Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xdm — remote denial of service Related CVEs: CVE-2013-2179 Upstream summary: nvd.nist.gov reports X.Org xdm 1.1.10, 1.1.11, and possibly other versions, when performing authentication using certain implementations of the crypt […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: crossfire-server — denial of service and remote code execution vulnerability Related CVEs: CVE-2006-1010 Upstream summary: FRSIRT reports: A vulnerability has been identified in CrossFire, which could be exploited by remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mail/mailpit — multiple vulnerabilities Related CVEs: CVE-2023-42821 CVE-2026-21859 CVE-2026-22689 CVE-2026-23829 CVE-2026-23845 CVE-2026-27808 CVE-2026-45709 CVE-2026-45711  +2 more Upstream summary: Mailpit author reports: Set a default 50MB per message limit to prevent […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kdeconnect — packet manipulation can be exploited in a Denial of Service attack Related CVEs: CVE-2020-26164 Upstream summary: Albert Astals Cid reports: KDE Project Security Advisory Title KDE Connect: packet […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dircproxy — remote denial of service Related CVEs: CVE-2007-5226 Upstream summary: Securiweb reports: dircproxy allows remote attackers to cause a denial of service (segmentation fault) via an ACTION command without […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-json — Unsafe Objection Creation Vulnerability in JSON (Additional fix) Related CVEs: CVE-2020-10663 Upstream summary: When parsing certain JSON documents, the json gem (including the one bundled with Ruby) can […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: typo3-{11,12} — multiple vulnerabilities Related CVEs: CVE-2023-30451 CVE-2023-47125 CVE-2023-47126 CVE-2023-47127 CVE-2024-22188 CVE-2024-25118 CVE-2024-25119 CVE-2024-25120  +1 more Upstream summary: Typo3 developers reports: All versions are security releases and contain important security […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fail2ban — possible RCE vulnerability in mailing action using mailutils Related CVEs: CVE-2021-32749 Upstream summary: Jakub Żoczek reports: Command mail from mailutils package used in mail actions like mail-whois can […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ISC KEA — Invalid characters cause assert Related CVEs: CVE-2015-8373 CVE-2019-6472 CVE-2019-6473 CVE-2019-6474 CVE-2025-11232 CVE-2025-32801 CVE-2025-32802 CVE-2025-32803  +1 more Upstream summary: Internet Systems Consortium, Inc. reports: To trigger the issue, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: faad2 — heap overflow vulnerability Related CVEs: CVE-2008-4201 Upstream summary: CVE reports: Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause […]