Security Hardening

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gstreamer1 — multiple vulnerabilities Related CVEs: CVE-2026-39043 CVE-2026-39044 CVE-2026-46469 CVE-2026-46470 CVE-2026-46472 CVE-2026-5056 Upstream summary: The GStreamer project reports multiple security vulnerabilities fixed in the 1.28.3 release: Six security vulnerabilities were […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: RubyGems — multiple vulnerabilities Related CVEs: CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 Upstream summary: RubyGems Security Advisories: CVE-2019-8320: Delete directory using symlink when decompressing tar CVE-2019-8321: Escape sequence injection vulnerability […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SoftEtherVPN — multiple vulnerabilities Related CVEs: CVE-2023-22325 CVE-2023-27395 CVE-2023-27516 CVE-2023-31192 CVE-2023-32275 CVE-2023-32634 Upstream summary: Daiyuu Nobori reports: The SoftEther VPN project received a high level code review and technical assistance […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gstreamer1-plugins-opus — Stack buffer-overflow in Opus decoder Related CVEs: CVE-2024-47607 Upstream summary: The GStreamer Security Center reports: Stack buffer-overflow in Opus decoder that can cause crashes for certain input files. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: davmail — fix potential CVE-2014-3566 vulnerability (POODLE) Related CVEs: CVE-2014-3566 Upstream summary: Mickaël Guessant reports: DavMail 4.6.0 released Enhancements: Fix potential CVE-2014-3566 vulnerability. Table of contents Symptom & Impact Environment […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dcraw — integer overflow condition Related CVEs: CVE-2015-3885 Upstream summary: ocert reports: The dcraw tool, as well as several other projects re-using its code, suffers from an integer overflow condition […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: hwloc2 — Denial of service or other unspecified impacts Related CVEs: CVE-2022-47022 Upstream summary: [email protected] reports: An issue was discovered in open-mpi hwloc 2.1.0 allows attackers to cause a denial […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libzip — integer overflow Related CVEs: CVE-2015-2331 Upstream summary: libzip developers report: Avoid integer overflow. Fixed similarly to patch used in PHP copy of libzip. Table of contents Symptom & […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gtar — buffer overflow in rmt client Related CVEs: CVE-2006-0300 CVE-2006-6097 CVE-2007-4131 CVE-2007-4476 CVE-2010-0624 Upstream summary: Jakob Lell reports: The rmt client implementation of GNU Tar/Cpio contains a heap-based buffer […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mambo — multiple SQL injection vulnerabilities Related CVEs: CVE-2005-2002 CVE-2006-0871 CVE-2006-1794 CVE-2006-3262 CVE-2006-3263 Upstream summary: James Bercegay reports: Mambo is vulnerable to an Authentication Bypass issue that is due to […]