Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sendmail — race condition vulnerability Related CVEs: CVE-2006-0058 Upstream summary: Problem Description A race condition has been reported to exist in the handling by sendmail of asynchronous signals. Impact A […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Pillow — Multiple vulnerabilities Related CVEs: CVE-2016-0740 CVE-2016-0775 CVE-2016-9189 CVE-2016-9190 CVE-2019-16865 CVE-2019-19911 CVE-2020-5310 CVE-2020-5311  +2 more Upstream summary: Pillow developers report: This release addresses several security problems, as well as […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: websocket-extensions — ReDoS vulnerability Related CVEs: CVE-2020-7663 Upstream summary: Changelog: Remove a ReDoS vulnerability in the header parser (CVE-2020-7663) Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: tcl/tk — buffer overflow in ReadImage function Related CVEs: CVE-2007-5137 Upstream summary: A Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl/Tk, allows remote attackers to execute arbitrary code […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: serviio — affected by log4j vulnerability Related CVEs: CVE-2021-44228 Upstream summary: Serviio reports: Serviio is affectred by the log4j vulnerability. Table of contents Symptom & Impact Environment & Reproduction Root […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: typo3 — XSS vulnerability in svg-sanitize Related CVEs: CVE-2020-11063 CVE-2020-11064 CVE-2020-11065 CVE-2020-11066 CVE-2020-11067 CVE-2020-11069 CVE-2020-15098 CVE-2020-15099  +1 more Upstream summary: The TYPO3 project reports: The SVG sanitizer library enshrined/svg-sanitize before […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mod_auth_mellon — Redirect URL validation bypass Related CVEs: CVE-2019-13038 Upstream summary: Jakub Hrozek reports: Version 0.17.0 and older of mod_auth_mellon allows the redirect URL validation to be bypassed by specifying […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: cups — security vulnerabilities Related CVEs: CVE-2019-8675 CVE-2019-8696 CVE-2019-8842 CVE-2020-3898 CVE-2024-47076 CVE-2024-47175 CVE-2024-47176 CVE-2025-58060  +1 more Upstream summary: OpenPrinting reports: When the AuthType is set to anything but Basic, if […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ghostscript — zseticcspace() function buffer overflow vulnerability Related CVEs: CVE-2008-0411 Upstream summary: Chris Evans from the Google Security Team reports: Severity: parsing of evil PostScript file will result in arbitrary […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: isc-dhcp — remotely exploitable vulnerability Related CVEs: CVE-2021-25217 Upstream summary: Michael McNally reports: Program code used by the ISC DHCP package to read and parse stored leases has a defect […]