Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: expat2 — Parser crash with specially formatted UTF-8 sequences Related CVEs: CVE-2009-3720 Upstream summary: CVE reports: The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: qmail — 64 bit integer overflows with possible remote code execution on large SMTP requests Related CVEs: CVE-2005-1513 CVE-2005-1514 CVE-2005-1515 Upstream summary: Georgi Guninski writes: There are several issues with […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nas — multiple vulnerabilities Related CVEs: CVE-2013-4256 CVE-2013-4257 CVE-2013-4258 Upstream summary: Hamid Zamani reports: multiple security problems (buffer overflows, format string vulnerabilities and missing input sanitising), which could lead to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: phpicalendar — cross site scripting vulnerability Related CVEs: CVE-2005-3366 Upstream summary: Francesco Ongaro reports that phpicalendar is vulnerable for a cross site scripting attack. The vulnerability is caused by improper […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: viewvc — Arbitrary server filesystem content Related CVEs: CVE-2025-54141 Upstream summary: cmpilato reports: The ViewVC standalone web server (standalone.py) is a script provided in the ViewVC distribution for the purposes […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-doorkeeper — token revocation vulnerability Related CVEs: CVE-2018-1000211 Upstream summary: NVD reports: Doorkeeper version 4.2.0 and later contains a Incorrect Access Control vulnerability in Token revocation API's authorized method that […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SOGo — SAML user authentication impersonation Related CVEs: CVE-2021-33054 Upstream summary: sogo.nu reports: SOGo was not validating the signatures of any SAML assertions it received. This means any actor with […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: homebox — multiple vulnerabilities Related CVEs: CVE-2026-26272 CVE-2026-27600 CVE-2026-27981 Upstream summary: Homebox reports: [HIGH] CVE-2026-27981: Auth Rate Limit Bypass via IP Spoofing [MODERATE] CVE-2026-27600: Blind SSRF [MODERATE] CVE-2026-26272: Stored XSS […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: freeciv — Denial of Service Vulnerabilities Related CVEs: CVE-2006-0047 CVE-2006-3913 Upstream summary: Secunia reports: Luigi Auriemma has reported a vulnerability in Freeciv, which can be exploited by malicious people to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-Scrapy — DoS vulnerability Related CVEs: CVE-2017-14158 CVE-2022-0577 Upstream summary: kmike and nramirezuy report: Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files […]