Operations

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mpack — Information disclosure Related CVEs: CVE-2011-4919 Upstream summary: The oss-security list reports: Incorrect permissions on temporary files can lead to information disclosure. Table of contents Symptom & Impact Environment […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mod_fcgid — possible heap buffer overwrite Related CVEs: CVE-2013-4365 Upstream summary: Apache Project reports: Fix possible heap buffer overwrite. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: telepathy-gabble — TLS verification bypass Related CVEs: CVE-2013-1431 Upstream summary: Simon McVittie reports: This release fixes a man-in-the-middle attack. If you use an unencrypted connection to a "legacy Jabber" (pre-XMPP) […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-ruby_parser — insecure tmp file usage Related CVEs: CVE-2013-0162 Upstream summary: Michael Scherer reports: This is a relatively minor tmp file usage issue. Table of contents Symptom & Impact Environment […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Ruby — XSS exploit of RDoc documentation generated by rdoc Related CVEs: CVE-2013-0256 Upstream summary: Ruby developers report: RDoc documentation generated by rdoc bundled with ruby are vulnerable to an […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-pylons — Path traversal bug Upstream summary: Pylons team reports: The error.py controller uses paste.fileapp to serve the static resources to the browser. The default error.py controller uses os.path.join to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: KDE — multiple vulnerabilities Upstream summary: oCERT reports: Ark input sanitization errors: The KDE archiving tool, Ark, performs insufficient validation which leads to specially crafted archive files, using unknown MIME […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: horde-gollem — XSS vulnerability Upstream summary: The Horde team reports: The major changes compared to Gollem version H3 (1.1.1) are: * Fixed an XSS vulnerability in the file viewer. Table […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: DomainKeys Identified Mail (DKIM) Verifiers may inappropriately convey message trust Upstream summary: US-CERT reports: DomainKeys Identified Mail (DKIM) Verifiers may inappropriately convey message trust when messages are signed using test […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ircd-ratbox and charybdis — remote DoS vulnerability Upstream summary: atheme.org reports: All versions of Charybdis are vulnerable to a remotely-triggered crash bug caused by code originating from ircd-ratbox 2.0. (Incidentally, […]