Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ImageMagick6 — multiple vulnerabilities Related CVEs: CVE-2019-10131 CVE-2019-10649 CVE-2019-10650 CVE-2019-10714 CVE-2019-11470 CVE-2019-11472 CVE-2019-11597 CVE-2019-11598  +9 more Upstream summary: CVE reports: Several vulnerabilities have been discovered in ImageMagick: CVE-2021-20309: A flaw […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: foreman-proxy SSL verification issue Related CVEs: CVE-2014-3691 Upstream summary: Foreman Security reports: The smart proxy when running in an SSL-secured mode permits incoming API calls to any endpoint without requiring, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kio: Information Leak when accessing https when using a malicious PAC file Upstream summary: Albert Astals Cid reports: Using a malicious PAC file, and then using exfiltration methods in the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-beaker — arbitrary code execution vulnerability Related CVEs: CVE-2013-7489 Upstream summary: matheusbrat reports: The Beaker library through 1.12.1 for Python is affected by deserialization of untrusted data, which could lead […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SQLite — Corrupt DB can cause a NULL pointer dereference Related CVEs: CVE-2018-8740 Upstream summary: MITRE reports: SQLite databases whose schema is corrupted using a CREATE TABLE AS statement could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-imap — imap_open allows to run arbitrary shell commands via mailbox parameter Upstream summary: The PHP team reports: imap_open allows to run arbitrary shell commands via mailbox parameter. Table of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Postfix — memory corruption vulnerability Related CVEs: CVE-2011-0411 CVE-2011-1720 Upstream summary: The Postfix SMTP server has a memory corruption error, when the Cyrus SASL library is used with authentication mechanisms […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rockdodger — buffer overflows Upstream summary: The environment variable HOME is copied without regard to buffer size, which can be used to gain elevated privilege if the binary is installed […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-psutil — double free vulnerability Related CVEs: CVE-2019-18874 Upstream summary: ret2libc reports: psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs because of refcount mishandling within a […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — open_basedir Race Condition Vulnerability Related CVEs: CVE-2006-5178 Upstream summary: Stefan Esser reports: PHP's open_basedir feature is meant to disallow scripts to access files outside a set of configured […]