This list is too long for Bugzilla's little mind; the Next/Prev/First/Last buttons won't appear on individual bugs.
Hide Search Description- Keywords: security
1022 bugs found.
| ID▼ | Product | Component | Assignee | Status | Resolution | Summary | Changed |
|---|---|---|---|---|---|---|---|
| 278463 | Ports & Packages | Individual Port(s) | pi | New | --- | ftp/filezilla: needs update to 3.67.0 to fix PuTTY bug leaking info on NIST-P521 based private keys [CVE-2024-31497] | 2024-04-21 |
| 278404 | Ports & Packages | Individual Port(s) | marcus | Open | --- | ports-mgmt/portlint: Add check for files' permissions | 2024-04-18 |
| 278244 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | DUPLICATE | net/jose: Update to v13 (CVE-2023-50967) | 2024-04-07 |
| 278243 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/jose: Update to v13 (CVE-2023-50967) | 2024-04-11 |
| 278180 | Ports & Packages | Individual Port(s) | joneum | New | --- | www/mod_security: Update to 2.9.7 and Latest Project Changes | 2024-04-05 |
| 277631 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/grafana: Update to 10.4.1 and 9.5.17 (Fixes security vulnerability) | 2024-03-26 |
| 277587 | Ports & Packages | Individual Port(s) | grembo | Closed | FIXED | sysutils/pftop crashing v0.10 installed via pkg install pftop | 2024-04-27 |
| 277261 | Ports & Packages | Individual Port(s) | rodrigo | Closed | FIXED | dns/c-ares: upgrade to 1.27.0 required (moderate security issue) | 2024-02-23 |
| 277228 | Base System | misc | geom | New | --- | Device permissions security hole with partitioning (/dev/geom.ctl) | 2024-03-03 |
| 277184 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | www/grafana: Update to 10.3.3 and 9.5.16 (Fixes security vulnerability) | 2024-02-23 |
| 276515 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/rclone: update to 1.65.1 | 2024-01-26 |
| 276491 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Security update to 1.6.6 | 2024-01-24 |
| 276422 | Base System | conf | bugs | Closed | Unable to Repro | pam_passwdqc(8) - add more examples | 2024-01-18 |
| 276022 | Ports & Packages | Individual Port(s) | dvl | Closed | FIXED | databases/mantis: Update to patch known vulns | 2024-01-06 |
| 275999 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | devel/zookeeper: Update to 3.8.3 (Fixes critical security vulnerability) and release the port | 2023-12-29 |
| 275055 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | security/openvpn: Update to 2.6.7 | 2023-11-19 |
| 274520 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Security update to 1.6.4 | 2023-11-10 |
| 274270 | Ports & Packages | Individual Port(s) | vbox | Open | --- | emulators/virtualbox-ose-legacy family, including www/phpvirtualbox-legacy: deprecate six legacy ports | 2024-04-23 |
| 274235 | Ports & Packages | Individual Port(s) | fluffy | Closed | FIXED | mail/exim: update 4.96 -> 4.96.1 to fix several CVEs | 2023-10-03 |
| 274215 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | mail/libspf2: add fix for CVE-2023-42118 | 2023-10-05 |
| 274113 | Ports & Packages | Individual Port(s) | erlang | Closed | FIXED | net/rabbitmq: update to 3.11.24 | 2023-12-29 |
| 273766 | Ports & Packages | Individual Port(s) | sunpoet | Open | --- | graphics/webp: critical vulnerability (affects browsers) | 2023-10-01 |
| 273749 | Ports & Packages | Individual Port(s) | sunpoet | Closed | Overcome By Eve | graphics/webp: backport fix for CVE-2023-4863 | 2023-09-15 |
| 273691 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/gitea: Update to 1.20.4 (fixes security vulnerabilities) | 2023-09-10 |
| 273595 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba413: back port security patches from 4.6.11 | 2023-10-15 |
| 273563 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | net-im/py-matrix-synapse: update to 1.93.0 | 2023-10-27 |
| 273417 | Ports & Packages | Individual Port(s) | makc | Closed | FIXED | [patch] archivers/7-zip: Update to 23.00 or 23.01 (Security) | 2024-02-16 |
| 273379 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | www/gitea: Update to 1.20.3 (fixes security vulnerabilities) | 2023-08-28 |
| 273363 | Ports & Packages | Individual Port(s) | skreuzer | Closed | FIXED | devel/py-joblib: upgrade to 1.3.2 and fixes CVE-2022-21797 | 2023-08-29 |
| 272902 | Base System | kern | bugs | New | --- | Security: allow passphrases for WPA-EAP to be saved without using clear text in a world-readable file | 2023-08-02 |
| 272586 | Ports & Packages | Individual Port(s) | grahamperrin | Closed | DUPLICATE | emulators/virtualbox-ose: FORBIDDEN for all 6.1.4⋯ versions of ports in the family | 2023-07-19 |
| 272191 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/tang: Update to v14 (Fix CVE-2023-1672) | 2023-06-29 |
| 272161 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.27 and 9.5.5 (Fixes critical security vulnerability) | 2023-06-25 |
| 271893 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana{8,9}: Update to 8.5.26 and 9.5.3 (Fixes security vulnerabilities) | 2023-06-08 |
| 271839 | Base System | bin | emaste | Closed | FIXED | crypto/openssh: Status of CVE-2023-28531 | 2023-06-21 |
| 271695 | Ports & Packages | Individual Port(s) | diizzy | Closed | FIXED | graphics/webp: Patch CVE-2023-1999 | 2023-06-06 |
| 271141 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/vuxml: vulnerabilities for the emulators/virtualbox-ose family, 6.⋯ versions prior to 6.1.46 | 2023-07-20 |
| 271108 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/cloud-init: (and net/cloud-init-devel) security update | 2023-05-01 |
| 271100 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/activemq: Version update, explict jdk specification and rc script bug fixes | 2023-04-30 |
| 271086 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/grafana{8,9}: Update to 8.5.24 and 9.4.9 (Fixes security vulnerability) | 2023-04-27 |
| 271064 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/nginx-naxsi: Does not run with pcre2 | 2023-08-05 |
| 271041 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | multimedia/jellyfin: update to 10.8.10 | 2023-04-25 |
| 270923 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | security/vuxml: 18 new entries for vulnerable ports | 2023-09-03 |
| 270875 | Ports & Packages | Individual Port(s) | joneum | New | --- | www/nginx: with njs < 0.7.11 is vulnerable | 2023-04-16 |
| 270823 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | print/ghostscript9-agpl-base: please check for CVE-2023-28879 | 2023-05-01 |
| 270800 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | print/ghostscript10: please fix CVE-2023-28879 by updating to 10.01.1 | 2023-04-13 |
| 270795 | Ports & Packages | Individual Port(s) | philip | In Progress | --- | security/vuxml: taking port flavours into account in recent new entries | 2024-02-15 |
| 270767 | Ports & Packages | Individual Port(s) | python | Closed | FIXED | lang/python311 backport 3.11.3 to quarterly | 2023-06-16 |
| 270744 | Ports & Packages | Individual Port(s) | philip | Closed | FIXED | security/vuxml: 20 new entries for vulnerable ports | 2023-04-12 |
| 270739 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Fix py-redis port name | 2023-04-12 |
| 270723 | Ports & Packages | Individual Port(s) | philip | Closed | FIXED | VuXML new entries for 20 vulnerable ports | 2023-04-12 |
| 270562 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/grafana{8,9}: Update to 8.5.22 and 9.4.7 (Fixes security vulnerability) | 2023-04-01 |
| 270540 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: CVE-2023-1393 | 2023-04-07 |
| 270357 | Ports & Packages | Individual Port(s) | portmgr | Closed | FIXED | ftp/curl: Update to 8.0.1 | 2023-04-18 |
| 270050 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | databases/mantis: Update to 2.25.6 | 2023-03-10 |
| 270037 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/apache24: Security Update to 2.4.56 | 2023-03-15 |
| 269967 | Ports & Packages | Individual Port(s) | yasu | Closed | FIXED | ftp/curl: security update to 7.88.1 | 2023-03-19 |
| 269903 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana{8,9}: Update to 8.5.21 and 9.3.8 (Fixes security vulnerabilities) | 2023-03-03 |
| 269768 | Ports & Packages | Package Infrastruc | apache | Closed | FIXED | www/apache24: broken dependency / potential security issue | 2023-04-01 |
| 269707 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: update to 1.18.4 (fixes security vulnerabilities) | 2023-02-20 |
| 269667 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/vuxml: document CVE-2022-39282 and CVE-2022-39283 for net/freerdp | 2023-02-24 |
| 269655 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | security/vuxml: document CVE-2023-22490 and CVE-2023-23946 for devel/git, www/gitlab-ce, … | 2023-02-21 |
| 269652 | Ports & Packages | Individual Port(s) | vvd | Closed | FIXED | www/tomcat{85,9,101,-devel}: Update to 8.5.88, 9.0.74, 10.1.8, 11.0.0-M5 (CVE-2023-24998 FileUpload DoS with excessive parts) | 2023-05-02 |
| 269530 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | print/harfbuzz: update to 7.0.0 | 2023-02-23 |
| 269409 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana{8,9}: Update to 8.5.20 and 9.3.6 (Fixes security vulnerabilities) | 2023-02-09 |
| 269226 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | security/vuxml: document CVE-2021-42835 for multimedia/plexmediaserver < 1.25.0 | 2023-01-30 |
| 269221 | Ports & Packages | Individual Port(s) | fernape | Closed | Overcome By Eve | security/vuxml: document CVE-2017-11610 and CVE-2019-12105 for outdated versions of sysutils/py-supervisor | 2023-09-02 |
