Operations

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-cgi — HTTP response splitting vulnerability Related CVEs: CVE-2021-33621 CVE-2021-41816 CVE-2021-41819 Upstream summary: Hiroshi Tokumaru reports: If an application that generates HTTP responses using the cgi gem with untrusted user […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libcaca — Multiple vulnerabilities Related CVEs: CVE-2018-20545 CVE-2018-20546 CVE-2018-20547 CVE-2018-20548 CVE-2018-20549 CVE-2021-30498 CVE-2021-30499 CVE-2021-3410 Upstream summary: Sam Hocevar reports: Multiple memory leaks and invalid memory accesses: CVE-2018-20545: Illegal WRITE memory […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: net/eternalterminal — Multiple vulnerabilities Related CVEs: CVE-2022-48257 CVE-2022-48258 Upstream summary: Mitre reports: etserver and etclient have predictable logfile names in /tmp and they are world-readable logfiles Table of contents Symptom […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libraw — multiple DoS vulnerabilities Related CVEs: CVE-2015-3885 CVE-2015-8366 CVE-2015-8367 CVE-2017-14265 CVE-2017-14348 CVE-2017-14608 CVE-2017-16909 CVE-2017-16910  +3 more Upstream summary: Secunia Research reports: CVE-2018-5800: An off-by-one error within the "LibRaw::kodak_ycbcr_load_raw()" function […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nebula — security fix for terrapin vulnerability Related CVEs: CVE-2023-48795 Upstream summary: Upstream reports: Security fix: Update golang.org/x/crypto, which includes a fix for CVE-2023-48795. Table of contents Symptom & Impact […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openoffice — DOC document heap overflow vulnerability Related CVEs: CVE-2004-0752 CVE-2005-0941 Upstream summary: AD-LAB reports that a heap-based buffer overflow vulnerability exists in OpenOffice's handling of DOC documents. When reading […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Matrix clients — mxc uri validation in js sdk Related CVEs: CVE-2021-40823 CVE-2021-40824 CVE-2022-36059 CVE-2022-36060 CVE-2022-39236 CVE-2022-39249 CVE-2022-39250 CVE-2022-39251  +3 more Upstream summary: matrix-js-sdk upstream reports: matrix-js-sdk before 34.11.0 is […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — use-after-free vulnerability Upstream summary: Symeon Paraschoudis reports: Use-after-free vulnerability in sqlite3SafetyCheckSickOrOk() Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-strawberry-graphql — Multiple vulnerabilities Related CVEs: CVE-2026-35523 CVE-2026-35526 Upstream summary: The Strawberry GraphQL project reports: Strawberry up until version 0.312.3 is vulnerable to an authentication bypass on WebSocket subscription endpoints. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: courier-imap — format string vulnerability in debug mode Related CVEs: CVE-2004-0224 CVE-2004-0777 Upstream summary: An iDEFENSE security advisory describes a format string vulnerability that could be exploited when Courier-IMAP is […]