Security Hardening

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: file — Heap buffer overflow possible Related CVEs: CVE-2007-1536 CVE-2014-1943 CVE-2014-2270 CVE-2014-3710 CVE-2014-8116 CVE-2014-8117 Upstream summary: mitre reports cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openssh — multiple vulnerabilities Related CVEs: CVE-2006-4924 CVE-2006-5051 Upstream summary: Problem Description The CRC compensation attack detector in the sshd(8) daemon, upon receipt of duplicate blocks, uses CPU time cubic […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gdk-pixbuf — image decoding vulnerabilities Related CVEs: CVE-2004-0782 CVE-2004-0783 CVE-2004-0788 Upstream summary: Chris Evans discovered several flaws in the gdk-pixbuf XPM image decoder: Heap-based overflow in pixbuf_create_from_xpm Stack-based overflow in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: postgresql — privilege escalation vulnerability Related CVEs: CVE-2005-0227 Upstream summary: John Heasman and others disovered that non-privileged users could use the LOAD extension to load arbitrary libraries into the postgres […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: jdk/jre — Applet Caching May Allow Network Access Restrictions to be Circumvented Related CVEs: CVE-2004-1029 CVE-2005-1080 CVE-2007-5232 Upstream summary: SUN reports: A vulnerability in the Java Runtime Environment (JRE) with […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cassandra3 — multiple vulnerabilities Related CVEs: CVE-2015-0225 CVE-2015-0886 CVE-2019-2684 CVE-2020-7238 CVE-2021-44521 CVE-2022-24823 CVE-2022-25857 CVE-2022-42003  +1 more Upstream summary: Cassandra tema reports: This release contains 6 security fixes including CVE-2022-24823: When […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: neon — NULL pointer dereference in Digest domain support Related CVEs: CVE-2004-0179 CVE-2004-0398 CVE-2008-3746 Upstream summary: Joe Orton reports: A NULL pointer deference in the Digest authentication support in neon […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xloadimage — buffer overflows in NIFF image title handling Related CVEs: CVE-2001-0775 CVE-2005-0638 CVE-2005-3178 Upstream summary: Ariel Berkman reports: Unlike most of the supported image formats in xloadimage, the NIFF […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-wagtail — stored XSS vulnerability Related CVEs: CVE-2020-11001 CVE-2020-11037 CVE-2020-15118 CVE-2023-28836 CVE-2023-28837 Upstream summary: A stored cross-site scripting (XSS) vulnerability exists on ModelAdmin views within the Wagtail admin interface. A […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: perl — denial of service via algorithmic complexity attack on hashing routines Related CVEs: CVE-2004-0452 CVE-2005-0155 CVE-2005-0156 CVE-2007-5116 CVE-2013-1667 Upstream summary: Perl developers report: In order to prevent an algorithmic […]