Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: lrzsz — Integer overflow in zmodem, crash and information leak Related CVEs: CVE-2018-10195 Upstream summary: [email protected] reports: Lrzsz has an integer overflow vulernability in the src/zm.c:zsdata() function. An attacker could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: apache — Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long) Related CVEs: CVE-2005-2088 CVE-2005-3352 CVE-2006-3747 Upstream summary: Apache ChangeLog reports: Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libtomcrypt — weak signature scheme with ECC keys Upstream summary: The Secure Science Corporation reports that libtomcrypt is vulnerable to a weak signature scheme. This allows an attacker to create […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mono — DoS and code execution Related CVEs: CVE-2006-5072 CVE-2009-0217 CVE-2009-0689 Upstream summary: NCC Group reports: An attacker who can cause a carefully-chosen string to be converted to a floating-point […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: aiohttp — open redirect vulnerability Related CVEs: CVE-2021-21330 Upstream summary: Sviatoslav Sydorenko reports: Open redirect vulnerability — a maliciously crafted link to an aiohttp-based web-server could redirect the browser to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dokuwiki — Local File Inclusion with register_globals on Related CVEs: CVE-2006-4674 CVE-2006-4675 CVE-2006-4679 CVE-2006-5098 CVE-2006-5099 CVE-2007-3930 CVE-2009-1960 Upstream summary: DokuWiki reports: A security hole was discovered which allows an attacker […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ghostscript — exploitable buffer overflow in (T)BCP in PS interpreter Related CVEs: CVE-2015-3228 CVE-2018-15908 CVE-2018-15909 CVE-2018-15910 CVE-2018-15911 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813  +4 more Upstream summary: [email protected] reports: In Artifex Ghostscript through […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: postfix-policyd-weight — working directory symlink vulnerability Upstream summary: postfix-policyd-weight does not check for symlink for its working directory. If the working directory is not already setup by the super root, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Ansible — Ansible user credentials disclosure in ansible-connection module Related CVEs: CVE-2021-3583 CVE-2021-3620 Upstream summary: Red Hat reports: A flaw was found in Ansible Engine's ansible-connection module, where sensitive information […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vorbistools — heap buffer overflow in oggenc Related CVEs: CVE-2008-1686 CVE-2014-9638 CVE-2014-9639 CVE-2015-6749 CVE-2023-43361 Upstream summary: Frank-Z7 reports: Heap buffer overflow when vorbis-tools/oggenc converts WAV files to Ogg files. Table […]