Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: logstash-forwarder and logstash — susceptibility to POODLE vulnerability Upstream summary: Elastic reports: The combination of Logstash Forwarder and Lumberjack input (and output) was vulnerable to the POODLE attack in SSLv3 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-strawberry-graphql — Multiple vulnerabilities Related CVEs: CVE-2026-35523 CVE-2026-35526 Upstream summary: The Strawberry GraphQL project reports: Strawberry up until version 0.312.3 is vulnerable to an authentication bypass on WebSocket subscription endpoints. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: FreeBSD — Predictable query ids in named(8) Related CVEs: CVE-2007-0493 CVE-2007-0494 CVE-2007-2926 Upstream summary: Problem Description: When named(8) is operating as a recursive DNS server or sending NOTIFY requests to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pam_ldap — authentication bypass vulnerability Related CVEs: CVE-2005-2641 Upstream summary: Luke Howard reports: If a pam_ldap client authenticates against an LDAP server that returns a passwordPolicyResponse control, but omits the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tt-rss — multiple vulnerabilities Related CVEs: CVE-2016-10033 CVE-2016-10045 CVE-2016-6175 CVE-2017-5223 CVE-2020-25787 CVE-2020-25788 CVE-2020-25789 Upstream summary: tt-rss project reports: The cached_url feature mishandles JavaScript inside an SVG document. imgproxy in plugins/af_proxy_http/init.php […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2011-0708 CVE-2011-4566 CVE-2011-4885 Upstream summary: php development team reports: Security Enhancements and Fixes in PHP 5.3.9: Added max_input_vars directive to prevent attacks based on […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: End of Life Ports Upstream summary: These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wget — security flaw in caching credentials passed as a part of the URL Related CVEs: CVE-2004-1487 CVE-2004-1488 CVE-2010-2252 CVE-2014-4877 CVE-2016-4971 CVE-2016-7098 CVE-2017-13089 CVE-2017-13090  +2 more Upstream summary: Gynvael Coldwind […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sylpheed — MIME-encoded file name buffer overflow vulnerability Related CVEs: CVE-2005-0667 CVE-2005-0926 Upstream summary: Sylpheed is vulnerable to a buffer overflow when displaying emails with attachments that have MIME-encoded file […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kstars — exploitable set-user-ID application fliccd Related CVEs: CVE-2005-0011 Upstream summary: A KDE Security Advisory explains: Overview KStars includes support for the Instrument Neutral Distributed Interface (INDI). The build system […]