Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Supervisord — An authenticated client can run arbitrary shell commands via malicious XML-RPC requests Related CVEs: CVE-2017-11610 Upstream summary: mnaberez reports: supervisord can be configured to run an HTTP server […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libsamplerate — multiple vulnerabilities Related CVEs: CVE-2017-7697 Upstream summary: NVD reports: In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in src_sinc.c via a crafted audio file. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2015-8879 CVE-2016-5385 CVE-2016-5399 CVE-2016-6288 CVE-2016-6289 CVE-2016-6290 CVE-2016-6291 CVE-2016-6292  +4 more Upstream summary: PHP reports: Fixed bug #69975 (PHP segfaults when accessing nvarchar(max) defined columns) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Related CVEs: CVE-2015-8879 CVE-2016-5385 CVE-2016-5399 CVE-2016-6288 CVE-2016-6289 CVE-2016-6290 CVE-2016-6291 CVE-2016-6292  +4 more Upstream summary: PHP reports: Fixed bug #69975 (PHP segfaults when accessing nvarchar(max) defined columns) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: security/tor — SOCKS4(a) inversion bug Related CVEs: CVE-2005-2643 CVE-2006-0414 CVE-2009-0414 CVE-2009-0936 CVE-2009-0937 CVE-2009-0938 CVE-2010-1676 CVE-2011-0427  +3 more Upstream summary: The Tor Project reports: TROVE-2022-002: The SafeSocks option for SOCKS4(a) is […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ingo — local arbitrary shell command execution Related CVEs: CVE-2006-5449 Upstream summary: The Horde team reports a vulnerability within Ingo, the filter management suite. The vulnerability is caused due to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — open_basedir Race Condition Vulnerability Related CVEs: CVE-2006-5178 Upstream summary: Stefan Esser reports: PHP's open_basedir feature is meant to disallow scripts to access files outside a set of configured […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Mozilla — Stored passwords in 'Saved Logins' can be copied without master password entry Related CVEs: CVE-2019-11733 Upstream summary: Mozilla Foundation reports: CVE-2019-11733: Stored passwords in 'Saved Logins' can be […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: lifetype — ADOdb "server.php" Insecure Test Script Security Issue Related CVEs: CVE-2006-0146 Upstream summary: Secunia reports: A security issue has been discovered in LifeType, which can be exploited by malicious […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenSSL — OOB memory access vulnerability Related CVEs: CVE-2023-5678 CVE-2023-6129 CVE-2023-6237 CVE-2024-0727 CVE-2024-2511 CVE-2024-4603 CVE-2024-4741 CVE-2024-5535  +2 more Upstream summary: The OpenSSL project reports: Low-level invalid GF(2^m) parameters lead to […]