Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openexr, ilmbase — security fixes related to reading corrupted input files Related CVEs: CVE-2018-18443 CVE-2018-18444 CVE-2021-20296 CVE-2021-3474 CVE-2021-3475 CVE-2021-3476 CVE-2021-3477 CVE-2021-3478  +1 more Upstream summary: Cary Phillips reports: Patch release […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pcal — buffer overflow vulnerabilities Related CVEs: CVE-2004-1289 Upstream summary: Danny Lungstrom has found two buffer overflow vulnerabilities in pcal which can lead to execution of arbitrary code by making […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Gitlab — Remote Code Execution Vulnerability in GitLab Projects Import Related CVEs: CVE-2016-4340 CVE-2016-4738 CVE-2016-9086 CVE-2017-0882 CVE-2017-0915 CVE-2017-11438 CVE-2017-12426 CVE-2017-5029  +8 more Upstream summary: Gitlab reports: Remote Code Execution Vulnerability […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: up-imapproxy — multiple vulnerabilities Related CVEs: CVE-2004-1035 Upstream summary: Timo Sirainen reports: There are various bugs in up-imapproxy which can crash it. Since up-imapproxy runs in a single process with […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL Server — execute arbitrary SQL code as DBA user Related CVEs: CVE-2017-15098 CVE-2017-15099 CVE-2018-1052 CVE-2018-1053 CVE-2018-1058 CVE-2018-10915 CVE-2018-10925 CVE-2018-16850  +8 more Upstream summary: The PostgreSQL project reports: Confine additional […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ingo — local arbitrary shell command execution Related CVEs: CVE-2006-5449 Upstream summary: The Horde team reports a vulnerability within Ingo, the filter management suite. The vulnerability is caused due to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: clamav — Possbile denial-of-service vulnerability Related CVEs: CVE-2022-20698 CVE-2022-20770 CVE-2022-20771 CVE-2022-20785 CVE-2022-20792 CVE-2022-20796 CVE-2022-20803 CVE-2023-20032  +8 more Upstream summary: The ClamAV project reports: A possible buffer overflow read bug is […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-imap — imap_open allows to run arbitrary shell commands via mailbox parameter Upstream summary: The PHP team reports: imap_open allows to run arbitrary shell commands via mailbox parameter. Table of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcpd — Denial of Service Related CVEs: CVE-2011-0997 CVE-2015-8605 Upstream summary: ISC reports: A badly formed packet with an invalid IPv4 UDP length field can cause a DHCP server, client, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: salt — multiple vulnerabilities Related CVEs: CVE-2019-17361 CVE-2020-11651 CVE-2020-11652 CVE-2020-16846 CVE-2020-17490 CVE-2020-25592 CVE-2020-28243 CVE-2020-28972  +8 more Upstream summary: SaltStack reports multiple security vulnerabilities in Salt CVE-2021-3197: The Salt-API.s SSH client […]