Security Hardening

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: phpbb — NULL byte injection vulnerability Related CVEs: CVE-2005-3310 CVE-2005-3415 CVE-2005-3416 CVE-2005-3417 CVE-2005-3418 CVE-2005-3419 CVE-2005-3420 CVE-2005-3536  +2 more Upstream summary: Secunia reports: ShAnKaR has discovered a vulnerability in phpBB, which […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: fail2ban — possible RCE vulnerability in mailing action using mailutils Related CVEs: CVE-2021-32749 Upstream summary: Jakub Żoczek reports: Command mail from mailutils package used in mail actions like mail-whois can […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vinagre — format string vulnerability Related CVEs: CVE-2008-5660 Upstream summary: CORE Security Technologies reports: A format string error has been found on the vinagre_utils_show_error() function that can be exploited via […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: samba — potential leakage of arbitrary memory contents Related CVEs: CVE-2008-4314 Upstream summary: Samba Team reports: Samba 3.0.29 and beyond contain a change to deal with gcc 4 optimizations. Part […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SOGo — SAML user authentication impersonation Related CVEs: CVE-2021-33054 Upstream summary: sogo.nu reports: SOGo was not validating the signatures of any SAML assertions it received. This means any actor with […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: expat2 — Parser crash with specially formatted UTF-8 sequences Related CVEs: CVE-2009-3720 Upstream summary: CVE reports: The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: virtualbox — privilege escalation Related CVEs: CVE-2009-3692 Upstream summary: Sun reports: A security vulnerability in the VBoxNetAdpCtl configuration tool for certain Sun VirtualBox 3.0 packages may allow local unprivileged users […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chocolate-doom — Arbitrary code execution Related CVEs: CVE-2020-14983 Upstream summary: Michal Dardas from LogicalTrust reports: The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: linux-realplayer — multiple vulnerabilities Related CVEs: CVE-2005-0611 CVE-2005-1277 CVE-2005-2922 CVE-2006-0323 CVE-2007-2263 CVE-2007-2264 CVE-2007-3410 CVE-2007-5081 Upstream summary: Secunia reports: Multiple vulnerabilities have been reported in RealPlayer/RealOne/HelixPlayer, which can be exploited by […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pngcrush — libpng Uninitialised Pointer Arrays Vulnerability Related CVEs: CVE-2009-0040 Upstream summary: Secunia reports: A vulnerability has been reported in Pngcrush, which can be exploited by malicious people to potentially […]