Systemd Services

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: GNU cpio — multiple vulnerabilities Related CVEs: CVE-2014-9112 CVE-2015-1197 CVE-2016-2037 CVE-2019-14866 Upstream summary: Sergey Poznyakoff reports: This stable release fixes several potential vulnerabilities CVE-2015-1197: cpio, when using the –no-absolute-filenames option, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libidn2 — roundtrip check vulnerability Related CVEs: CVE-2015-2059 CVE-2015-8948 CVE-2016-6261 CVE-2016-6262 CVE-2016-6263 CVE-2019-12290 Upstream summary: CVE list: GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specified in RFC3490 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Fix a buffer overflow in the tiff reader Upstream summary: libvips reports: A buffer overflow was found and fixed in the libvips code Table of contents Symptom & Impact Environment […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: punbb — NULL byte injection vulnerability Related CVEs: CVE-2006-4759 Upstream summary: CVE Mitre reports: PunBB 1.2.12 does not properly handle an avatar directory pathname ending in %00, which allows remote […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: e2fsprogs — potential buffer overrun bugs in the blkid library and in the fsck program Upstream summary: Theodore Y. Ts'o reports: Fixed some potential buffer overrun bugs in the blkid […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: shells/fish — arbitrary code execution via git Related CVEs: CVE-2014-2905 CVE-2014-2906 CVE-2014-2914 CVE-2014-3219 CVE-2014-3856 CVE-2022-20001 Upstream summary: Peter Ammon reports: fish is a command line shell. fish version 3.1.0 through […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: libtorrent — remote DoS Upstream summary: X-cela reports: Calls into build_benocde that use %zu could crash on 64 bit machines due to the size change of size_t. Someone can force […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Pillow — Multiple vulnerabilities Related CVEs: CVE-2019-16865 CVE-2019-19911 CVE-2020-5310 CVE-2020-5311 CVE-2020-5312 CVE-2020-5313 Upstream summary: Pillow developers report: This release addresses several security problems, as well as addressing CVE-2019-19911. CVE-2019-19911 is […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: transmission-daemon — vulnerable to dns rebinding attacks Upstream summary: Google Project Zero reports: The transmission bittorrent client uses a client/server architecture, the user interface is the client which communicates to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-twisted — cookie and authorization headers are leaked when following cross-origin redirects Related CVEs: CVE-2019-12387 CVE-2019-9512 CVE-2019-9514 CVE-2019-9515 CVE-2020-10108 CVE-2020-10109 Upstream summary: Twisted developers report: Cookie and Authorization headers are […]