Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libxml2 — Out-of-bounds memory access Related CVEs: CVE-2025-32414 Upstream summary: [email protected] reports: In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API (Python […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgresSQL — TYPE in pg_temp execute arbitrary SQL during `SECURITY DEFINER` execution Related CVEs: CVE-2016-0766 CVE-2016-0773 CVE-2016-2193 CVE-2016-3065 CVE-2016-5423 CVE-2016-5424 CVE-2017-15098 CVE-2017-15099  +12 more Upstream summary: The PostgreSQL project reports: […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mod_pagespeed — critical cross-site scripting (XSS) vulnerability Related CVEs: CVE-2012-4001 CVE-2012-4360 CVE-2013-6111 Upstream summary: mod_pagespeed developers report: Various versions of mod_pagespeed are subject to critical cross-site scripting (XSS) vulnerability, CVE-2013-6111. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: global — gozilla vulnerability Related CVEs: CVE-2017-17531 Upstream summary: MITRE reports: gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dbus file descriptor leak Related CVEs: CVE-2006-6107 CVE-2013-2168 CVE-2014-3477 CVE-2014-3532 CVE-2014-3533 CVE-2014-3635 CVE-2014-3636 CVE-2014-3637  +4 more Upstream summary: GitHub Security Lab reports: D-Bus has a file descriptor leak, which can […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sylpheed — MIME-encoded file name buffer overflow vulnerability Related CVEs: CVE-2005-0667 CVE-2005-0926 Upstream summary: Sylpheed is vulnerable to a buffer overflow when displaying emails with attachments that have MIME-encoded file […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libsndfile_project — Integer overflow in dataend calculation Related CVEs: CVE-2009-0186 CVE-2009-1788 CVE-2009-1791 CVE-2011-2696 CVE-2017-12562 CVE-2017-14245 CVE-2017-14246 CVE-2017-14634  +12 more Upstream summary: [email protected] reports: Multiple signed integers overflow in function au_read_header […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xpm — image decoding vulnerabilities Related CVEs: CVE-2004-0687 CVE-2004-0688 Upstream summary: Chris Evans discovered several vulnerabilities in the libXpm image decoder: A stack-based buffer overflow in xpmParseColors An integer overflow […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: upnp — stack overflow vulnerability Related CVEs: CVE-2012-5958 CVE-2012-5959 CVE-2012-5960 CVE-2012-5961 CVE-2012-5962 CVE-2012-5963 CVE-2012-5964 CVE-2012-5965  +4 more Upstream summary: Mitre reports: A stack overflow in pupnp 1.16.1 can cause the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: phpMyAdmin — XSS vulnerability in drag-and-drop upload Related CVEs: CVE-2020-5504 Upstream summary: phpMyAdmin Team reports: PMASA-2023-1 XSS vulnerability in drag-and-drop upload Table of contents Symptom & Impact Environment & Reproduction […]