Security Hardening

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: flyspray — multiple vulnerabilities Related CVEs: CVE-2007-1788 CVE-2007-6461 CVE-2008-1165 CVE-2008-1166 Upstream summary: The Flyspray Project reports: Flyspray is affected by a Cross Site scripting Vulnerability due to an error escaping […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wordpress — multiple issues Upstream summary: wordpress developers reports: This security and maintenance release features 1 bug fix in addition to 3 security fixes. Because this is a security release, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Intel(R) NVMUpdate — Intel(R) Ethernet Controller X710/XL710 NVM Security Vulnerability Related CVEs: CVE-2016-8106 Upstream summary: Intel Corporation reports: A security vulnerability in the Intel(R) Ethernet Controller X710 and Intel(R) Ethernet […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Roundcube — Multiple vulnerabilities Related CVEs: CVE-2008-5619 CVE-2009-0413 CVE-2011-2937 CVE-2012-3508 CVE-2013-1904 CVE-2015-5381 CVE-2015-5383 CVE-2016-5103  +8 more Upstream summary: The Roundcube project reports: Cross-Site-Scripting vulnerability via SVG’s animate tag Information Disclosure […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Apache httpd — denial of service in HTTP/2 Related CVEs: CVE-2016-8740 Upstream summary: mod_http2 reports: The Apache HTTPD web server (from 2.4.17-2.4.23) did not apply limitations on request headers correctly […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mod_dav — lock related denial-of-service Related CVEs: CVE-2004-0809 Upstream summary: A malicious user with DAV write privileges can trigger a null pointer dereference in the Apache mod_dav module. This could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: The GIMP — Use after Free vulnerability Related CVEs: CVE-2016-4994 Upstream summary: The GIMP team reports: A Use-after-free vulnerability was found in the xcf_load_image function. Table of contents Symptom & […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mailman < 2.1.38 — CSRF vulnerability of list mod or member against list admin page Related CVEs: CVE-2006-1712 CVE-2006-2191 CVE-2006-2941 CVE-2006-3636 CVE-2006-4624 CVE-2008-0564 CVE-2015-2775 CVE-2018-0618  +7 more Upstream summary: Mark […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: zebra/quagga denial of service vulnerability Related CVEs: CVE-2003-0858 Upstream summary: A remote attacker could cause zebra/quagga to crash by sending a malformed telnet command to their management port. Table of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: giflib — heap overflow Related CVEs: CVE-2015-7555 Upstream summary: Hans Jerry Illikainen reports: A heap overflow may occur in the giffix utility included in giflib-5.1.1 when processing records of the […]