Operations

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: portaudit — auditfile remote code execution Upstream summary: Michael Gmelin and Jörg Scheinert has reported a remote command execution vulnerability in portaudit. An attacker who can get the user to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: flash — multiple vulnerabilities Related CVEs: CVE-2016-4273 CVE-2016-4286 CVE-2016-6981 CVE-2016-6982 CVE-2016-6983 CVE-2016-6984 CVE-2016-6985 CVE-2016-6986  +12 more Upstream summary: Adobe reports: These updates resolve type confusion vulnerabilities that could lead to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not included. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: django-cms — XSS Vulnerability Upstream summary: Cross-site scripting (XSS) vulnerability Jonas Obrist reports: The security issue allows users with limited admin access to elevate their privileges through XSS injection using […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: palemoon — multiple vulnerabilities Related CVEs: CVE-2017-7832 CVE-2017-7835 CVE-2017-7840 CVE-2018-5102 CVE-2018-5122 Upstream summary: Pale Moon reports: CVE-2018-5102: Use-after-free in HTML media elements CVE-2018-5122: Potential integer overflow in DoCrypt Table of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Mbed TLS — vulnerabilities Related CVEs: CVE-2015-5291 CVE-2018-0487 CVE-2018-0488 CVE-2018-0497 CVE-2018-0498 CVE-2018-19608 CVE-2019-18222 CVE-2020-10932  +12 more Upstream summary: https://mbed-tls.readthedocs.io/en/latest/security-advisories/ reports: Client impersonation while resuming a TLS 1.3 session (CVE-2026-34873) Entropy […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cinder — unauthorized data access Related CVEs: CVE-2014-3641 CVE-2022-47951 Upstream summary: Utkarsh Gupta reports: An issue was discovered in OpenStack Cinder before 19.1.2, 20.x before 20.0.2, and 21.0.0; Glance before […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Arti — Security issues related to circuit construction Related CVEs: CVE-2024-35312 CVE-2024-35313 Upstream summary: Tor Project reports: When building anonymizing circuits to or from an onion service with 'lite' vanguards […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: apache22 — chunk header parsing defect Related CVEs: CVE-2012-0833 CVE-2012-2687 CVE-2012-3499 CVE-2012-4558 CVE-2013-1862 CVE-2013-1896 CVE-2013-5704 CVE-2013-6438  +5 more Upstream summary: Apache Foundation reports: CVE-2015-3183 core: Fix chunk header parsing defect. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gftp — multiple vulnerabilities Related CVEs: CVE-2005-0372 CVE-2007-3961 CVE-2007-3962 Upstream summary: Gentoo reports: Kalle Olavi Niemitalo discovered two boundary errors in fsplib code included in gFTP when processing overly long […]