| 269170 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/kafka: update to 3.3.2 | 2023-02-05 |
| 269154 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | sysutils/node_exporter: update to 1.5.0 | 2023-02-04 |
| 269153 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net-mgmt/prometheus2: Update to 2.41.0 | 2023-01-30 |
| 269147 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | security/vuxml: document CVE-2018-21232 for devel/re2c < 2.0 | 2023-01-25 |
| 269131 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: update to 1.18.3 (fixes security vulnerabilities) | 2023-01-24 |
| 269116 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | dns/powerdns-recursor: update to 4.8.1 (fixes CVE-2023-22617) | 2023-01-24 |
| 269079 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/eternalterminal: Update to 6.2.4 | 2023-01-23 |
| 269051 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/awstats: update to 7.9 | 2023-01-23 |
| 269050 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/krill: Update to 0.12.1 | 2023-01-23 |
| 269030 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | [PATCH] security/sudo update 1.9.12p2 (fix CVE-2023-22809) | 2023-02-27 |
| 268963 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: update to 21.1.7 | 2023-03-27 |
| 268754 | Ports & Packages | Individual Port(s) | dvl | Closed | FIXED | devel/viewvc-devel: update to 1.3.0-20230104 | 2023-01-13 |
| 268742 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net-mgmt/cacti: Update to 1.2.23 | 2023-01-05 |
| 268656 | Ports & Packages | Individual Port(s) | fuz | Closed | FIXED | www/minio: multiple vulnerabilities | 2023-03-27 |
| 268523 | Ports & Packages | Individual Port(s) | gnome | Open | --- | www/webkit2-gtk{3,4}: 2.38 available | 2023-12-27 |
| 268357 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/typo3-11: Update to 11.5.20 | 2022-12-18 |
| 268244 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python39: Update to 3.9.16 | 2022-12-22 |
| 268190 | Ports & Packages | Individual Port(s) | glewis | Closed | FIXED | archivers/libarchive: Fix CVE 2022-36227 | 2022-12-06 |
| 268078 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana9: Update to 9.2.7 (fixes security vulnerability) | 2022-12-23 |
| 267937 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | archivers/advancecomp: update to 2.4 | 2022-11-27 |
| 267728 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.15 and 9.2.4 (fixes security vulnerabilities) | 2022-11-13 |
| 267627 | Ports & Packages | Individual Port(s) | timur | Closed | Overcome By Eve | net/samba413: CVE-2022-3437: backport port revision 4 to 2022Q4 | 2023-01-05 |
| 267624 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | databases/cassandra3: Update to 3.11.14 | 2023-01-11 |
| 267617 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | security/sudo: Update to 1.9.12p1 | 2022-11-08 |
| 267507 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/darkhttpd: Update to 1.14 (Fixes CVE-2020-25691) | 2022-11-08 |
| 267466 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/webtrees: Update to 1.7.20 (security release) | 2022-12-29 |
| 267465 | Ports & Packages | Individual Port(s) | mikael | Closed | FIXED | www/webtrees20: Update to 2.0.25 (.24 was a security release) | 2023-01-16 |
| 267276 | Ports & Packages | Individual Port(s) | desktop | Open | --- | graphics/tiff: Backport fixes for CVE-2022-2519, CVE-2022-2520 and CVE-2022-2521 | 2023-02-23 |
| 267177 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | devel/git: Update to 2.38.1 (security release) | 2022-10-19 |
| 267080 | Ports & Packages | Individual Port(s) | wen | In Progress | --- | lang/python39: Update to 3.9.15 | 2022-12-14 |
| 267049 | Ports & Packages | Individual Port(s) | horde | Closed | FIXED | mail/horde-imp: address ZDI-20-1051 / ZDI-CAN-10436 | 2022-10-28 |
| 267037 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/strongswan: update to 5.9.8 | 2022-10-19 |
| 266938 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/strongswan: CVE-2022-40617 | 2022-10-10 |
| 266907 | Ports & Packages | Individual Port(s) | vvd | Closed | FIXED | emulators/virtualbox-ose{-*}: Update to 6.1.44 | 2023-05-26 |
| 266865 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/routinator: Update to 0.11.3 | 2022-10-09 |
| 266766 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | devel/zydis: update to 3.2.1 | 2022-10-04 |
| 266654 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | dns/unbound: Update to 1.16.3 | 2022-09-29 |
| 266591 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Overcome By Eve | security/vuxml: Add nodejs September 22nd 2022 Security Releases | 2024-02-13 |
| 266535 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana7: Deprecate and remove port | 2022-10-06 |
| 266530 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.13 and 9.1.6 (Fixes security vulnerability) | 2022-09-21 |
| 266318 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/mod_security: Update to 2.9.6 | 2022-10-19 |
| 266286 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python39: Update to 3.9.14 | 2022-09-19 |
| 266133 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | databases/mariadb10[456]-server: update to latest security releases | 2022-09-09 |
| 266128 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.11 and 9.1.2 (Fixes security vulnerability) | 2022-09-01 |
| 265800 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/gemserv: Update to 0.6.6 | 2023-01-26 |
| 265468 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql80-server: Update to 8.0.30 (Fixes several CVE) | 2022-09-16 |
| 265330 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.9 and 9.0.3 (Fixes security vulnerability) | 2022-07-28 |
| 265250 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Works As Intend | ports-mgmt/portmaster -F does not suppress build of depends (for sysutils/restic, for one) | 2022-07-17 |
| 265244 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: CVE-2022-2319 and CVE-2022-2320 | 2023-03-29 |
| 265160 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/node16: Update to 16.16.0 | 2023-01-01 |
| 265159 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/node14: Update to 14.20.0 | 2023-01-01 |
| 265082 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | devel/ipython: 7.31.1 was a security release but not marked or merged (CVE-2022-21699) | 2022-11-12 |
| 265036 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net-im/gotosocial: upgrade to 0.3.7 | 2022-07-07 |
| 264999 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb106-server: conf.d/wsrep.cnf overrides bind-address in conf.d/server.cnf. | 2023-04-10 |
| 264847 | Ports & Packages | Individual Port(s) | mr | Closed | FIXED | security/vaultwarden: Change file permissions of rc.conf.d/vaultwarden to 0600 | 2022-07-22 |
| 264618 | Ports & Packages | Individual Port(s) | nc | Closed | FIXED | graphics/p5-Image-ExifTool: Update to 12.42 - (fixed security vulnerability) | 2022-06-24 |
| 264523 | Ports & Packages | Individual Port(s) | horde | Closed | FIXED | mail/horde-turba: Update to 4.2.29 (4.2.26 fixes RCE security vulnerability: CVE-2022-30287) | 2022-10-14 |
| 264437 | Ports & Packages | Individual Port(s) | ports-secteam | Open | --- | security/vuxml: Cannot validate entry: error: xmlAddEntity: invalid redeclaration of predefined entity | 2022-10-14 |
| 264435 | Base System | bhyve | jhb | Closed | FIXED | bhyve: hda_write() can index (and jump) beyond end of array | 2023-02-01 |
| 264426 | Ports & Packages | Individual Port(s) | bofh | Open | --- | www/mitmproxy: Update to 8.0.0 (<=7.0.4 vulnerable to CVE-2022-24766) | 2023-12-15 |
| 264425 | Ports & Packages | Individual Port(s) | jhixson | Closed | FIXED | sysutils/nomad: Secure nomad data_dir | 2022-06-10 |
| 264232 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | www/mattermost-{server,webapp}: Update to 7.3.0 | 2023-02-23 |
| 264170 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb103-server: Update to 10.3.35 (includes security fixes) | 2022-05-24 |
| 264082 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | www/grafana{7,8}: Update to 8.5.3 and 7.5.16 (Fixes security vulnerability) | 2022-11-07 |
| 263824 | Base System | bin | karels | Closed | FIXED | genet(4): Driver interface may overwrite memory in a consecutive memory copy operations when parsing TX packet | 2022-05-23 |
| 263789 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/eternalterminal: Update to 6.2.1 | 2022-05-11 |
| 263640 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql80-server: Update to 8.0.29 (Fixes multiple CVE) | 2022-05-17 |
| 263624 | Ports & Packages | Individual Port(s) | marcus | Closed | Overcome By Eve | net/netatalk3: Update to 3.1.13 (Fixes multiple/many security vulnerabilities) | 2022-05-06 |
| 263623 | Ports & Packages | Individual Port(s) | yasu | Closed | Overcome By Eve | databases/redis: Update to 6.2.7 on 2022Q2 branch | 2022-08-29 |
| 263434 | Base System | bin | jkim | Closed | Not A Bug | openssl: Unpatched bugs in /crypto/openssl/apps | 2022-06-20 |
| 263060 | Ports & Packages | Individual Port(s) | python | Closed | FIXED | devel/py-py: Update to 1.10.0 (security) -> 1.11.0 (for @py311 support) | 2023-09-01 |
| 262898 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: Update to 1.16.5 (fixes security vulnerabilities) | 2022-03-29 |
| 262879 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | dns/powerdns dns/powerdns-recursor: Update to 4.6.1 (fixes CVE-2022-27227) + fix building against LibreSSL | 2022-04-06 |
