Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenLDAP — incorrect handling of NULL in certificate Common Name Related CVEs: CVE-2009-3767 Upstream summary: Jan Lieskovsky reports: OpenLDAP does not properly handle a '' character in a domain name […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: KWallet-PAM — Access to privileged files Upstream summary: The KDE Community reports: kwallet-pam was doing file writing and permission changing as root that with correct timing and use of carefully […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hdf5 — multiple vulnerabilities Related CVEs: CVE-2016-4330 CVE-2016-4331 CVE-2016-4332 CVE-2016-4333 Upstream summary: Talos Security reports: CVE-2016-4330 (TALOS-2016-0176) – HDF5 Group libhdf5 H5T_ARRAY Code Execution Vulnerability CVE-2016-4331 (TALOS-2016-0177) – HDF5 Group […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: horde — cross-site scripting vulnerability in help window Upstream summary: A Horde Team announcement states that a potential cross-site scripting vulnerability in the help window has been corrected. The vulnerability […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: LibYAML input sanitization errors Related CVEs: CVE-2014-2525 Upstream summary: oCERT reports: The LibYAML project is an open source YAML 1.1 parser and emitter written in C. The library is affected […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dpkg — stack-based buffer overflow Related CVEs: CVE-2015-0860 Upstream summary: Salvatore Bonaccorso reports: Hanno Boeck discovered a stack-based buffer overflow in the dpkg-deb component of dpkg, the Debian package management […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: doas — Prevent passing of environment variables Upstream summary: Jesse Smith (upstream author of the doas program) reported: Previous versions of "doas" transferred most environment variables, such as USER, HOME, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-nicotine-plus — Denial of service vulnerability Related CVEs: CVE-2021-45848 Upstream summary: ztauras reports: Denial of service (DoS) vulnerability in Nicotine+ starting with version 3.0.3 and prior to version 3.2.1 allows […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fidogate — write files as `news' user Upstream summary: Neils Heinen reports that the setuid `news' binaries installed as part of fidogate may be used to create files or append […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: owncloudclient — Improper validation of certificates when using self-signed certificates Related CVEs: CVE-2015-7298 Upstream summary: owncloud.org reports: The ownCloud Desktop Client was vulnerable against MITM attacks until version 2.0.0 in […]