Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-strawberry-graphql — Multiple vulnerabilities Related CVEs: CVE-2026-35523 CVE-2026-35526 Upstream summary: The Strawberry GraphQL project reports: Strawberry up until version 0.312.3 is vulnerable to an authentication bypass on WebSocket subscription endpoints. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SQLite — Integer Overflow vulnerability Related CVEs: CVE-2025-29088 CVE-2025-52099 Upstream summary: http://sqlite3.com reports: Integer Overflow vulnerability in SQLite SQLite3 v.3.50.0 allows a remote attacker to cause a denial of service […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: exim — local privilege escalation Related CVEs: CVE-2004-0400 CVE-2005-0021 CVE-2005-0022 CVE-2011-0017 Upstream summary: exim.org reports: CVE-2011-0017 – check return value of setuid/setgid. This is a privilege escalation vulnerability whereby the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: End of Life Ports Upstream summary: These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: osip — Improper Restriction of Operations within the Bounds of a Memory Buffer Related CVEs: CVE-2017-7853 Upstream summary: osip developers reports: In libosip2 in GNU oSIP 4.1.0 and 5.0.0, a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mc — multiple vulnerabilities Related CVEs: CVE-2003-1023 CVE-2004-0226 CVE-2004-0231 CVE-2004-0232 CVE-2004-0494 CVE-2004-1004 CVE-2004-1005 CVE-2004-1009  +4 more Upstream summary: Andrew V. Samoilov reported several vulnerabilities that were corrected in MidnightCommand 4.6.0: […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rpm4 — Multiple Vulnerabilities Related CVEs: CVE-2021-3521 CVE-2021-35938 CVE-2021-35939 Upstream summary: rpm project reports: Fix intermediate symlinks not verified (CVE-2021-35939). Fix subkey binding signatures not checked on PGP public keys […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: python — buffer overrun in repr() for unicode strings Related CVEs: CVE-2005-0089 CVE-2006-4980 Upstream summary: Benjamin C. Wiley Sittler reports: I discovered a [buffer overrun in repr() for unicode strings]. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kibana4 — XSS vulnerability Related CVEs: CVE-2015-8131 Upstream summary: Elastic reports: Fixes XSS vulnerability (CVE pending) – Thanks to Vladimir Ivanov for responsibly reporting. Table of contents Symptom & Impact […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wheel — CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Related CVEs: CVE-2026-24049 Upstream summary: https://github.com/pypa/wheel/security/advisories/GHSA-8rrh-rw8j-w5fx reports: wheel is a command line tool for manipulating Python […]