| 262693 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | irc/scrollz: Update to 2.3.1 | 2022-04-12 |
| 262662 | Ports & Packages | Individual Port(s) | mat | Closed | FIXED | dns/bind91{1,6,8}: CVE-2021-25220 CVE-2022-0396 CVE-2022-0635 CVE-2022-0667 | 2022-03-25 |
| 262537 | Ports & Packages | Individual Port(s) | diizzy | Closed | Not Accepted | dns/dns2blackhole : dns2blackhole-update2 is downloading executable to make ddos | 2023-06-19 |
| 262341 | Ports & Packages | Individual Port(s) | nc | Closed | FIXED | www/glpi: Update to 9.5.7 | 2022-03-09 |
| 262327 | Ports & Packages | Individual Port(s) | egypcio | Closed | FIXED | [PATCH] security/meek: update 0.35.0 to 0.37.0 | 2022-08-07 |
| 262295 | Base System | misc | bugs | New | --- | [pf] Tables and anchors | 2022-03-02 |
| 262197 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/typo3-11: Update to 11.5.7 | 2022-02-27 |
| 262196 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/typo3-10: Update to 10.4.25 | 2022-02-27 |
| 262180 | Base System | kern | bugs | Open | --- | jail escaping via jail-friendly nullfs | 2023-11-24 |
| 262174 | Documentation | Books & Articles | carlavilla | Closed | FIXED | gpg.conf options in Committer's guide should be reviewed/updated | 2023-09-07 |
| 262163 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | net/freerdp: Update to 2.6.0 | 2022-02-24 |
| 262133 | Ports & Packages | Individual Port(s) | ume | Closed | FIXED | security/cyrus-sasl2*: Update to 2.1.28 (security/bugfix release) | 2022-02-28 |
| 261969 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb10[345]-server: Update to latest versions (security releases) | 2022-02-19 |
| 261892 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | www/grafana[678]: Update to latest versions (8.3.5, 7.?.?, 6.?.?) fixing security vulnerabilities | 2022-04-04 |
| 261804 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: libX11 CVE-2021-31535 missing PORTEPOCH | 2022-02-09 |
| 261791 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | devel/py-twisted: Update to 22.1.0 (includes a security update) | 2022-02-13 |
| 261789 | Ports & Packages | Individual Port(s) | otis | Closed | FIXED | www/node16: Update to 16.14.0 (LTS) | 2022-06-04 |
| 261576 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: Update to 1.16.4 (was: 1.15.11: fixes security vulnerability) | 2022-03-29 |
| 261560 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | www/grafana6: deprecate and remove port | 2022-03-31 |
| 261527 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/mod_security: Update to 2.9.5 | 2022-03-04 |
| 261526 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | security/modsecurity3: Update to 3.0.6 | 2022-07-30 |
| 261499 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/phpmyadmin5 : Update to 5.1.2 | 2022-02-02 |
| 261482 | Ports & Packages | Individual Port(s) | desktop | Closed | FIXED | sysutils/polkit: Add upstream fix for CVE-2021-4034 "pwnkit" security vulnerability | 2022-01-27 |
| 261436 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/phpmustache: update to 2.14.1 | 2022-01-27 |
| 261410 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | www/firefox: Update to 96.0.3 (unfixed security vulnerabilities) | 2022-01-28 |
| 261306 | Base System | conf | bugs | New | --- | Geli rc.d script does not support insertion of USB devices containing a keyfile. | 2023-04-27 |
| 261273 | Ports & Packages | Individual Port(s) | wen | Closed | Overcome By Eve | devel/liblas: Vulnerable to multiple CVEs, Deprecated, fails to run tests: crashes | 2024-04-01 |
| 261210 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | security/vuxml: Add Prosody XMPP server advisory 2022-01-13 | 2022-01-16 |
| 261209 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | net-im/prosody: Update to 0.11.12 | 2022-01-16 |
| 261120 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | devel/mill Update to 0.9.12 (log4j security fix) | 2022-01-12 |
| 261056 | Ports & Packages | Individual Port(s) | svysh.fbsd | Closed | FIXED | net/uriparser: Update to 0.9.6 | 2022-01-09 |
| 260675 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/matomo: Update to 4.6.2 | 2021-12-31 |
| 260594 | Ports & Packages | Individual Port(s) | mikael | Closed | FIXED | mail/opendmarc: update to 1.4.2 | 2021-12-30 |
| 260590 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | URGENT graphics/p5-Image-ExifTool security update needs commit since February, Request MAINTAINER'ship | 2022-03-25 |
| 260575 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/grafana7: Update to 7.5.12 (Fixes security vulnerabilities) | 2022-01-09 |
| 260574 | Ports & Packages | Individual Port(s) | diizzy | Closed | FIXED | security/tang: Update to v11 (Fix CVE-2021-4076) | 2022-02-12 |
| 260570 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | devel/zookeeper: Update log4j to 2.17 | 2021-12-20 |
| 260549 | Ports & Packages | Individual Port(s) | truckman | Closed | FIXED | devel/py-opengrok-tools: Possible security issue: Update to 1.6.9 (>1.6.7?) | 2022-05-05 |
| 260534 | Ports & Packages | Individual Port(s) | truckman | Closed | FIXED | devel/opengrok: Update to 1.6.9 (>1.6.7), fixes security vulnerability (CVE-2021-2322) | 2022-04-26 |
| 260526 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: Update to 1.20.14 as a security fix | 2023-03-27 |
| 260481 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | devel/zookeeper: Update log4j to 2.16 | 2021-12-18 |
| 260421 | Ports & Packages | Package Infrastruc | portmgr | Closed | FIXED | devel/log4j: Security vulnerability tracking issue (CVE-2021-44228 / CVE-2021-45046) | 2023-03-01 |
| 260391 | Ports & Packages | Individual Port(s) | otis | Closed | Overcome By Eve | textproc/elasticsearch7: Update to 7.16.1 | 2021-12-20 |
| 260390 | Ports & Packages | Individual Port(s) | otis | Closed | Overcome By Eve | sysutils/logstash7: Update to 7.16.1 | 2021-12-20 |
| 260373 | Ports & Packages | Individual Port(s) | mfechner | Closed | FIXED | textproc/apache-solr: Update to 8.11 (Fixes security vulnerability) | 2021-12-17 |
| 260358 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/grafana8: Update to 8.3.2 (Fixes moderate severity vulnerabilities) | 2021-12-20 |
| 260138 | Base System | kern | bugs | New | --- | TPM2 Support in bootloader / kernel in order to retrieve GELI passphrase | 2024-02-07 |
| 259938 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | mail/libspf2: Update to 1.2.11 (Fixes CVE-2021-20314) | 2022-05-13 |
| 259638 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | www/grafana8: Update to 8.2.7 (Fixes high vulnerabilities) | 2021-12-12 |
| 259637 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | math/py-numpy: Update to 1.22.4 | 2022-06-23 |
| 259597 | Ports & Packages | Individual Port(s) | ygy | Closed | FIXED | www/grafana7: Update to 7.5.11 (Fixes Security Vulnerability) | 2021-11-25 |
| 259590 | Ports & Packages | Individual Port(s) | office | Closed | FIXED | graphics/libemf: update to 1.0.13 | 2021-11-02 |
| 259534 | Ports & Packages | Individual Port(s) | ygy | Closed | FIXED | archivers/advancecomp: Update to 2.1-6-g7b08f7a and take maintainership | 2021-11-19 |
| 259512 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | net/php{73,74,80}: Backport fix for CVE-2021-21703 security vulnerability | 2022-09-11 |
| 259362 | Ports & Packages | Individual Port(s) | gnome | Closed | Not Accepted | www/webkit2-gtk3: update to 2.34.1 | 2021-11-12 |
| 259338 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql57-server: Update to 5.7.36 (fixes security vulnerabilities) | 2021-11-01 |
| 259126 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node14: Update to 14.18.1 | 2021-10-14 |
| 258978 | Ports & Packages | Individual Port(s) | yasu | Closed | FIXED | databases/mongodb50: update to 5.0.3 | 2021-10-27 |
| 258936 | Ports & Packages | Individual Port(s) | osa | Closed | FIXED | databases/redis{,5,6}: Update to latest releases | 2021-10-05 |
| 258834 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | security/ca_root_nss: request to remove outdated "DST Root CA X3" cert b/c of collateral damage | 2022-11-07 |
| 258802 | Ports & Packages | Package Infrastruc | portmgr | Closed | FIXED | No updates to vuln.xml since 2021-09-16 | 2021-09-30 |
| 258519 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | Bump lang/python37 to 3.7.12 | 2021-09-19 |
| 258518 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | lang/python36: Update to 3.6.15 | 2021-09-19 |
| 258354 | Ports & Packages | Individual Port(s) | diizzy | Closed | FIXED | graphics/libpano13: Update to 2.9.20 | 2021-09-23 |
| 258195 | Ports & Packages | Individual Port(s) | wen | In Progress | --- | lang/python38: Update to 3.8.12 | 2021-09-19 |
| 258187 | Ports & Packages | Individual Port(s) | ashish | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.41.1 | 2021-09-02 |
| 258071 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | mail/fetchmail: security update to 6.4.22.rc2 - CVE-2021-39272 | 2021-08-29 |
| 258021 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | net-mgmt/icinga2: Update to 2.12.6 (security/bugfix release) | 2021-10-17 |
| 257903 | Ports & Packages | Individual Port(s) | otis | Closed | FIXED | www/node14: Update to 14.17.6 | 2021-09-23 |
| 257902 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node: Update to 16.8.0 | 2021-09-22 |
| 257900 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | dns/c-ares: Update to 1.17.2 | 2021-08-17 |
| 257832 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql80-server: Update to 8.0.26 (fixes multiple CVE) | 2021-08-29 |
