Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not included. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: giflib — heap overflow Related CVEs: CVE-2015-7555 Upstream summary: Hans Jerry Illikainen reports: A heap overflow may occur in the giffix utility included in giflib-5.1.1 when processing records of the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-cgi — HTTP response splitting vulnerability Related CVEs: CVE-2021-33621 CVE-2021-41816 CVE-2021-41819 Upstream summary: Hiroshi Tokumaru reports: If an application that generates HTTP responses using the cgi gem with untrusted user […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not included. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-rsa — Bleichenbacher'06 signature forgery vulnerability Related CVEs: CVE-2016-1494 Upstream summary: Filippo Valsorda reports: python-rsa is vulnerable to a straightforward variant of the Bleichenbacher'06 attack against RSA signature verification with […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mpg123 — buffer overflow vulnerability Related CVEs: CVE-2003-0577 CVE-2003-0865 CVE-2004-0805 CVE-2004-0982 CVE-2004-0991 CVE-2004-1284 Upstream summary: Yuri D'Elia has found a buffer overflow vulnerability in mpg123's parsing of frame headers in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-rsa — Bleichenbacher'06 signature forgery vulnerability Related CVEs: CVE-2016-1494 Upstream summary: Filippo Valsorda reports: python-rsa is vulnerable to a straightforward variant of the Bleichenbacher'06 attack against RSA signature verification with […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wget — multiple HTTP client download filename vulnerability Related CVEs: CVE-2004-1487 CVE-2004-1488 CVE-2010-2252 Upstream summary: GNU Wget version 1.12 and earlier uses a server-provided filename instead of the original URL […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: HAproxy — serious vulnerability affecting the HPACK decoder used for HTTP/2 Related CVEs: CVE-2012-2391 CVE-2015-3281 CVE-2016-5360 CVE-2020-11100 Upstream summary: The HAproxy Project reports: The main driver for this release is […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libwebp heap buffer overflow Related CVEs: CVE-2023-4863 Upstream summary: [email protected] reports: Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out […]