Operations

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-slixmpp — incomplete SSL certificate validation Related CVEs: CVE-2019-1000021 CVE-2022-45197 Upstream summary: Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Vieb — Remote Code Execution via Visiting Untrusted URLs Upstream summary: Zhengyu Liu, Jianjia Yu, Jelmer van Arnhem report: We discovered a remote code execution (RCE) vulnerability in the latest […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: MPD5 PPPoE Server remotely exploitable crash Related CVEs: CVE-2020-7465 CVE-2020-7466 Upstream summary: Version 5.9_2 contains security fix for PPPoE servers. Insufficient validation of incoming PPPoE Discovery request specially crafted by […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Wagtail — potential timing attack vulnerability Related CVEs: CVE-2020-11001 CVE-2020-11037 Upstream summary: Wagtail release notes: CVE-2020-11037: Potential timing attack on password-protected private pages This release addresses a potential timing attack […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rsyslog8 — heap buffer overflow on receiving TCP syslog Related CVEs: CVE-2014-3634 CVE-2022-24903 Upstream summary: Rainer Gerhards reports: Modules for TCP syslog reception have a heap buffer overflow when octet-counted […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mdbook — XSS in mdBook's search page Related CVEs: CVE-2020-26297 Upstream summary: Rust Security Response Working Group reports: The search feature of mdBook (introduced in version 0.1.4) was affected by […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Memory leak in different components Related CVEs: CVE-2018-14072 CVE-2018-14073 Upstream summary: MITRE reports: bsixel 1.8.1 has a memory leak in sixel_decoder_decode in decoder.c, image_buffer_resize in fromsixel.c, sixel_decode_raw in fromsixel.c and […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: claws-mail — POP3 Format String Vulnerability Related CVEs: CVE-2005-0667 CVE-2005-0926 CVE-2007-2958 Upstream summary: A Secunia Advisory reports: A format string error in the "inc_put_error()" function in src/inc.c when displaying a […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nokogiri — Security vulnerability Related CVEs: CVE-2019-5477 CVE-2020-26247 Upstream summary: Nokogiri reports: In Nokogiri versions <= 1.11.0.rc3, XML Schemas parsed by Nokogiri::XML::Schema were trusted by default, allowing external resources to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dbus file descriptor leak Related CVEs: CVE-2006-6107 CVE-2013-2168 CVE-2014-3477 CVE-2014-3532 CVE-2014-3533 CVE-2014-3635 CVE-2014-3636 CVE-2014-3637  +4 more Upstream summary: GitHub Security Lab reports: D-Bus has a file descriptor leak, which can […]