| 257758 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | www/typo3-9: Update to 9.5.29 | 2021-10-05 |
| 257757 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | www/typo3-10: Update to 10.4.19 | 2021-10-05 |
| 257709 | Base System | kern | net | Closed | FIXED | netinet6: Set net.inet6.icmp6.nodeinfo default to 0 | 2023-05-01 |
| 257582 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | mail/opendmarc: Update to 1.4.1.1; Add ARC support | 2021-12-25 |
| 257480 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | mail/fetchmail: Update to 6.4.20 (security fix) | 2021-07-29 |
| 257306 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | ftp/curl: Update to 7.78.0 (security and bugfix release) | 2021-08-20 |
| 257221 | Ports & Packages | Individual Port(s) | ygy | Closed | FIXED | www/gitea: Update to 1.14.5 | 2021-07-18 |
| 257153 | Ports & Packages | Individual Port(s) | kbowling | Closed | FIXED | www/tomcat{7,85,9,10,-devel}: Update to 7.0.109, 8.5.69, 9.0.50, 10.0.8, 10.1.0-M2 | 2021-11-02 |
| 257150 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | security/linux-c7-nettle: Update to 2.7.1-9.el7_9 (security fix) | 2022-12-25 |
| 257148 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | x11/cde: Update to 2.4.0 | 2021-09-14 |
| 257066 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | databases/mantis: update to 2.25.2 | 2021-07-10 |
| 256957 | Base System | wireless | hrs | Open | --- | Wi-Fi: rc.conf(5) NOAUTO, ifconfig(8) up and unwanted WLAN connections to open networks | 2023-12-21 |
| 256860 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | mail/dovecot: Update to 2.3.15 | 2021-07-04 |
| 256472 | Ports & Packages | Individual Port(s) | lcook | Closed | FIXED | sysutils/zrepl: /var/run/zrepl should not be world-readable | 2021-06-08 |
| 256436 | Ports & Packages | Individual Port(s) | arrowd | Closed | FIXED | textproc/libxml2: Update to 2.9.12 (fixes several vulnerabilities) | 2021-06-23 |
| 256405 | Ports & Packages | Individual Port(s) | desktop | Closed | FIXED | sysutils/polkit: Update to 0.119 | 2021-08-01 |
| 256274 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | x11-toolkits/wlroots: fix CVE-2013-2003 | 2021-05-31 |
| 256273 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | graphics/wayland: fix CVE-2013-2003 | 2021-05-31 |
| 256236 | Ports & Packages | Individual Port(s) | pkg | Closed | Overcome By Eve | ports-mgmt/pkg: audit command didn't work properly with port epoch | 2021-06-24 |
| 256220 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | devel/py-yaml: update to 5.4.1 | 2021-06-02 |
| 255976 | Ports & Packages | Individual Port(s) | ygy | Closed | FIXED | net-mgmt/prometheus2: Update to 2.27.1 | 2021-06-03 |
| 255949 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | devel/websvn: update to 2.6.1 | 2022-02-26 |
| 255937 | Ports & Packages | Individual Port(s) | fluffy | Closed | FIXED | databases/mysql80-server: Update to 8.0.25 (Fixes security vulnerability) | 2021-05-24 |
| 255818 | Ports & Packages | Individual Port(s) | thierry | Closed | FIXED | graphics/ImageMagick6: Upgrade to 6.9.12-12 | 2021-07-20 |
| 255802 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | graphics/ImageMagick7: upgrade to 7.0.11-12 and fix some vulnerabilities | 2021-05-28 |
| 255748 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql57-server: Update to 5.7.34 (fixes security vulnerabilities??) | 2021-08-26 |
| 255528 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | www/webkit2-gtk3: update to 2.34.0 | 2022-07-09 |
| 255492 | Ports & Packages | Individual Port(s) | kbowling | Closed | FIXED | irc/ircII: Update to 20210314 (fixes CVE-2021-29376) | 2021-06-15 |
| 255455 | Ports & Packages | Individual Port(s) | nc | Closed | FIXED | mail/sympa: security upgrade to 6.2.62 | 2021-04-28 |
| 255417 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | www/drupal7: Update to 7.80 (fixes security vulnerability) | 2021-06-06 |
| 255369 | Ports & Packages | Individual Port(s) | portmgr | Closed | Not A Bug | graphics/jpeg-turbo: CVE-2021-20205 | 2021-04-25 |
| 255368 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | devel/binutils: Backport patch fixing CVE-2021-3487 | 2021-08-18 |
| 255361 | Ports & Packages | Individual Port(s) | sunpoet | Closed | Overcome By Eve | graphics/py-pillow: Update to 8.2.0 (fixes security vulnerabilities) | 2024-04-08 |
| 255292 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | irc/ircII: Update to 20210314 (CVE-2021-29376: irc/scrollz, irc/bitchx also affected) | 2022-12-01 |
| 255102 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net/libzmq4: Update to 4.3.4 (Fixes security vulnerabilities) | 2021-05-26 |
| 254930 | Ports & Packages | Individual Port(s) | adamw | Closed | FIXED | www/gitea: Update to 1.13.7 (fixes security vulnerabilities) | 2021-04-10 |
| 254783 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python39: Update to 3.9.4 | 2021-04-20 |
| 254780 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | security/vuxml: Document information disclosure vulnerability in python. | 2021-04-13 |
| 254773 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | ftp/curl: Update to 7.76.1 | 2021-04-28 |
| 254551 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | security/openssl: Update to 1.1.1k (Security Update - High) | 2021-03-26 |
| 254526 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | [PATCH] mail/spamassassin Update to 3.4.5 fixing CVE-2020-1946 | 2021-04-14 |
| 254355 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | security/nettle: Update to 3.7.2 (fixes security vulnerabilities) | 2021-03-30 |
| 254045 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node: Update to 15.10.0 | 2021-03-10 |
| 254044 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node14: Update to 14.16.0 | 2021-03-09 |
| 254043 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node12: Update to 12.21.0 | 2021-03-09 |
| 254042 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node10: Update to 10.24.0 | 2021-03-09 |
| 254007 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | mail/dovecot: Update to 2.3.14 | 2021-07-03 |
| 253415 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | graphics/opencv: add HARDENING and LTO options | 2021-02-11 |
| 252681 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node: Update to v15.5.1 | 2021-01-14 |
| 252639 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | databases/mantis: update to 2.24.4 | 2021-03-10 |
| 252583 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | security/sudo: Update to 1.9.5 | 2021-01-13 |
| 252564 | Ports & Packages | Individual Port(s) | kevans | Closed | FIXED | devel/nexus2-oss: update to 2.14.20-02 | 2021-09-29 |
| 252472 | Ports & Packages | Individual Port(s) | ler | Open | --- | security/vuxml document vulnerability in mail/dovecot lower than 2.3.13 (CVE-2020-24386) | 2023-04-10 |
| 252415 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | mail/dovecot: Update to 2.3.13 (security) | 2021-01-06 |
| 252291 | Ports & Packages | Individual Port(s) | jrm | Closed | FIXED | irc/inspircd: Update to 3.8.1 (fixes security vulnerability) | 2021-01-01 |
| 252262 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | security/tpm2-tss: Update to 3.0.3 | 2021-03-04 |
| 251768 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.24.0 | 2020-12-13 |
| 251744 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/glpi: Update to 9.5.3 | 2020-12-11 |
| 251695 | Ports & Packages | Individual Port(s) | mat | Closed | Overcome By Eve | sysutils/tmux: Update quarterly to 3.1c | 2021-01-04 |
| 251577 | Ports & Packages | Individual Port(s) | adamw | Closed | FIXED | www/gitea: Update to 1.13.0 (fixes security vulnerabilities) | 2020-12-05 |
| 251385 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | devel/binutils: Update to 2.37 | 2021-08-21 |
| 251277 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | mail/mutt: Update to 2.0.2 | 2020-11-23 |
| 251212 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/typo3-10: Update to 10.4.10 | 2021-05-14 |
| 251013 | Ports & Packages | Individual Port(s) | rhurlin | Closed | FIXED | sysutils/py-salt: Update to 3002.1 (includes security fix) | 2020-11-19 |
| 250971 | Ports & Packages | Individual Port(s) | kde | Closed | FIXED | textproc/raptor2 heap overflow | 2020-11-09 |
| 250616 | Ports & Packages | Individual Port(s) | portmgr | Closed | FIXED | graphics/jpeg: update or remove | 2020-10-26 |
| 250425 | Ports & Packages | Individual Port(s) | jhale | Closed | FIXED | games/chocolate-doom: update to 3.0.1 | 2021-01-22 |
| 250318 | Ports & Packages | Individual Port(s) | dch | Closed | FIXED | dns/powerdns-recursor: Update to 4.3.5 | 2020-11-08 |
| 250286 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb103-server: Update to 10.3.25 | 2020-10-24 |
| 250190 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | graphics/jpeg-turbo: Update to 2.0.5 | 2020-11-16 |
| 250105 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | graphics/libexif: Update to 0.6.22 | 2020-10-07 |
| 249948 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-im/py-matrix-synapse: Security update to 1.21.2 | 2020-10-17 |
| 249473 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/tt-rss: Update to g20200919 (Fixes several security vulnerabilities) | 2020-09-30 |
| 249445 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | sysutils/accountsservice: Update to 0.6.55 | 2022-12-16 |
| 249373 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | DUPLICATE | net-im/py-matrix-synapse: Update to 1.19.2 (security) | 2020-09-16 |
