Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: LibYAML input sanitization errors Related CVEs: CVE-2014-2525 Upstream summary: oCERT reports: The LibYAML project is an open source YAML 1.1 parser and emitter written in C. The library is affected […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-pymatgen — regular expression denial of service Related CVEs: CVE-2022-42964 Upstream summary: An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the pymatgen PyPI package, when an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libXfont — BDF parsing issues Related CVEs: CVE-2014-0209 CVE-2014-0210 CVE-2014-0211 CVE-2015-1802 CVE-2015-1803 CVE-2015-1804 Upstream summary: Alan Coopersmith reports: Ilja van Sprundel, a security researcher with IOActive, has discovered an issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenVPN — avoid buffer overread parsing routes or endpoints Related CVEs: CVE-2008-3459 CVE-2020-11810 CVE-2023-46849 CVE-2023-46850 CVE-2025-10680 CVE-2025-12106 CVE-2025-13086 CVE-2025-2704 Upstream summary: Mikhail Khachaiants reports: socket: reject mismatched address family in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: samba — potential leakage of arbitrary memory contents Related CVEs: CVE-2004-0600 CVE-2004-0686 CVE-2004-0815 CVE-2004-1154 CVE-2006-1059 CVE-2006-3403 CVE-2007-0452 CVE-2007-0454  +7 more Upstream summary: Samba Team reports: Samba 3.0.29 and beyond contain […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: lcms2 — Integer overflow Related CVEs: CVE-2013-4160 CVE-2026-41254 Upstream summary: https://github.com/mm2/Little-CMS/commit/da6110b1d14abc394633a388209abd5ebedd7ab0 reports: Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libxslt — DoS vulnerability due to type confusing error Related CVEs: CVE-2015-7995 Upstream summary: libxslt maintainer reports: CVE-2015-7995: http://www.openwall.com/lists/oss-security/2015/10/27/10 We need to check that the parent node is an element […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kaffeine — buffer overflow vulnerability Related CVEs: CVE-2006-0051 Upstream summary: The KDE team reports: Kaffeine can produce a buffer overflow in http_peek() while creating HTTP request headers for fetching remote […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Cyrus IMSPd multiple vulnerabilities Upstream summary: The Cyrus team reported multiple vulnerabilities in older versions of Cyrus IMSPd: These releases correct a recently discovered buffer overflow vulnerability, as well as […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sendmail — race condition vulnerability Related CVEs: CVE-2006-0058 Upstream summary: Problem Description A race condition has been reported to exist in the handling by sendmail of asynchronous signals. Impact A […]