Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: matomo — XSS vulnerability Upstream summary: Matomo reports: Several XSS issues have been fixed thanks to the great work of security researchers who responsible disclosed issues to us. Table of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-kerberos — DoS and MitM vulnerabilities Related CVEs: CVE-2015-3206 Upstream summary: macosforgebot reports: The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wzdftpd — remote DoS Upstream summary: wzdftpd contains a potential remote Denial-of-Service. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fcron — multiple vulnerabilities Related CVEs: CVE-2004-1030 CVE-2004-1031 CVE-2004-1032 CVE-2004-1033 Upstream summary: An iDEFENSE Security Advisory states: Multiple vulnerabilities have been found in Fcron. File contents disclosure Configuration Bypass Vulnerability […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: java 7.x — security manager bypass Related CVEs: CVE-2012-4681 CVE-2013-0433 Upstream summary: US CERT reports: Java 7 Update 10 and earlier versions of Java 7 contain a vulnerability that can […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: freeradius — EAP-TTLS Tunnel Memory Leak Remote DOS Vulnerability Related CVEs: CVE-2005-1454 CVE-2005-1455 CVE-2005-4745 CVE-2007-2028 Upstream summary: The freeradius development team reports: A malicious 802.1x supplicant could send malformed Diameter […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-amf — input sanitization errors Related CVEs: CVE-2015-8549 Upstream summary: oCERT reports: A specially crafted AMF payload, containing malicious references to XML external entities, can be used to trigger Denial […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: shoutcast — cross-site scripting, information exposure Related CVEs: CVE-2006-3007 Upstream summary: Goober's advisory reports reports that shoutcast is vulnerable to an arbitrary file reading vulnerability: Impact of the vulnerability depends […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: KeePassX — information disclosure Related CVEs: CVE-2015-8378 Upstream summary: Yves-Alexis Perez reports: Starting an export (using File / Export to / KeepassX XML file) and cancelling it leads to KeepassX […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fidogate — write files as `news' user Upstream summary: Neils Heinen reports that the setuid `news' binaries installed as part of fidogate may be used to create files or append […]