Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: bugzilla — multiple vulnerabilities Related CVEs: CVE-2004-1061 CVE-2005-2173 CVE-2005-2174 CVE-2006-0913 CVE-2006-0914 CVE-2006-0915 CVE-2006-0916 CVE-2006-2420  +9 more Upstream summary: A Bugzilla Security Advisory reports: Cross-Site Scripting When viewing a single bug […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-bson — DoS and possible injection Related CVEs: CVE-2015-4412 Upstream summary: Phill MV reports: By submitting a specially crafted string to a service relying on the bson rubygem, an attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Zabbix — Remote code execution Related CVEs: CVE-2017-2824 CVE-2020-11800 Upstream summary: Zabbix reports: Fixed security vulnerability cve-2020-11800 (remote code execution). (ZBX-17600) Table of contents Symptom & Impact Environment & Reproduction […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Vaultwarden — Multiple vulnerabilities Related CVEs: CVE-2024-39924 CVE-2024-39925 CVE-2024-39926 CVE-2025-24364 CVE-2025-24365 Upstream summary: The Vaultwarden project reports: GHSA-937x-3j8m-7w7p Unconfirmed Owner Can Purge Entire Organization Vault. GHSA-569v-845w-g82p Cross-Org Group Binding Enables […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mod_dosevasive — insecure temporary file creation Upstream summary: An LSS Security Advisory reports: When a denial of service attack is detected, mod_dosevasive will, among other things, create a temporary file […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: qutebrowser — Reloading page with certificate errors shows a green URL Related CVEs: CVE-2018-10895 CVE-2020-11054 Upstream summary: Qutebrowser developers report: After a certificate error was overridden by the user, qutebrowser […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: java 7.x — security manager bypass Related CVEs: CVE-2004-1029 CVE-2005-1080 CVE-2007-5232 CVE-2012-4681 CVE-2013-0433 Upstream summary: US CERT reports: Java 7 Update 10 and earlier versions of Java 7 contain a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: apache — Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long) Related CVEs: CVE-2005-2088 CVE-2005-3352 CVE-2006-3747 Upstream summary: Apache ChangeLog reports: Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tin — buffer overflow vulnerabilities Upstream summary: Urs Janssen and Aleksey Salow report possible buffer overflows in tin versions 1.8.0 and 1.8.1. OpenPKG project elaborates there is an allocation off-by-one […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sox — memory corruption vulnerabilities Related CVEs: CVE-2004-0557 CVE-2014-8145 Upstream summary: Michele Spagnuolo, Google Security Team, reports: The write heap buffer overflows are related to ADPCM handling in WAV files, […]