Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: puppetdb — Potential SQL injection Related CVEs: CVE-2020-14060 CVE-2020-14061 CVE-2020-14062 CVE-2020-14195 CVE-2020-7943 CVE-2020-9548 CVE-2021-27021 CVE-2022-31197 Upstream summary: Puppet reports: The org.postgresql/postgresql driver has been updated to version 42.4.1 to address […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Apache APR — DoS vulnerabilities Related CVEs: CVE-2009-0023 CVE-2009-1955 CVE-2009-1956 CVE-2009-3560 CVE-2009-3720 CVE-2010-1623 CVE-2011-0419 CVE-2011-1928 Upstream summary: The Apache Portable Runtime Project reports: Reimplement apr_fnmatch() from scratch using a non-recursive […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ipython — Execution with Unnecessary Privileges Related CVEs: CVE-2022-21699 Upstream summary: IPython project reports: IPython 8.0.1, 7.31.1 and 5.11 are security releases that change some default values in order to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pixman — heap overflow Related CVEs: CVE-2022-44638 Upstream summary: Pixman reports: for release 0.42.2 Avoid integer overflow leading to out-of-bounds write Table of contents Symptom & Impact Environment & Reproduction […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mat2 — directory traversal/arbitrary file read during ZIP file processing Related CVEs: CVE-2022-35410 Upstream summary: mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows ../ directory traversal during the ZIP archive […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: XFCE — Allows executing malicious .desktop files pointing to remote code Related CVEs: CVE-2022-32278 Upstream summary: XFCE Project reports: Prevent executing possibly malicious .desktop files from online sources (ftp://, http:// […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-numpy — Missing return-value validation of the function PyArray_DescrNew Related CVEs: CVE-2021-41495 Upstream summary: Numpy reports: At most call-sites for PyArray_DescrNew, there are no validations of its return, but an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: activemq — Unsafe deserialization Related CVEs: CVE-2015-5254 CVE-2016-0734 CVE-2016-0782 Upstream summary: Alvaro Muatoz, Matthias Kaiser and Christian Schneider reports: JMS Object messages depends on Java Serialization for marshaling/unmashaling of the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hiredis — integer/buffer overflow Related CVEs: CVE-2021-32765 Upstream summary: hiredis maintainers report: Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted RESP mult-bulk protocol data. When parsing […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bchunk — access violation near NULL on destination operand and crash Related CVEs: CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 Upstream summary: Mitre reports: bchunk 1.2.0 and 1.2.1 is vulnerable to an "Access violation […]