Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: TiMidity++ — Multiple vulnerabilities Related CVEs: CVE-2017-11546 CVE-2017-11547 CVE-2017-11549 Upstream summary: qflb.wu of DBAPPSecurity reports: Ihe insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 can cause a denial of service(divide-by-zero error […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Unbound/NSD — Denial of service vulnerability Related CVEs: CVE-2009-1755 CVE-2012-2978 CVE-2012-2979 CVE-2016-6170 CVE-2016-6171 CVE-2016-6172 CVE-2016-6173 CVE-2019-13207  +1 more Upstream summary: NLNetLabs reports: Unbound and NSD when writing the PID file […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php5 — multiple vulnerabilities Related CVEs: CVE-2015-4643 CVE-2015-4644 Upstream summary: The PHP project reports: DOM and GD: Fixed bug #69719 (Incorrect handling of paths with NULs). FTP: Improved fix for […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SOGo — SAML user authentication impersonation Related CVEs: CVE-2021-33054 Upstream summary: sogo.nu reports: SOGo was not validating the signatures of any SAML assertions it received. This means any actor with […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: lynx — SSL certificate validation error Upstream summary: Axel Beckert reports: […] I was able to capture the password given on the commandline in traffic of an TLS handshake using […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xkbcomp — Several vulnerabilities Related CVEs: CVE-2018-15859 CVE-2018-15861 CVE-2018-15863 Upstream summary: X.Org reports: Multiple issues have been found in xkbcomp that have been previously been published as CVEs in libxbkcommon. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Privoxy — Multiple vulnerabilities (memory leak, XSS) Related CVEs: CVE-2012-0920 CVE-2013-4421 CVE-2013-4434 CVE-2016-3116 CVE-2016-7406 CVE-2016-7407 CVE-2016-7408 CVE-2016-7409  +6 more Upstream summary: Privoxy reports: cgi_error_no_template(): Encode the template name to prevent […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pivotx — Multiple unrestricted file upload vulnerabilities Related CVEs: CVE-2011-1035 CVE-2012-2274 CVE-2014-0341 Upstream summary: Pivotx reports: Multiple unrestricted file upload vulnerabilities in fileupload.php in PivotX before 2.3.9 allow remote authenticated […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Slixmpp — Lack of SSL Certificate hostname validation in XMLStream Related CVEs: CVE-2022-45197 Upstream summary: NIST reports: Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: CairoSVG — Regular Expression Denial of Service vulnerability Upstream summary: CairoSVG security advisories: When processing SVG files, the python package CairoSVG uses two regular expressions which are vulnerable to Regular […]