Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openssl — potential SSL 2.0 rollback Related CVEs: CVE-2005-2969 Upstream summary: Vulnerability: Such applications are affected if they use the option SSL_OP_MSIE_SSLV2_RSA_PADDING. This option is implied by use of SSL_OP_ALL, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcpd — Denial of Service Related CVEs: CVE-2015-8605 Upstream summary: ISC reports: A badly formed packet with an invalid IPv4 UDP length field can cause a DHCP server, client, or […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: salt — multiple vulnerabilities in salt-master process Related CVEs: CVE-2015-6918 CVE-2015-6941 CVE-2015-8034 CVE-2016-1866 CVE-2016-3176 CVE-2017-12791 CVE-2017-14695 CVE-2017-14696  +5 more Upstream summary: F-Secure reports: CVE-2020-11651 – Authentication bypass vulnerabilities The ClearFuncs […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcpd — format string vulnerabilities Related CVEs: CVE-2004-1006 Upstream summary: The ISC DHCP programs are vulnerable to several format string vulnerabilities which may allow a remote attacker to execute arbitrary […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: wolfssl — multiple issues Related CVEs: CVE-2015-6925 CVE-2015-7744 CVE-2020-12966 CVE-2021-46744 CVE-2022-34293 CVE-2025-11931 CVE-2025-11932 CVE-2025-11933  +5 more Upstream summary: wolfSSL blog reports: This release includes multiple fixes across TLS 1.2, TLS […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kdewebdev — kommander untrusted code execution vulnerability Related CVEs: CVE-2005-0754 Upstream summary: A KDE Security Advisory reports: Kommander executes without user confirmation data files from possibly untrusted locations. As they […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mozilla — multiple vulnerabilities Related CVEs: CVE-2006-6077 CVE-2007-0008 CVE-2007-0009 CVE-2007-0775 CVE-2007-0776 CVE-2007-0777 CVE-2007-0778 CVE-2007-0779  +5 more Upstream summary: The Mozilla Foundation reports of multiple security issues in Firefox, Seamonkey, and […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Supervisord — An authenticated client can run arbitrary shell commands via malicious XML-RPC requests Related CVEs: CVE-2017-11610 Upstream summary: mnaberez reports: supervisord can be configured to run an HTTP server […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libsamplerate — multiple vulnerabilities Related CVEs: CVE-2017-7697 Upstream summary: NVD reports: In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in src_sinc.c via a crafted audio file. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2015-8879 CVE-2016-5385 CVE-2016-5399 CVE-2016-6288 CVE-2016-6289 CVE-2016-6290 CVE-2016-6291 CVE-2016-6292  +4 more Upstream summary: PHP reports: Fixed bug #69975 (PHP segfaults when accessing nvarchar(max) defined columns) […]