Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ghostscript — zseticcspace() function buffer overflow vulnerability Related CVEs: CVE-2008-0411 Upstream summary: Chris Evans from the Google Security Team reports: Severity: parsing of evil PostScript file will result in arbitrary […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sge — local root exploit in bundled rsh executable Upstream summary: Sun Microsystems reports: The SGE 6.0u7_1 release fixes a security bug which can allow malicious users to gain root […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: electron{22,24,25} — Heap buffer overflow in vp8 encoding in libvpx Related CVEs: CVE-2014-1578 CVE-2015-4485 CVE-2015-4486 CVE-2015-4506 CVE-2023-5217 Upstream summary: Electron developers report: This update fixes the following vulnerability: Security: backported […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mcpp — Heap-based buffer overflow Related CVEs: CVE-2019-14274 Upstream summary: [email protected] reports: MCPP 2.7.2 has a heap-based buffer overflow in the do_msg() function in support.c. Table of contents Symptom & […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ModSecurity — empty XML tag causes segmentation fault Related CVEs: CVE-2025-47947 CVE-2025-48866 CVE-2025-52891 Upstream summary: [email protected] reports: ModSecurity is an open source, cross platform web application firewall (WAF) engine for […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wayland — integer overflow Related CVEs: CVE-2013-2003 Upstream summary: Tobias Stoeckmann reports: The libXcursor fix for CVE-2013-2003 has never been imported into wayland, leaving it vulnerable to it. Table of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: jdk/jre — Applet Caching May Allow Network Access Restrictions to be Circumvented Related CVEs: CVE-2004-1029 CVE-2005-1080 CVE-2007-5232 Upstream summary: SUN reports: A vulnerability in the Java Runtime Environment (JRE) with […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: upnp — stack overflow vulnerability Related CVEs: CVE-2012-5958 CVE-2012-5959 CVE-2012-5960 CVE-2012-5961 CVE-2012-5962 CVE-2012-5963 CVE-2012-5964 CVE-2012-5965  +4 more Upstream summary: Mitre reports: A stack overflow in pupnp 1.16.1 can cause the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: websvn — reflected cross-site scripting Related CVEs: CVE-2008-5918 CVE-2008-5919 CVE-2009-0240 CVE-2013-6892 CVE-2016-2511 Upstream summary: Sebastien Delafond reports: Jakub Palaczynski discovered that websvn, a web viewer for Subversion repositories, does not […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcp-client — Stack overflow vulnerability Related CVEs: CVE-2009-0692 Upstream summary: US-CERT reports: The ISC DHCP dhclient application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to […]