Security Hardening

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libssh2 — multiple issues Related CVEs: CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862  +1 more Upstream summary: libssh2 developers report: Defend against possible integer overflows in comp_method_zlib_decomp. Defend against […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mdbook — XSS in mdBook's search page Related CVEs: CVE-2020-26297 Upstream summary: Rust Security Response Working Group reports: The search feature of mdBook (introduced in version 0.1.4) was affected by […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenVPN — avoid buffer overread parsing routes or endpoints Related CVEs: CVE-2008-3459 CVE-2020-11810 CVE-2023-46849 CVE-2023-46850 CVE-2025-10680 CVE-2025-12106 CVE-2025-13086 CVE-2025-2704 Upstream summary: Mikhail Khachaiants reports: socket: reject mismatched address family in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pango — integer overflow Related CVEs: CVE-2009-1194 Upstream summary: oCERT reports: Pango suffers from a multiplicative integer overflow which may lead to a potentially exploitable, heap overflow depending on the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: XFCE — Allows executing malicious .desktop files pointing to remote code Related CVEs: CVE-2022-32278 Upstream summary: XFCE Project reports: Prevent executing possibly malicious .desktop files from online sources (ftp://, http:// […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cvsbug — race condition Related CVEs: CAN-2005-2693 CVE-2004-0180 CVE-2004-0405 CVE-2004-0414 CVE-2004-0416 CVE-2004-0417 CVE-2004-0418 CVE-2004-0778 Upstream summary: Problem description A temporary file is created, used, deleted, and then re-created with the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-imap — Denial of Service Related CVEs: CVE-2010-4150 Upstream summary: The following DoS condition in IMAP extension was fixed in PHP 5.3.4 and PHP 5.2.15: A remote user can send […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2007-0905 CVE-2007-0906 CVE-2007-0907 CVE-2007-0908 CVE-2007-0909 CVE-2007-0910 CVE-2007-0988 CVE-2007-1001 Upstream summary: The PHP development team reports: Security Enhancements and Fixes in PHP 5.2.2 and PHP […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nebula — security fix for terrapin vulnerability Related CVEs: CVE-2023-48795 Upstream summary: Upstream reports: Security fix: Update golang.org/x/crypto, which includes a fix for CVE-2023-48795. Table of contents Symptom & Impact […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: xlockmore — local exploit Related CVEs: CVE-2012-4524 Upstream summary: Ignatios Souvatzis of NetBSD reports: Due to an error in the dclock screensaver in xlockmore, users who explicitly use this screensaver […]