Operations

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-pdfminer.six — Arbitrary Code Execution in pdfminer.six via Crafted PDF Input Related CVEs: CVE-2025-64512 Upstream summary: Pieter Marsman reports: pdfminer.six will execute arbitrary code from a malicious pickle file if […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: databases/postgresql*-client — multiple vulnerabilities Related CVEs: CVE-2009-4034 CVE-2009-4136 CVE-2012-0866 CVE-2012-0867 CVE-2012-0868 Upstream summary: The PostgreSQL Global Development Group reports: These vulnerabilities could allow users to define triggers that execute functions […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: glibc — getaddrinfo stack-based buffer overflow Related CVEs: CVE-2015-7547 Upstream summary: Fabio Olive Leite reports: A stack-based buffer overflow was found in libresolv when invoked from nss_dns, allowing specially crafted […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: p5-Authen-SASL — Insecure source of randomness Related CVEs: CVE-2025-40918 Upstream summary: p5-Authen-SASL project reports: Authen::SASL::Perl::DIGEST_MD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. The cnonce (client nonce) is […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rails — multiple vulnerabilities Related CVEs: CVE-2013-4491 CVE-2013-6414 CVE-2013-6415 CVE-2013-6416 CVE-2013-6417 Upstream summary: Rails weblog: Rails 3.2.16 and 4.0.2 have been released! These two releases contain important security fixes, so […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: p5-PathTools — File::Spec::canonpath loses taint Related CVEs: CVE-2015-8607 Upstream summary: Ricardo Signes reports: Beginning in PathTools 3.47 and/or perl 5.20.0, the File::Spec::canonpath() routine returned untained strings even if passed tainted […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: WeeChat — Multiple vulnerabilities Related CVEs: CVE-2012-5854 CVE-2017-14727 CVE-2017-8073 CVE-2020-8955 Upstream summary: The Weechat project reports: Multiple integer and buffer overflows in WeeChat core. Table of contents Symptom & Impact […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: procmail — Heap-based buffer overflow Related CVEs: CVE-2017-16844 Upstream summary: MITRE reports: A remote attacker could use a flaw to cause formail to crash, resulting in a denial of service […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dash — arith: INTMAX_MIN / -1 overflow Related CVEs: CVE-2026-31323 Upstream summary: https://git.kernel.org/pub/scm/utils/dash/dash.git/commit/?id=0034bfe185d3d875cebace8cb3ca5c9dabf9e0f3 reports: Division and remainder currently guard against division by zero, but not against the signed overflow case […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libxml2 — Enforce the reader to run in constant memory Related CVEs: CVE-2013-2877 CVE-2014-0191 CVE-2014-3660 CVE-2015-1819 Upstream summary: Daniel Veilland reports: Enforce the reader to run in constant memory. One […]