Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Pubcookie Login Server — XSS vulnerability Upstream summary: Nathan Dors, Pubcookie Project reports: A new non-persistent XSS vulnerability was found in the Pubcookie login server's compiled binary "index.cgi" CGI program. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hplip — hpssd Denial of Service Related CVEs: CVE-2008-2940 CVE-2008-2941 Upstream summary: Secunia reports: A security issue has been reported in hplip, which can be exploited by malicious, local users […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: lynx — SSL certificate validation error Related CVEs: CVE-2005-3120 Upstream summary: Axel Beckert reports: […] I was able to capture the password given on the commandline in traffic of an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: advancecomp — Multiple vulnerabilities Related CVEs: CVE-2018-1056 CVE-2019-8379 CVE-2019-8383 CVE-2019-9210 CVE-2022-35014 CVE-2022-35015 CVE-2022-35016 CVE-2022-35017  +3 more Upstream summary: GitHub advisories reports: Multiple vulnerabilities found in advancecomp including: Three segmentation faults. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gstreamer-plugins-good — multiple memory overflows Related CVEs: CVE-2009-0386 CVE-2009-0387 CVE-2009-0397 Upstream summary: Secunia reports: Tobias Klein has reported some vulnerabilities in GStreamer Good Plug-ins, which can potentially be exploited by […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: GNU cpio — multiple vulnerabilities Related CVEs: CVE-2014-9112 CVE-2015-1197 CVE-2016-2037 CVE-2019-14866 Upstream summary: Sergey Poznyakoff reports: This stable release fixes several potential vulnerabilities CVE-2015-1197: cpio, when using the –no-absolute-filenames option, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Postfix — memory corruption vulnerability Related CVEs: CVE-2011-0411 CVE-2011-1720 Upstream summary: The Postfix SMTP server has a memory corruption error, when the Cyrus SASL library is used with authentication mechanisms […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: emacs — movemail format string vulnerability Related CVEs: CVE-2005-0100 Upstream summary: Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. They can be exploited when connecting […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: p7zip-codec-rar — insufficient error handling Related CVEs: CVE-2018-5996 Upstream summary: MITRE reports: Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gdm — lock screen bypass when holding escape key Related CVEs: CVE-2011-0727 CVE-2015-7496 Upstream summary: Ray Strode reports: CVE-2015-7496 – lock screen bypass when holding escape key. Table of contents […]