| 249312 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | security/modsecurity3: patch for cve 2020-15598 | 2022-08-08 |
| 249256 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8 (8.8.7 in ports) please update to 8.8.8 (security fix) or 8.8.9 (bug fix) | 2020-11-25 |
| 249187 | Ports & Packages | Individual Port(s) | fluffy | Closed | FIXED | lang/python35: Update to 3.5.10 | 2020-09-25 |
| 248780 | Ports & Packages | Individual Port(s) | zeising | Closed | FIXED | dns/adns: Update to 1.6.0 | 2020-08-20 |
| 248751 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | security/vuxml: CVE-2019-20907, CVE-2020-14422: Python VuXML updates | 2020-08-19 |
| 248673 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | net/ceph14: Update to 14.2.11 | 2020-08-30 |
| 248640 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | mail/dovecot: Update to 2.3.11.3 | 2020-08-15 |
| 248580 | Ports & Packages | Individual Port(s) | 0mp | Closed | FIXED | print/ghostscript9-agpl-base: Fix SAFER Sandbox Breakout vulnerability (CVE-2020-15900) | 2021-01-20 |
| 248569 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php72: Update to 7.2.33 | 2020-08-19 |
| 248568 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php73: Update to 7.3.21 | 2020-08-19 |
| 248567 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php74: Update to 7.4.9 | 2020-08-19 |
| 248410 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: fix CVE-2020-14347 (release 1.20.9 soon) | 2020-08-01 |
| 248268 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | audio/libsndfile: Update to master branch and use cmake | 2020-07-28 |
| 248162 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-mgmt/snmptt: Update to 1.4.2 | 2020-08-15 |
| 248139 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | net-mgmt/cacti: Update to 1.2.13 | 2020-07-28 |
| 247987 | Ports & Packages | Individual Port(s) | madpilot | Closed | FIXED | security/vuxml: emulators/virtualbox-ose 23 CVEs | 2020-07-19 |
| 247795 | Ports & Packages | Individual Port(s) | rodrigo | Closed | FIXED | net/rsync: Update to 3.2.3 | 2020-08-20 |
| 247735 | Ports & Packages | Individual Port(s) | danilo | Open | --- | envoy/istio: Multiple vulnerabilites | 2020-07-05 |
| 247720 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.15.2 (security) | 2020-07-05 |
| 247713 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | www/trafficserver: update to fix CVE-2020-9494, add vuxml entry | 2020-08-10 |
| 247708 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | [exp-run] graphics/exiv2: Update to 0.27.3 (Bug and security fixes) | 2020-07-09 |
| 247555 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | security/vuxml tomcat vulnerability CVE-2020-11996 | 2020-07-23 |
| 247554 | Ports & Packages | Individual Port(s) | mm | Closed | FIXED | ftp/proftpd: Update to 1.3.6d | 2020-08-17 |
| 247406 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | deskutils/anydesk: Update to 5.5.5 | 2020-11-02 |
| 247400 | Ports & Packages | Individual Port(s) | zeising | Closed | FIXED | mail/mutt: Update to 1.14.5 | 2020-07-15 |
| 247394 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | databases/mongodb36: Update to 3.6.18 | 2020-06-29 |
| 247392 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/vuxml mongodb issue | 2020-06-29 |
| 247149 | Ports & Packages | Individual Port(s) | secteam | Closed | FIXED | Multiple sqlite3 vulnerabilities (ports and base) | 2020-08-06 |
| 247089 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | devel/json-c: update quarterly to 0.14 | 2020-11-20 |
| 246984 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | lang/python* Fix CVE-2020-8492, CVE-2019-18348 | 2020-06-22 |
| 246892 | Ports & Packages | Individual Port(s) | adamw | Closed | FIXED | www/gitea: Update to 1.11.6 (fixes security vulnerabilities) | 2020-05-31 |
| 246808 | Ports & Packages | Individual Port(s) | koobs | Closed | DUPLICATE | lang/python36: Update to 3.6.10 (and backport security fixes) | 2020-06-15 |
| 246803 | Ports & Packages | Individual Port(s) | tobik | Closed | Overcome By Eve | graphics/sane-backends: update to 1.0.30, security fixes | 2020-05-30 |
| 246738 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | lang/python36: Update to 3.6.11 | 2020-06-13 |
| 246582 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-mgmt/zabbix3-*: Update to 3.0.31 | 2020-05-22 |
| 246569 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | dns/unbound: Update to 1.10.1 | 2020-05-22 |
| 246482 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php74: Update to 7.4.6 | 2020-05-16 |
| 246481 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php73: Update to 7.3.18 | 2020-05-18 |
| 246480 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php72: Update to 7.2.31 | 2020-05-15 |
| 246239 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | security/openconnect: Update to 8.10 | 2020-08-24 |
| 246164 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | security/vuxml: cacti CVE-2020-7106 | 2020-05-04 |
| 246161 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-mgmt/cacti: Update to 1.2.12 | 2020-05-05 |
| 246145 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | devel/json-c: Update to 0.14 | 2020-05-21 |
| 246061 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | sysutils/py-salt: Update to 2019.2.4 (CVE fix) | 2020-05-16 |
| 245968 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Not Accepted | www/firefox 75.0_2,1 & www/chromium 81.0.4044.113 - Servere Security Issue | 2021-03-29 |
| 245943 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | www/py-bleach: Update to 3.1.5, Fix security issue | 2020-05-14 |
| 245776 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python27: Update to 2.7.18 (Fixes vulnerability) | 2020-05-15 |
| 245672 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | mail/sympa: update to 6.2.54 - security fix | 2020-05-27 |
| 245517 | Ports & Packages | Individual Port(s) | kevans | Closed | FIXED | net/freerdp: Update to 2.1.1 | 2020-06-17 |
| 245475 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba41, net/samba411: Update to latest versions (security releases) | 2020-09-23 |
| 245468 | Ports & Packages | Individual Port(s) | woodsb02 | Closed | FIXED | net-mgmt/cacti: Update to 1.2.11 | 2020-05-23 |
| 245284 | Ports & Packages | Individual Port(s) | apache | Closed | FIXED | www/apache24: Security Update to 2.4.43 | 2020-04-02 |
| 245282 | Ports & Packages | Individual Port(s) | demon | Closed | FIXED | net/haproxy: Security Update (all supported Versions) CVE-2020-11100 | 2020-05-02 |
| 245252 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | devel/py-twisted: Update to 20.3.0 (includes security updates) | 2020-04-27 |
| 245205 | Ports & Packages | Individual Port(s) | woodsb02 | Closed | FIXED | net-mgmt/cacti: Add VuXML entries for multiple vulnerabilities in cacti < 1.2.10 | 2020-04-04 |
| 245153 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/piwigo: Update to 2.10.2 (Bugfix and security release) | 2020-05-23 |
| 245096 | Ports & Packages | Individual Port(s) | fjoe | Closed | FIXED | databases/phpmyadmin: 4.9.5 is not a vulnerable version, but still marked vulnerable (matches < 5.0.2 entries) | 2020-05-05 |
| 245023 | Ports & Packages | Individual Port(s) | ruby | Closed | FIXED | devel/rubygem-json: Update to 2.3.0 (CVE-2020-10663) | 2020-04-03 |
| 245019 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: Update to 80.0.3987.149 | 2020-03-25 |
| 245016 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | www/nextcloud: Update to 18.0.3 | 2020-05-23 |
| 244992 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: Update to 8.8.4 (Fixes security vulnerability: SA-CORE-2020-001) | 2024-01-27 |
| 244987 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/tomcat9: MFH port r526773 (Security update: CVE-2020-1938) | 2020-04-02 |
| 244985 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/postgresql*-server | 2020-03-29 |
| 244971 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/glpi: Update to 9.4.5 | 2020-06-10 |
| 244876 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | www/wt: Update to v4.2.2 | 2020-03-20 |
| 244875 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | www/wt3: Update to v3.5.2 | 2020-03-20 |
| 244723 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node12: Update to to 12.16.1 (fixes security vulnerabilities) | 2020-04-12 |
| 244625 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: [patch] Please update to 80.x | 2020-03-11 |
| 244429 | Ports & Packages | Individual Port(s) | 0mp | Closed | FIXED | audio/timidity++: update 2.14.0 -> 2.15.0, fix CVE-2017-11546 | 2020-03-02 |
| 244365 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | sysutils/consul: Consul 1.7.1 has been released. | 2020-03-27 |
| 244279 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.12.3 | 2020-04-22 |
| 244212 | Ports & Packages | Individual Port(s) | madpilot | Closed | FIXED | emulators/virtualbox-ose: Update to 5.2.44 | 2020-07-19 |
| 244136 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/mattermost-{webapp,server}: Update to 5.21.0 | 2020-07-23 |
| 244117 | Ports & Packages | Individual Port(s) | diizzy | Closed | FIXED | irc/unreal: Update to 5.0.3.1 | 2022-06-12 |
| 244060 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | graphics/libexif: Fix security vulnerabilities | 2020-02-15 |
| 243952 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/nginx: Versions < 1.17.7, with certain error_page configurations, allows HTTP request smuggling (CVE-2019-20372) | 2020-02-21 |
| 243702 | Ports & Packages | Individual Port(s) | secteam | Closed | FIXED | security/vuxml: Add January FreeBSD Security Advisories SA-20:01.libfetch, SA-20:02.ipsec and SA-20:03.thrmisc | 2020-02-14 |
| 243686 | Ports & Packages | Individual Port(s) | fluffy | Closed | FIXED | mail/opensmtpd: Update to v6.6.2p1 (Fixes critical LPE / RCE vulnerability) | 2020-01-31 |
| 243660 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | security/vuxml: MariaDB incorrectly added to MySQL CVE's | 2020-02-02 |
| 243566 | Ports & Packages | Individual Port(s) | multimedia | Closed | FIXED | audio/taglib: Update to 1.12b1 (fixes CVE-2018-11439) | 2020-05-02 |
| 243518 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | net-p2p/rslsync: Update to 2.6.4 | 2020-05-23 |
| 243437 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/gitea: Update to 1.10.3 (fixes security vulnerabilities) | 2020-01-28 |
| 243388 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/npm: Update to 6.13.4 - < 6.13.4 vulnerable to multiple vulnerabilities incl. arbitrary file write | 2020-10-02 |
| 243336 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | graphics/py-pillow: Update to 6.2.2 | 2020-01-28 |
| 243067 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | x11/libxdg-basedir: update to 1.2.2 | 2021-04-13 |
| 242929 | Ports & Packages | Individual Port(s) | amdmi3 | Closed | FIXED | security/u2f-devd: new entries for Trezor keys | 2021-03-17 |
| 242834 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | net-mgmt/cacti: Update to 1.2.8 | 2020-01-06 |
| 242708 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-9: Update to 9.5.12 | 2019-12-26 |
| 242707 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-8: Update to 8.7.30 | 2019-12-26 |
| 242702 | Ports & Packages | Individual Port(s) | decke | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.7.1 (fixes security vulnerabilities) | 2020-01-11 |
| 242676 | Base System | kern | Andrew | In Progress | --- | Mitigating speculative execution beyond ERET on aarch64 | 2019-12-20 |
| 242415 | Base System | kern | glebius | Closed | FIXED | Running any command that interacts with network connections as an underprivileged user panics the OS | 2019-12-15 |
| 241981 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | www/gitea: Update to 1.10.0 | 2019-11-23 |
| 241976 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/squid: Update to 4.9 | 2019-11-19 |
| 241870 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql56-server: Update to 5.6.46 (< 5.6.46 is vulnerable to many CVE's) | 2020-01-20 |
| 241734 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | sysutils/ansible: Update to 2.9.6 | 2020-04-28 |
| 241693 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: Update to 8.7.8 | 2019-11-28 |
| 241586 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python35: Update to 3.5.9 (python.org shipped broken 3.5.8, tread carefully) | 2020-03-15 |
| 241516 | Ports & Packages | Ports Framework | portmgr | Open | --- | Mk/bsd.port.mk: Fix certificate verification for 'make makesum' | 2024-02-12 |
| 241460 | Ports & Packages | Individual Port(s) | egypcio | Closed | FIXED | [PATCH] net/pacemaker2: update 2.0.0-rc4 to 2.0.3 | 2020-02-04 |
| 241456 | Ports & Packages | Individual Port(s) | egypcio | Closed | FIXED | [PATCH] net/pacemaker1: update 1.1.19 to 1.1.22 | 2020-02-04 |
| 241424 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | sysutils/file: Update to 5.37, Fix CVE-2019-18218 | 2019-11-03 |
| 241422 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Feedback Timeou | textproc/unoconv: Update to 0.8.2, Fix CVE-2019-17400 | 2020-07-23 |
| 241420 | Ports & Packages | Individual Port(s) | gnome | Closed | Overcome By Eve | textproc/libxslt: Fix CVE-2019-18197 | 2020-01-26 |
| 241362 | Ports & Packages | Individual Port(s) | mat | Closed | Not Accepted | dns/bind911: Merge ports r514624 (9.11.12) to 2019Q4 (Fixes security vulnerability) | 2019-10-20 |
| 241308 | Ports & Packages | Individual Port(s) | dmgk | Closed | FIXED | devel/nexus2-oss: Update to 2.14.15-01 | 2019-11-09 |
| 241268 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | graphics/py-pillow: Update to 6.2.0 | 2019-10-20 |
| 241154 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | [PATCH] www/mod_perl2: update to 2.0.11, fix CVE-2011-2767 | 2019-10-25 |
| 241066 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | graphics/xpdf3: Backport fix for CVE-2019-16927 and CVE-2019-9877 | 2019-10-19 |
| 241065 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | net-mgmt/prometheus2: Update to 2.13.0 | 2019-10-08 |
| 241033 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | dns/unbound:Update to 1.9.4 (fixes CVE-2019-16866) | 2019-10-20 |
| 240999 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | net-mgmt/cacti: Update to 1.2.7 | 2019-10-05 |
| 240985 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby26: Update to 2.6.5 | 2019-10-02 |
| 240984 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby25: Update to 2.5.7 | 2019-10-02 |
| 240983 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby24: Update to 2.4.9 | 2019-10-02 |
| 240844 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | print/ghostscript9-agpl-base: Update to 9.50 (Fixes security vulnerabilities) | 2020-01-06 |
| 240505 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | mail/opendmarc: fix multiple addresses in From vulnerability | 2021-12-30 |
| 240399 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net/kea: Update to 1.6.0 | 2019-09-20 |
| 240370 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node10: MFH requested but not done | 2019-09-18 |
| 240368 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | devel/oniguruma: Update to 6.9.3 (Fixes CVE-2019-13224) | 2019-09-07 |
| 240362 | Ports & Packages | Individual Port(s) | vsevolod | Closed | FIXED | mail/exim: Update to 4.92.2 (Fixes CVE-2019-15846) | 2019-09-06 |
| 240324 | Ports & Packages | Individual Port(s) | timur | Closed | Works As Intend | security/vuxml: 145a3e17-cea2-11e9-81e2-005056a311d1 (net/samba410) should exclude versions before 4.9.0 | 2019-09-04 |
| 240322 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Add August FreeBSD Security Advisories | 2023-07-13 |
| 240196 | Ports & Packages | Individual Port(s) | tobik | Closed | FIXED | www/webkit2-gtk3: Update to 2.24.4 (fixes many security vulnerabilities) | 2019-09-12 |
| 240174 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | mail/dovecot: Update to 2.3.7.2 (Fixes CVE-2019-11500) | 2019-08-29 |
| 240132 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | www/mattermost-{webapp,server}: Update to 5.15.0 | 2019-10-15 |
| 240126 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | databases/mongodb36: Update to 3.6.14 (bugfix & security release) | 2019-10-11 |
| 240046 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | www/gitea: Update to 1.9.2 (fixes security vulnerabilities) | 2019-08-25 |
| 239994 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | www/cliqz: Update to 1.28.2 | 2019-09-03 |
| 239981 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb104-{server,client}: Update to 10.4.7 (with 5 CVEs fixed) | 2019-11-29 |
| 239978 | Base System | bin | markj | Closed | FIXED | Integer Overflow: ping(8) option "-h", bypass the invalid sweepincr packet size check | 2020-12-01 |
| 239977 | Base System | bin | markj | Closed | FIXED | Integer Overflow: ping(8) option "-G" and "-g", bypass the invalid sweepmax and sweepmin packet size check | 2020-12-01 |
| 239975 | Base System | bin | bugs | New | --- | ping(8) crashes with SIGSEGV - Out-of-Bounds Read of size 2 (global-buffer-overflow) | 2020-11-04 |
| 239974 | Base System | bin | markj | Closed | FIXED | ping(8) crashes with SIGSEGV - Out-of-Bounds Write of size 1 (global-buffer-overflow) | 2020-12-01 |
| 239964 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | dns/nsd: Update to 4.2.2 | 2019-08-19 |
| 239897 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/jetty9: Update to 9.4.20 | 2020-04-03 |
| 239839 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | [PATCH] net-mgmt/prometheus2: Update to 2.11.2 | 2019-08-14 |
| 239717 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | databases/mongodb34: Update to 3.4.22 (bugfix & security release) | 2019-10-11 |
| 239684 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/clamav: Update to 0.101.4 (security/bugfix release) | 2019-08-24 |
| 239653 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb103-server upgrade to 10.3.17 | 2019-09-03 |
| 239599 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | devel/libevent: update to 2.1.11 | 2019-08-27 |
| 239571 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql55-server databases/mysql56-server databases/mysql57-server databases/mysql80-server - security fixes | 2019-09-20 |
| 239562 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | www/gitea: Update to 1.9.0 | 2019-08-01 |
| 239441 | Ports & Packages | Individual Port(s) | vsevolod | Closed | FIXED | mail/exim: Update to 4.92.1 which fixes CVE-2019-13917 | 2019-07-26 |
| 239272 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql80-server: Update to 8.0.17 (Fixes multiple CVE) | 2019-12-05 |
| 239271 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.27 (Fixes multiple CVE) | 2019-12-05 |
| 239024 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | sysutils/monit: Update to 5.26.0 | 2019-07-15 |
| 239013 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.2.1 | 2019-07-29 |
| 239003 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | www/webkit2-gtk3: Update to 2.24.3 (fixes many code execution vulnerabilities) | 2019-08-29 |
| 238952 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python36: Update to 3.6.9 | 2019-07-23 |
| 238911 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/py-django22: Update to 2.2.3 (bugfix & security release) | 2019-07-07 |
| 238910 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/py-django21: Update to 2.1.10 (Fixes security vulnerability) | 2019-07-07 |
| 238892 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | irc/irssi: Update to 1.2.1 | 2019-07-02 |
| 238864 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | textproc/expat2: Update to 2.2.7 | 2019-09-25 |
| 238863 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/typo3-9: Update to 9.5.8 | 2019-06-29 |
| 238862 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/typo3-8: Update to 8.7.27 | 2019-06-29 |
| 238854 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | archivers/bzip2: Update to 1.0.7 (Fixes security vulnerabilities) | 2019-06-30 |
| 238843 | Base System | bin | delphij | Closed | FIXED | bzip2: Merge recent upstream bugfixes incl. 3 security vulnerabilities | 2019-08-19 |
| 238798 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: update to 8.6.16 (fixes sa-core-2019-007) | 2019-07-21 |
| 238787 | Base System | kern | jtl | Closed | FIXED | IPv6 remote DoS (panic) vulnerability via m_pulldown() bug | 2019-11-13 |
| 238715 | Ports & Packages | Individual Port(s) | tobik | Closed | DUPLICATE | textproc/expat2: update to 2.2.7 | 2019-07-03 |
| 238705 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns: Update to 4.1.10 (Fixes security vulnerabilities) | 2019-07-01 |
| 238642 | Base System | kern | vmaffione | Closed | FIXED | netmap: fix kernel pointer printing in netmap_generic.c | 2019-07-16 |
| 238641 | Base System | kern | vmaffione | Closed | FIXED | netmap: Remove pointer printing in netmap_mem2.c | 2019-09-07 |
| 238638 | Base System | kern | bugs | Open | --- | mfi: Remove unnecessary pointer printing in mfi.c | 2019-06-17 |
| 238635 | Ports & Packages | Individual Port(s) | hrs | Closed | Overcome By Eve | security/heimdal: Update to 7.7 (7.6 and 7.7 addresses two CVEs plus bugfixes) | 2020-07-04 |
| 238573 | Ports & Packages | Individual Port(s) | marcus | Closed | FIXED | net/netatalk3: Add VuXML entry for CVE-2018-1160 (fixed in 3.1.12) | 2019-06-16 |
| 238486 | Base System | kern | bugs | Open | --- | Possible buffer overflow bug in sc_allocate_keyboard() of sys/dev/syscons/syscons.c | 2023-07-31 |
| 238319 | Base System | kern | bugs | Open | --- | login: Extend and add features to session (struct) | 2019-06-04 |
| 238199 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | graphics/ImageMagick7: Update to 7.0.8-47 (Fixes many vulnerabilities) | 2019-05-30 |
| 238049 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | textproc/libxslt: Update to 1.1.33, fix CVE-2019-11068 | 2019-07-16 |
| 237938 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/drupal7: update to 7.67 | 2019-06-10 |
| 237922 | Base System | kern | kib | Closed | FIXED | Kernel stack disclosure in function freebsd32_swapcontext of sys/arm64/arm64/freebsd32_machdep.c | 2019-12-15 |
| 237501 | Ports & Packages | Individual Port(s) | jpaetzel | Closed | FIXED | devel/py-yaml: Update to 5.1 | 2020-01-13 |
| 237483 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: Update to 8.6.15 (fixes security vulnerabilities) | 2019-04-25 |
| 237399 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.26 (Fixes multiple CVE) | 2019-05-13 |
| 237398 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql56-server: Update to 5.6.44 (Fixes multiple CVE) | 2019-05-13 |
| 237322 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/influxdb: Update to 1.7.6 | 2019-06-06 |
| 237182 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | net/freeradius3: Update to 3.0.19 (Fixes several security vulnerabilities) | 2019-04-29 |
| 236818 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/clamav: Update to 0.101.2. | 2019-08-01 |
| 236767 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: Update to 8.6.13 (Fixes Cross Site Scripting vulnerability: SA-CORE-2019-004) | 2019-03-27 |
| 236634 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns: Update to 4.1.7 (Fixes security vulnerabilities) | 2019-03-19 |
| 236570 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | databases/percona57-{server,client} update to 5.7.26-29 (fixes several vulnerabilities) | 2019-12-10 |
| 236010 | Base System | misc | bugs | Closed | Not A Bug | rand(3) is a bad RNG, but lots of software uses it. Make it a shim around arcrandom(3) | 2022-06-05 |
| 235930 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | databases/percona56-{server,client}: Update to 5.6.43-84.3 (fixes several vulnerabilities) | 2019-08-22 |
| 235710 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | www/firefox: update to 65.0.1 | 2019-02-13 |
| 235574 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-client: Update to 10.1.38 | 2019-02-22 |
| 235573 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server: Update to 10.1.38 | 2019-02-08 |
| 235523 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | mail/dovecot: Update to 2.3.4.1 (CVE-2019-3814) | 2019-02-05 |
| 235375 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | [PATCH] net-mgmt/prometheus2: Update to 2.7.1 | 2019-02-01 |
| 235188 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/typo3-9: Update to 9.5.4 | 2019-02-03 |
| 235187 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/typo3-8: Update to 8.7.24 | 2019-02-03 |
| 235186 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | security/keybase: Needs PORTREVISON bump and rebuild (CVE-2019-6486) | 2019-01-28 |
| 235140 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/gitea: Update to 1.7.0 (Fixes security vulnerabilities) | 2019-01-27 |
| 235113 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns-recursor: Update to 4.1.9 (fixes CVE-2019-3806 and CVE-2019-3807) | 2019-01-28 |
| 235056 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | [new port] security/git-secret: tool for storing secret data in a git repo using gpg | 2019-01-19 |
| 234984 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql80-server: Update to 8.0.14 fixes multiple CVE | 2019-01-26 |
| 234983 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.25 fixes multiple CVE | 2019-01-21 |
| 234965 | Base System | bin | secteam | Closed | FIXED | scp client multiple vulnerabilities (openssh in base/ports affected: CVE-2018-20685 CVE-2019-6111 CVE-2019-6109,6110) | 2020-07-23 |
| 234938 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | security/botan2: Update to 2.9.0 (Fixes CVE-2018-20187) | 2019-01-27 |
| 234798 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | irc/irssi: Update to 1.1.2 | 2019-01-10 |
| 234670 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | net/uriparser: Update to 0.9.1 | 2019-01-26 |
| 234473 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | graphics/openjpeg: Fix CVE-2018-6616 | 2019-01-24 |
| 234255 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | www/gitea: Update to 1.6.2 (Fixes security vulnerability) | 2018-12-26 |
| 234191 | Ports & Packages | Individual Port(s) | leres | Closed | FIXED | security/bro: Update to 2.6.1 (Fixes Magellan vulnerability) | 2018-12-21 |
| 234113 | Base System | misc | cy | Closed | FIXED | Update SQlite to 3.26.0 | 2019-01-09 |
| 234112 | Services | Security Team | secteam | Closed | FIXED | SQLite: Remote code execution vulnerability (Magellan) | 2019-03-30 |
| 234103 | Ports & Packages | Individual Port(s) | enlightenment | Closed | FIXED | x11/terminology: Update to 1.3.1 (Fixes CVE-2018-20167: Incorrect escaping of crafted files results in code execution) | 2018-12-21 |
| 234088 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/py-gunicorn : Update to 19.9.0 | 2019-03-07 |
| 234013 | Ports & Packages | Individual Port(s) | doceng | Closed | FIXED | print/ghostscript9-agpl-base: Update to 9.26 (Fixes several security vulnerabilities) | 2018-12-23 |
| 234008 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-9: Update to 9.5.3 | 2018-12-15 |
| 234006 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-8: Update to 8.7.22 | 2018-12-15 |
| 233990 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: Update to 71.0.3578.98 | 2019-01-08 |
| 233953 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | databases/phpmyadmin: Update to 4.84 | 2018-12-12 |
| 233896 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | archivers/libmspack: Update to 0.9.1 (Fixes several security vulnerabilities) | 2020-07-24 |
| 233847 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php56: Update to 5.6.39 | 2018-12-10 |
| 233801 | Base System | bin | secteam | Closed | FIXED | FreeBSD 11.x vulnerability in OpenSSH | 2020-06-08 |
| 233749 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Overcome By Eve | net/samba47, net/samba48: Merge ports r486043 to 2018Q4 (Fixes several vulnerabilities) | 2019-01-02 |
| 233722 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | net/uriparser: Update to 0.9.0 | 2018-12-16 |
| 233712 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | databases/sqlite3: Update to 3.26.0 | 2019-01-02 |
| 233603 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns-recursor: Update to 4.1.8 (Fixes CVE-2018-16855) | 2018-12-09 |
| 233578 | Base System | bin | bugs | Open | --- | Unprivileged local user can prevent other users logging in by locking utx.active | 2019-05-19 |
| 233573 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | www/payara: Update to 5.183 | 2018-11-28 |
