Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: torrentflux — User-Agent XSS Vulnerability Related CVEs: CVE-2006-5227 Upstream summary: Steven Roddis reports that User-Agent string is not properly escaped when handled by torrentflux. This allows for arbitrary code insertion. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kaffeine — buffer overflow vulnerability Related CVEs: CVE-2006-0051 Upstream summary: The KDE team reports: Kaffeine can produce a buffer overflow in http_peek() while creating HTTP request headers for fetching remote […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nagios-plugins — Long Location Header Buffer Overflow Vulnerability Related CVEs: CVE-2007-5198 Upstream summary: A Secunia Advisory reports: The vulnerability is caused due to a boundary error within the redir() function […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: java — multiple vulnerabilities Related CVEs: CVE-2012-4681 CVE-2013-0433 CVE-2015-4734 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835  +12 more Upstream summary: Oracle reports: This Critical Patch Update contains 25 new security fixes for […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: habari — Cross-Site Scripting Vulnerability Related CVEs: CVE-2008-4601 Upstream summary: Secunia reports: Input passed via the "habari_username" parameter when logging in is not properly sanitised before being returned to the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ghostscript — zseticcspace() function buffer overflow vulnerability Related CVEs: CVE-2008-0411 Upstream summary: Chris Evans from the Google Security Team reports: Severity: parsing of evil PostScript file will result in arbitrary […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: moinmoin — multiple vulnerabilities Related CVEs: CVE-2004-0708 CVE-2007-0857 CVE-2007-0901 CVE-2007-0902 CVE-2007-2423 CVE-2007-2673 CVE-2008-0780 CVE-2008-0781  +12 more Upstream summary: MoinMoin reports: Security fix for CVE-2020-25074: fix remote code execution via cache […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: eggdrop — denial of service vulnerability Related CVEs: CVE-2009-1789 Upstream summary: Secunia reports: The vulnerability is caused due to an error in the processing of private messages within the server […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php-mbstring — php mbstring buffer overflow vulnerability Related CVEs: CVE-2008-5557 Upstream summary: SecurityFocus reports: PHP is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vim — multiple vulnerabilities in the netrw module Related CVEs: CVE-2008-3076 Upstream summary: Jan Minar reports: Applying the “D'' to a file with a crafted file name, or inside a […]