Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: shoutcast — cross-site scripting, information exposure Related CVEs: CVE-2006-3007 Upstream summary: Goober's advisory reports reports that shoutcast is vulnerable to an arbitrary file reading vulnerability: Impact of the vulnerability depends […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: PostgreSQL Server — execute arbitrary SQL code as DBA user Related CVEs: CVE-2019-10129 CVE-2019-10130 CVE-2019-10164 CVE-2019-10208 CVE-2019-10209 CVE-2020-1720 CVE-2021-23214 CVE-2021-23222  +2 more Upstream summary: The PostgreSQL project reports: Confine additional […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Intel CPU issues Related CVEs: CVE-2020-0543 Upstream summary: Intel reports: Intel CPUs suffer Special Register Buffer Data Sampling vulnerability Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: smbftpd — format string vulnerability Related CVEs: CVE-2007-5184 Upstream summary: Secunia reports: Format string vulnerability in the SMBDirList function in dirlist.c in SmbFTPD 0.96 allows remote attackers to execute arbitrary […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: typo3 — multiple vulnerabilities Related CVEs: CVE-2022-23499 CVE-2022-23500 CVE-2022-23501 CVE-2022-23502 CVE-2022-23503 CVE-2022-23504 CVE-2022-23638 CVE-2023-37905  +2 more Upstream summary: TYPO3 reports: TYPO3-CORE-SA-2023-002: By-passing Cross-Site Scripting Protection in HTML Sanitizer TYPO3-CORE-SA-2023-003: Information […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: keycloak — Multiple security fixes Related CVEs: CVE-2021-10039 CVE-2021-10270 CVE-2021-10451 CVE-2021-10492 CVE-2021-44549 CVE-2021-9666 CVE-2022-40151 CVE-2022-41966  +2 more Upstream summary: Keycloak reports: This update includes 2 security fixes: CVE-2024-11734: Unrestricted admin […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mcweject — exploitable buffer overflow Related CVEs: CVE-2007-1719 Upstream summary: CVE reports: Buffer overflow in eject.c in Jason W. Bacon mcweject 0.9 on FreeBSD, and possibly other versions, allows local […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: w3m — format string vulnerability Related CVEs: CVE-2006-6772 Upstream summary: An anonymous person reports: w3m-0.5.1 crashes when using the -dump or -backend options to open a HTTPS URL with a […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: habari — Cross-Site Scripting Vulnerability Related CVEs: CVE-2008-4601 Upstream summary: Secunia reports: Input passed via the "habari_username" parameter when logging in is not properly sanitised before being returned to the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: SOGo — SAML user authentication impersonation Related CVEs: CVE-2021-33054 Upstream summary: sogo.nu reports: SOGo was not validating the signatures of any SAML assertions it received. This means any actor with […]