Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2013-7456 CVE-2016-4343 CVE-2016-5093 CVE-2016-5094 CVE-2016-5096 Upstream summary: The PHP Group reports: Core: Fixed bug #72114 (Integer underflow / arbitrary null write in fread/gzread). (CVE-2016-5096) […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: h11 accepts some malformed Chunked-Encoding bodies Related CVEs: CVE-2025-43859 Upstream summary: h11 reports: h11 is a Python implementation of HTTP/1.1. Prior to version 0.16.0, a leniency in h11's parsing of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cyrus-sasl — Fix off by one error Related CVEs: CVE-2004-0884 CVE-2006-1721 CVE-2009-0688 CVE-2019-19906 Upstream summary: Cyrus SASL 2.1.x Release Notes New in 2.1.28 reports: Fix off by one error Table […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Vulnerability found in Expat Related CVEs: CVE-2026-45186 Upstream summary: Expat 2.8.1 was released yesterday. The key motivation for cutting a release and doing so now was: Fixing vulnerability CVE-2026-45186 that […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Zabbix — Remote code execution Related CVEs: CVE-2017-2824 Upstream summary: mitre reports: An exploitable code execution vulnerability exists in the trapper command functionality of Zabbix Server 2.4.X. A specially crafted […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-ansible — multiple vulnerabilities Related CVEs: CVE-2020-25635 CVE-2020-25636 CVE-2021-3532 CVE-2021-3620 Upstream summary: abeluck reports: A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage collector […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: virtualenv — CWE-59: Improper Link Resolution Before File Access ('Link Following') Related CVEs: CVE-2026-22702 Upstream summary: https://github.com/pypa/virtualenv/security/advisories/GHSA-597g-3phw-6986 reports: virtualenv is a tool for creating isolated virtual python environments. Prior to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Axis2 — Security vulnerability on dependency Apache Commons FileUpload Related CVEs: CVE-2010-3981 CVE-2012-6153 CVE-2014-3577 CVE-2016-1000031 Upstream summary: Apache Axis2 reports: The commons-fileupload dependency has been updated to a version that […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libutp — remote denial of service or arbitrary code execution Related CVEs: CVE-2012-6129 Upstream summary: NVD reports: Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cryptography — vulnerable HKDF key generation Related CVEs: CVE-2016-9243 Upstream summary: Alex Gaynor reports: Fixed a bug where “HKDF“ would return an empty byte-string if used with a “length“ less […]