Troubleshooting

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-Flask-Cors — directory traversal vulnerability Related CVEs: CVE-2020-25032 Upstream summary: praetorian-colby-morgan reports: An issue was discovered in Flask-CORS (aka CORS Middleware for Flask) before 3.0.9. It allows ../ directory traversal […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-graphite-web — Multiple vulnerabilities Related CVEs: CVE-2013-5093 Upstream summary: Graphite developers report: This release contains several security fixes for cross-site scripting (XSS) as well as a fix for a remote-execution […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: mailman < 2.1.38 — CSRF vulnerability of list mod or member against list admin page Related CVEs: CVE-2021-43331 CVE-2021-43332 CVE-2021-44227 Upstream summary: Mark Sapiro reports: A list moderator or list […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openexr — multiple vulnerabilities Related CVEs: CVE-2018-18443 CVE-2018-18444 CVE-2021-20296 CVE-2021-3474 CVE-2021-3475 CVE-2021-3476 CVE-2021-3477 CVE-2021-3478  +12 more Upstream summary: Cary Phillips reports: [OpenEXR v3.4.11 is a p]atch release that addresses the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: junkbuster — heap corruption vulnerability and configuration modification vulnerability Related CVEs: CVE-2005-1108 CVE-2005-1109 Upstream summary: A Debian advisory reports: James Ranson discovered that an attacker can modify the referrer setting […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Sane — Multiple Vulnerabilities Related CVEs: CVE-2020-12861 CVE-2020-12862 CVE-2020-12863 CVE-2020-12864 CVE-2020-12865 CVE-2020-12866 CVE-2020-12867 Upstream summary: The Sane Project reports: epson2: fixes CVE-2020-12867 (GHSL-2020-075) and several memory management issues found while […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: proftpd — arbitrary code execution vulnerability with chroot Related CVEs: CVE-2008-4242 CVE-2008-4247 CVE-2009-0542 CVE-2009-0543 Upstream summary: The FreeBSD security advisory FreeBSD-SA-11:07.chroot reports: If ftpd is configured to place a user […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: security/libsodium — crypto_core_ed25519_is_valid_point mishandles checks for whether an elliptic curve point is valid Related CVEs: CVE-2025-69277 Upstream summary: Libsodium maintainer reports: The function crypto_core_ed25519_is_valid_point(), a low-level function used to check […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: sudo — privilege escalation vulnerability through host and chroot options Related CVEs: CVE-2005-1993 CVE-2005-2959 CVE-2009-0034 CVE-2010-0426 CVE-2010-1163 CVE-2010-1646 CVE-2010-2956 CVE-2011-0010  +12 more Upstream summary: Todd C. Miller reports, crediting Rich […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Ruby — Denial of Service and Unsafe Object Creation Vulnerability in JSON Related CVEs: CVE-2013-0269 Upstream summary: Aaron Patterson reports: When parsing certain JSON documents, the JSON gem can be […]