Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: virtualenv — CWE-59: Improper Link Resolution Before File Access ('Link Following') Related CVEs: CVE-2026-22702 Upstream summary: https://github.com/pypa/virtualenv/security/advisories/GHSA-597g-3phw-6986 reports: virtualenv is a tool for creating isolated virtual python environments. Prior to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libsamplerate — multiple vulnerabilities Related CVEs: CVE-2017-7697 Upstream summary: NVD reports: In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in src_sinc.c via a crafted audio file. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: id Tech 3 — remote code execution vulnerability Related CVEs: CVE-2017-6903 Upstream summary: The content auto-download of id Tech 3 can be used to deliver maliciously crafted content, that triggers […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libutp — remote denial of service or arbitrary code execution Related CVEs: CVE-2012-6129 Upstream summary: NVD reports: Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cryptography — vulnerable HKDF key generation Related CVEs: CVE-2016-9243 Upstream summary: Alex Gaynor reports: Fixed a bug where “HKDF“ would return an empty byte-string if used with a “length“ less […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: MySQL – Multiple vulnerabilities Related CVEs: CVE-2012-4414 CVE-2012-5611 CVE-2012-5612 CVE-2012-5615 CVE-2012-5627 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807  +8 more Upstream summary: Oracle reports: Critical Patch Update: MySQL Server, version(s) 5.5.45 and prior, 5.6.26 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: "Content-Type" XSS vulnerability affecting other webmail systems Related CVEs: CVE-2004-0519 Upstream summary: Roman Medina-Heigl Hernandez did a survey which other webmail systems where vulnerable to a bug he discovered in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: expat — denial of service vulnerability on malformed input Related CVEs: CVE-2016-0718 Upstream summary: Gustavo Grieco reports: The Expat XML parser mishandles certain kinds of malformed input documents, resulting in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: exim — SQL injection Related CVEs: CVE-2004-0400 CVE-2005-0021 CVE-2005-0022 CVE-2010-4345 CVE-2011-0017 CVE-2011-1407 CVE-2011-1764 CVE-2012-5671  +6 more Upstream summary: [email protected] reports: Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization […]