Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mysql — SSL Downgrade Related CVEs: CVE-2015-3152 Upstream summary: Duo Security reports: Researchers have identified a serious vulnerability in some versions of Oracle’s MySQL database product that allows an attacker […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2004-0594 CVE-2004-0595 CVE-2004-1019 CVE-2004-1065 CVE-2005-0596 CVE-2007-0905 CVE-2007-0906 CVE-2007-0907  +5 more Upstream summary: The PHP development team reports: Security Enhancements and Fixes in PHP 5.2.2 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-bson — DoS and possible injection Related CVEs: CVE-2015-4412 Upstream summary: Phill MV reports: By submitting a specially crafted string to a service relying on the bson rubygem, an attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Zabbix — Remote code execution Related CVEs: CVE-2017-2824 CVE-2020-11800 Upstream summary: Zabbix reports: Fixed security vulnerability cve-2020-11800 (remote code execution). (ZBX-17600) Table of contents Symptom & Impact Environment & Reproduction […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fail2ban — possible RCE vulnerability in mailing action using mailutils Related CVEs: CVE-2021-32749 Upstream summary: Jakub Żoczek reports: Command mail from mailutils package used in mail actions like mail-whois can […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenHAB CometVisu addon — Multiple vulnerabilities Upstream summary: OpenHAB reports: This patch release addresses the following security advisories: SSRF/XSS (CometVisu) – GHSA-v7gr-mqpj-wwh3 Sensitive information disclosure (CometVisu) – GHSA-3g4c-hjhr-73rj RCE through […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tiff — buffer overflow vulnerability Related CVEs: CVE-2004-0803 CVE-2004-0804 CVE-2004-0886 CVE-2004-1308 CVE-2005-1544 Upstream summary: A Gentoo Linux Security Advisory reports: Tavis Ormandy of the Gentoo Linux Security Audit Team discovered […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL — PL/Perl environment variable changes execute arbitrary code Related CVEs: CVE-2024-10979 Upstream summary: PostgreSQL project reports: Incorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged database user […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: leafnode — denial of service vulnerability Related CVEs: CVE-2002-1661 CVE-2003-0744 CVE-2004-2068 CVE-2005-1453 CVE-2005-1911 Upstream summary: Matthias Andree reports: A vulnerability was found in the fetchnews program (the NNTP client) that […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: buildbot — OAuth Authentication Vulnerability Related CVEs: CVE-2019-12300 CVE-2019-7313 Upstream summary: Buildbot accepted user-submitted authorization token from OAuth and used it to authenticate user. The vulnerability can lead to malicious […]