Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: json-c — integer overflow and out-of-bounds write via a large JSON file Related CVEs: CVE-2020-12762 Upstream summary: Tobias Stöckmann reports: I have discovered a way to trigger an out of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rkhunter — insecure temporary file creation Related CVEs: CVE-2005-1270 Upstream summary: Gentoo reports: Sune Kloppenborg Jeppesen and Tavis Ormandy of the Gentoo Linux Security Team have reported that the check_update.sh […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-date — Regular Expression Denial of Service Vunlerability of Date Parsing Methods Related CVEs: CVE-2021-41817 Upstream summary: Stanislav Valkanov reports: Date's parsing methods including Date.parse are using Regexps internally, some […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcpd — Denial of Service Related CVEs: CVE-2010-3611 CVE-2011-0413 CVE-2011-2748 CVE-2011-2749 CVE-2011-4539 CVE-2012-3570 CVE-2012-3571 CVE-2012-3954  +1 more Upstream summary: ISC reports: A badly formed packet with an invalid IPv4 UDP […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: x11/cde — Local privilege escalation via CDE dtsession Related CVEs: CVE-2020-2696 Upstream summary: Marco Ivaldi (marco.ivaldi () mediaservice net) reports: A buffer overflow in the CheckMonitor() function in the Common […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: MariaDB — Multiple vulnerabilities Related CVEs: CVE-2022-47015 CVE-2023-22084 CVE-2025-21490 CVE-2026-44168 CVE-2026-44169 CVE-2026-44170 CVE-2026-44171 CVE-2026-44172  +1 more Upstream summary: The MariaDB project reports: See linked CVE's for details. Table of contents […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: geeklog xss vulnerability Related CVEs: CVE-2006-3756 Upstream summary: Geeklog reports: MustLive pointed out a possible XSS in the form to email an article to a friend that we're fixing with […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PG Partition Manager — arbitrary code execution Related CVEs: CVE-2021-33204 Upstream summary: PG Partition Manager reports: In the pg_partman (aka PG Partition Manager) extension before 4.5.1 for PostgreSQL, arbitrary code […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: OpenTTD — Denial of service using forcefully crashed aircrafts Related CVEs: CVE-2010-2534 CVE-2010-4168 CVE-2011-3341 CVE-2011-3342 CVE-2011-3343 CVE-2012-0049 CVE-2012-3436 CVE-2013-6411 Upstream summary: The OpenTTD Team reports: The problem is caused by […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pango — integer overflow Related CVEs: CVE-2009-1194 Upstream summary: oCERT reports: Pango suffers from a multiplicative integer overflow which may lead to a potentially exploitable, heap overflow depending on the […]