Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-wagtail — stored XSS vulnerability Related CVEs: CVE-2020-11001 CVE-2020-11037 CVE-2020-15118 CVE-2023-28836 CVE-2023-28837 Upstream summary: A stored cross-site scripting (XSS) vulnerability exists on ModelAdmin views within the Wagtail admin interface. A […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: perl — denial of service via algorithmic complexity attack on hashing routines Related CVEs: CVE-2004-0452 CVE-2005-0155 CVE-2005-0156 CVE-2007-5116 CVE-2013-1667 Upstream summary: Perl developers report: In order to prevent an algorithmic […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: electron{22,24,25} — Heap buffer overflow in vp8 encoding in libvpx Related CVEs: CVE-2014-1578 CVE-2015-4485 CVE-2015-4486 CVE-2015-4506 CVE-2023-5217 Upstream summary: Electron developers report: This update fixes the following vulnerability: Security: backported […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nghttp2 — CWE-617: Reachable Assertion Related CVEs: CVE-2018-1000168 CVE-2019-9511 CVE-2019-9513 CVE-2020-11080 CVE-2026-27135 Upstream summary: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6 reports: nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. Prior […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: FreeBSD — Multiple vulnerabilities in OpenSSH Related CVEs: CVE-2021-28041 CVE-2021-41617 CVE-2023-38408 CVE-2025-26465 CVE-2025-26466 Upstream summary: Problem Description: OpenSSH client host verification error (CVE-2025-26465) ssh(1) contains a logic error that allows […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libXpm — Out-of-bounds read in xpmNextWord() Related CVEs: CVE-2004-0687 CVE-2004-0688 CVE-2022-44617 CVE-2022-46285 CVE-2022-4883 CVE-2023-43788 CVE-2023-43789 CVE-2026-4367 Upstream summary: The X.Org project reports: libXpm uses a number of internal helper functions […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: netatalk3 — multiple WolfSSL vulnerabilities Related CVEs: CVE-2008-5718 CVE-2024-1544 CVE-2024-38439 CVE-2024-38440 CVE-2024-38441 CVE-2024-5288 CVE-2024-5814 CVE-2024-5991 Upstream summary: Netatalk release reports: WolfSSL 5.7.0 (included in netatalk) includes multiple security vulnerabilities. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: websvn — reflected cross-site scripting Related CVEs: CVE-2008-5918 CVE-2008-5919 CVE-2009-0240 CVE-2013-6892 CVE-2016-2511 Upstream summary: Sebastien Delafond reports: Jakub Palaczynski discovered that websvn, a web viewer for Subversion repositories, does not […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-markdown2 — regular expression denial of service vulnerability Related CVEs: CVE-2020-11888 CVE-2021-26813 Upstream summary: Ben Caller reports: markdown2 >=1.0.1.18, fixed in 2.4.0, is affected by a regular expression denial of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nexus2-oss — Apache ActiveMQ JMX vulnerability Related CVEs: CVE-2019-15893 CVE-2019-16530 CVE-2019-5475 CVE-2020-13920 CVE-2020-15012 Upstream summary: Sonatype reports: CVE-2020-13920: Apache ActiveMQ JMX is vulnerable to a MITM attack Table of contents […]