Security Hardening

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cassandra3 — multiple vulnerabilities Related CVEs: CVE-2015-0225 CVE-2015-0886 CVE-2019-2684 CVE-2020-7238 CVE-2021-44521 CVE-2022-24823 CVE-2022-25857 CVE-2022-42003  +1 more Upstream summary: Cassandra tema reports: This release contains 6 security fixes including CVE-2022-24823: When […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: dragonfly — argument injection Related CVEs: CVE-2021-33564 Upstream summary: NVD reports: An argument injection vulnerability in the Dragonfly gem before 1.4.0 for Ruby allows remote attackers to read and write […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: typo3 — multiple vulnerabilities Related CVEs: CVE-2022-23499 CVE-2022-23500 CVE-2022-23501 CVE-2022-23502 CVE-2022-23503 CVE-2022-23504 CVE-2023-37905 CVE-2023-38499  +1 more Upstream summary: TYPO3 reports: TYPO3-CORE-SA-2023-002: By-passing Cross-Site Scripting Protection in HTML Sanitizer TYPO3-CORE-SA-2023-003: Information […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libssh2 — multiple issues Related CVEs: CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862  +1 more Upstream summary: libssh2 developers report: Defend against possible integer overflows in comp_method_zlib_decomp. Defend against […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: syncthing — crash due to malformed relay protocol message Related CVEs: CVE-2021-21404 Upstream summary: syncthing developers report: syncthing can be caused to crash and exit if sent a malformed relay […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: drupal6-cck — cross-site scripting Related CVEs: CVE-2009-1069 Upstream summary: Drupal CCK plugin developer reports: The Node reference and User reference sub-modules, which are part of the Content Construction Kit (CCK) […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-numpy — Missing return-value validation of the function PyArray_DescrNew Related CVEs: CVE-2021-41495 Upstream summary: Numpy reports: At most call-sites for PyArray_DescrNew, there are no validations of its return, but an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: zgrep — arbitrary file write Related CVEs: CVE-2005-0988 CVE-2005-1228 CVE-2006-4334 CVE-2006-4335 CVE-2006-4336 CVE-2006-4337 CVE-2006-4338 CVE-2022-1271 Upstream summary: RedHat reports: An arbitrary file write vulnerability was found in GNU gzip's zgrep […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pecl-phar — format string vulnerability Related CVEs: CVE-2010-2094 Upstream summary: Entry for CVE-2010-2094 says: Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow context-dependent attackers […]