Systemd Services

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: php — multiple vulnerabilities Upstream summary: The PHP Group reports: Fileinfo: Fixed bug #71527 (Buffer over-write in finfo_open with malformed magic file). mbstring: Fixed bug #71906 (AddressSanitizer: negative-size-param (-1) in […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libpng stack-based buffer overflow and other code concerns Related CVEs: CVE-2004-0597 CVE-2004-0598 CVE-2004-0599 Upstream summary: Chris Evans has discovered multiple vulnerabilities in libpng, which can be exploited by malicious people […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: krb5 — Double-free in KDC TGS processing Related CVEs: CVE-2017-11368 CVE-2017-11462 CVE-2022-42898 CVE-2023-39975 Upstream summary: The MIT krb5 Team reports: When issuing a ticket for a TGS renew or validate […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rainloop — cross-site-scripting (XSS) vulnerability Related CVEs: CVE-2022-29360 Upstream summary: Simon Scannell reports: The code vulnerability can be easily exploited by an attacker by sending a malicious email to a […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: messagelib — HTML email can open browser window automatically Related CVEs: CVE-2018-19516 Upstream summary: Albert Astals Cid reports: messagelib is the library used by KMail to display emails. messagelib by […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: slim — insecure PATH assignment Related CVEs: CVE-2009-1756 CVE-2010-2945 Upstream summary: SLiM assigns logged on users a PATH in which the current working directory ("./") is included. This PATH can […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: shibboleth2-sp — "Dynamic" metadata provider plugin issue Upstream summary: The Internet2 community reports: The Shibboleth Service Provider software includes a MetadataProvider plugin with the plugin type "Dynamic" to obtain metadata […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openoffice — arbitrary code execution vulnerabilities Related CVEs: CVE-2008-2237 CVE-2008-2238 Upstream summary: The OpenOffice Team reports: A security vulnerability with the way OpenOffice 2.x process WMF files may allow a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: nwclient — multiple vulnerabilities Related CVEs: CVE-2001-0910 CVE-2002-0113 CVE-2002-0114 Upstream summary: Insecure file permissions, network access control and DNS usage put systems that use Legato NetWorker at risk. When the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: kio: Information Leak when accessing https when using a malicious PAC file Upstream summary: Albert Astals Cid reports: Using a malicious PAC file, and then using exfiltration methods in the […]