Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: evince and atril — command injection vulnerability in CBT handler Related CVEs: CVE-2017-1000083 Upstream summary: GNOME reports: The comic book backend in evince 3.24.0 (and earlier) is vulnerable to a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libzmq4 — Denial of Service Related CVEs: CVE-2014-9721 CVE-2019-13132 CVE-2019-6250 CVE-2020-15166 Upstream summary: Google's oss-fuzz project reports: Denial-of-Service on CURVE/ZAP-protected servers by unauthenticated clients. If a raw TCP socket is […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fsp buffer overflow and directory traversal vulnerabilities Related CVEs: CVE-2003-1022 CVE-2004-0011 Upstream summary: The Debian security team reported a pair of vulnerabilities in fsp: A vulnerability was discovered in fsp, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: freeciv — Denial of Service Vulnerabilities Related CVEs: CVE-2006-0047 CVE-2006-3913 Upstream summary: Secunia reports: Luigi Auriemma has reported a vulnerability in Freeciv, which can be exploited by malicious people to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: End of Life Ports Upstream summary: These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dcraw — integer overflow condition Related CVEs: CAN-2005-2978 CVE-2015-3885 Upstream summary: ocert reports: The dcraw tool, as well as several other projects re-using its code, suffers from an integer overflow […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rxvt-unicode is vulnerable to a remote code execution Related CVEs: CVE-2022-4170 Upstream summary: Marc Lehmann reports: The biggest issue is resolving CVE-2022-4170, which allows command execution inside urxvt from within […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gld — format string and buffer overflow vulnerabilities Related CVEs: CVE-2005-1099 CVE-2005-1100 Upstream summary: Gld has been found vulnerable to multiple buffer overflows as well as multiple format string vulnerabilities. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: security/libsodium — crypto_core_ed25519_is_valid_point mishandles checks for whether an elliptic curve point is valid Related CVEs: CVE-2025-69277 Upstream summary: Libsodium maintainer reports: The function crypto_core_ed25519_is_valid_point(), a low-level function used to check […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vim — Vim Shell Command Injection Vulnerabilities Related CVEs: CVE-2007-2953 CVE-2008-2712 Upstream summary: Rdancer.org reports: Improper quoting in some parts of Vim written in the Vim Script can lead to […]