Operations

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Ruby — Denial of Service and Unsafe Object Creation Vulnerability in JSON Related CVEs: CVE-2013-0269 Upstream summary: Aaron Patterson reports: When parsing certain JSON documents, the JSON gem can be […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nagios — denial of service vulnerability Related CVEs: CVE-2007-5803 CVE-2008-5027 CVE-2009-2288 CVE-2012-6096 CVE-2013-7108 CVE-2013-7205 Upstream summary: Eric Stanley reports: Most CGIs previously incremented the input variable counter twice when it […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mcollective — cert valication issue Related CVEs: CVE-2014-3251 Upstream summary: Melissa Stone reports: The MCollective aes_security public key plugin does not correctly validate certs against the CA. By exploiting this […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-psutil — double free vulnerability Related CVEs: CVE-2019-18874 Upstream summary: ret2libc reports: psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs because of refcount mishandling within a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: heimdal — bypass of capath policy Related CVEs: CVE-2004-0371 CVE-2004-0434 CVE-2005-0469 CVE-2005-2040 CVE-2006-0582 CVE-2006-0677 Upstream summary: Viktor Dukhovni reports: Commit f469fc6 (2010-10-02) inadvertently caused the previous hop realm to not […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-amf — input sanitization errors Related CVEs: CVE-2015-8549 Upstream summary: oCERT reports: A specially crafted AMF payload, containing malicious references to XML external entities, can be used to trigger Denial […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-suds — vulnerable to symlink attacks Related CVEs: CVE-2013-2217 Upstream summary: SUSE reports: cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xscreensaver – lock bypass Related CVEs: CVE-2015-8025 Upstream summary: RedHat bugzilla reports: In dual screen configurations, unplugging one screen will cause xscreensaver to crash, leaving the screen unlocked. Table of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py39-unicorn — sandbox escape and arbitrary code execution vulnerability Related CVEs: CVE-2021-44078 Upstream summary: jwang-a reports: An issue was discovered in split_region in uc.c in Unicorn Engine before 2.0.0-rc5. It […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py39-celery — command injection vulnerability Related CVEs: CVE-2021-23727 Upstream summary: Snyk reports: This affects the package celery before 5.2.2. It by default trusts the messages and metadata stored in backends […]