_resize in fromsixel.c, sixel_decode_raw in fromsixel.c and […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Ansible — Ansible user credentials disclosure in ansible-connection module Related CVEs: CVE-2021-3583 CVE-2021-3620 Upstream summary: Red Hat reports: A flaw was found in Ansible Engine's ansible-connection module, where sensitive information […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cryptography — vulnerable HKDF key generation Related CVEs: CVE-2016-9243 Upstream summary: Alex Gaynor reports: Fixed a bug where “HKDF“ would return an empty byte-string if used with a “length“ less […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: monkey — improper input validation vulnerability Upstream summary: Census Labs reports: We have discovered a remotely exploitable "improper input validation" vulnerability in the Monkey web server that allows an attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dendrite — Server-side request forgery vulnerability Related CVEs: CVE-2022-36009 CVE-2024-52594 Upstream summary: Dendrite team reports: This is a security release, gomatrixserverlib was vulnerable to server-side request forgery, serving content from […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Erlang – Absolute Path in Zip Module Related CVEs: CVE-2011-0766 CVE-2025-32433 CVE-2025-4748 Upstream summary: https://github.com/erlang/otp/security/advisories/GHSA-9g37-pgj9-wrhc reports: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mutt/neomutt — multiple vulnerabilities Related CVEs: CVE-2018-14349 CVE-2018-14350 CVE-2018-14351 CVE-2018-14352 CVE-2018-14353 CVE-2018-14354 CVE-2018-14355 CVE-2018-14356  +7 more Upstream summary: NeoMutt report: Description CVE-2018-14349 NO Response Heap Overflow CVE-2018-14350 INTERNALDATE Stack Overflow […]