| 233478 | Base System | bin | bugs | New | --- | Authentication fails if password > 128 characters | 2018-11-28 |
| 233455 | Ports & Packages | Individual Port(s) | danfe | Closed | FIXED | devel/patch affected by multiple vulnerabilities | 2020-01-26 |
| 233420 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | mail/phpmailer: Update to 5.2.27 (Fixes CVE-2018-19296) | 2018-11-25 |
| 233419 | Ports & Packages | Individual Port(s) | thierry | Closed | FIXED | www/tt-rss: Update to bc42dfb790 g20181122 due to CVE-2018-19296 | 2018-11-23 |
| 233146 | Ports & Packages | Individual Port(s) | portmgr | Closed | FIXED | graphics/tiff: update to 4.10.0 | 2018-11-17 |
| 233139 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns: Update to 4.1.5 (Fixes security vulnerabilities) | 2018-11-20 |
| 232796 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 60.3.0 | 2018-10-30 |
| 232699 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Update to MySQL-Server 5.5.62 to fix multiple CVE | 2018-10-26 |
| 232687 | Ports & Packages | Individual Port(s) | apache | Closed | FIXED | www/apache24: Update to 2.4.37 (Security and Bugfix Release) | 2018-10-28 |
| 232685 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.24 fixes multiple CVE | 2018-11-16 |
| 232495 | Base System | kern | oshogbo | Closed | FIXED | [patch] ppoll(2) is not permitted in capability mode | 2019-01-30 |
| 232435 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby24: Update to 2.4.5 (Fixes multiple vulnerabilities: CVE-2018-1639[56]) | 2018-10-24 |
| 232431 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby25: Update to 2.5.3 (Fixes multiple vulnerabilities: CVE-2018-1639[56]) | 2018-10-24 |
| 232344 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/libssh: Update to 0.8.4 (Fixes security vulnerability: CVE-2018-10933) | 2018-10-19 |
| 232123 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/gitea: Update to 1.5.1 (Fixes security vulnerability) | 2018-10-16 |
| 231718 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/apache24: Update to 2.4.35 | 2018-09-27 |
| 231148 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | print/ghostscript9-agpl-base: Update to 9.24 | 2018-09-21 |
| 231054 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | security/vuxml: vuln.xml fix for wrong entry for wpa_supplicant (bad version range) | 2018-09-07 |
| 230932 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | databases/percona55-server: and -client update to 5.5.61-38.13 | 2018-09-09 |
| 230753 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | comms/minicom: Change minicom's permissions for security reasons | 2020-02-05 |
| 230666 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/botan2: Update to 2.7.0 | 2018-08-22 |
| 230595 | Ports & Packages | Individual Port(s) | dinoex | Closed | FIXED | www/lighttpd: Update to 1.4.50 | 2018-09-20 |
| 230575 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | net/libzmq4: Update to 4.3.1 | 2019-07-01 |
| 230512 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: Update to 1.5.0 (Fixes security vulnerabilities) | 2018-08-12 |
| 230409 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Update to 5.5.61 fixes multiple CVE | 2019-02-15 |
| 230361 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | devel/cgit: Update to 1.2.1 (Fixes CVE-2018-14912) | 2018-08-12 |
| 230151 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/py-asyncssh: Update to 1.14.0 (Fixes security vulnerability: CVE-2018-7749) | 2018-12-09 |
| 229861 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql80-server: Update to 8.0.12 fixes multiple CVE | 2018-08-14 |
| 229860 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | databases/mysql57-server: Update to 5.7.23 (Fixes multiple CVE's) | 2018-08-14 |
| 229846 | Ports & Packages | Individual Port(s) | decke | Closed | FIXED | net-im/py-matrix-synapse: Update to 0.32.2 | 2018-08-09 |
| 229753 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | ftp/curl: Update to 7.61.0 (Fixes CVE-2018-0500) | 2018-07-27 |
| 229485 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | dns/knot-resolver: Update to 2.4.1 (security fix - CVE-2018-10920) | 2018-08-15 |
| 229452 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 52.9.0 | 2018-07-09 |
| 229322 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | net/py-urllib3: Update to 1.25.6 | 2020-01-16 |
| 228239 | Ports & Packages | Individual Port(s) | cs | Closed | FIXED | archivers/p7zip: Current version is vulnerable (CVE-2018-10115) | 2021-12-11 |
| 228148 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server: Update to 10.1.33 | 2018-05-13 |
| 228072 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | net-im/py-matrix-synapse update to 0.28.1 to guarantee compatibility to server already updated and it's security relevant | 2018-06-06 |
| 228054 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/rubygem-passenger is missing passenger_native_support.so | 2024-04-10 |
| 228038 | Ports & Packages | Individual Port(s) | python | Closed | DUPLICATE | lang/python27: Update to 2.7.15 (bugfix & likely security update) | 2018-05-07 |
| 228028 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python27: Update to 2.7.15 (bugfix & security update) | 2018-05-26 |
| 227767 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Update to MySQL-Server 5.5.60 to fix multiple CVE | 2018-04-26 |
| 227726 | Ports & Packages | Individual Port(s) | multimedia | Closed | FIXED | multimedia/ffmpeg: update to 4.0 | 2018-11-07 |
| 227642 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | [PATCH] mail/sympa: security update to 2.6.32 | 2018-05-23 |
| 227621 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.22 fixes multiple CVE | 2018-05-06 |
| 227476 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Update to 1.3.6 (a security update for CVE-2018-9846 | 2018-04-14 |
| 227246 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php56: Update to 5.6.35, Fixes security vulnerabilities | 2018-04-26 |
| 226906 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | security/py-cryptography: Update to 2.3 (Fixes build with libressl* 2.7) | 2018-08-22 |
| 226892 | Ports & Packages | Individual Port(s) | gecko | Closed | FIXED | mail/thunderbird: update to 52.7.0 | 2018-03-27 |
| 226851 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | www/py-bleach: Update to 2.1.3 | 2018-07-27 |
| 226491 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | [PATCH] devel/zziplib: update to 0.13.69 which fixes multiple CVEs | 2018-07-09 |
| 226437 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | net-mgmt/netmagis-common: update to 2.3.4 | 2018-03-11 |
| 226355 | Ports & Packages | Individual Port(s) | marcus | Closed | FIXED | net/wireshark: update to 2.4.5 | 2018-03-14 |
| 226339 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/dropbear: update to 2018.76 | 2018-07-29 |
| 226271 | Ports & Packages | Individual Port(s) | multimedia | Closed | FIXED | audio/libsndfile: Fix for multiple vulnerabilities | 2018-03-04 |
| 226184 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: increase requests quota for Google API Key | 2018-11-10 |
| 225805 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in OpenJPEG | 2018-07-27 |
| 225804 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document vulnerability in uWSGI (CVE-2018-6758) | 2018-02-13 |
| 225797 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document vulnerability in LibreOffice (CVE-2018-6871 / CVE-2018-1055) | 2018-02-24 |
| 225783 | Ports & Packages | Individual Port(s) | cpm | Closed | FIXED | security/vuxml: Document vulnerability in mpv (CVE-2018-6360) | 2018-02-09 |
| 225767 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | security/vuxml: Document vulnerability in Mailman (CVE-2018-5950) | 2018-02-08 |
| 225706 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/uwsgi: Fix potential stack overflow in uwsgi_expand_path() | 2018-02-13 |
| 225636 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in GIMP | 2018-07-27 |
| 225611 | Ports & Packages | Individual Port(s) | nobutaka | Closed | FIXED | www/w3m Multiple vulnerabilities affecting w3m | 2018-02-04 |
| 225585 | Ports & Packages | Individual Port(s) | adamw | Closed | FIXED | mail/dovecot: FOLLOW UP: Fix memory leak in auth_client_request_abort() | 2018-02-01 |
| 225451 | Base System | bin | bugs | New | --- | OpenSSH only looks for .k5login in user directory | 2022-09-09 |
| 225446 | Ports & Packages | Individual Port(s) | zeising | Closed | FIXED | mail/dovecot: Fix memory leak in auth_client_request_abort() (CVE-2017-15132) | 2018-01-31 |
| 225241 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Update to 5.5.59 fixes multiple CVE | 2018-01-31 |
| 225240 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql56-server: Update to 5.6.39 fixes multiple CVE | 2018-01-17 |
| 225007 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | www/awstats: Update to 7.7 (security) | 2018-01-11 |
| 224960 | Ports & Packages | Individual Port(s) | yuri | Closed | FIXED | graphics/optipng: update to 0.7.7 | 2018-02-12 |
| 224729 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | www/otrs: Update to 5.0.26 (security) | 2018-01-02 |
| 224335 | Ports & Packages | Individual Port(s) | yuri | Closed | FIXED | security/tor: CVE-2017-8819 needs to be fixed in quarterly branch too | 2017-12-28 |
| 224221 | Ports & Packages | Individual Port(s) | marcus | Closed | Overcome By Eve | net/wireshark: update to 2.4.3 | 2017-12-14 |
| 224191 | Ports & Packages | Individual Port(s) | hrs | Closed | FIXED | security/heimdal: update to 7.5.0 (security update, fixes remote DoS) | 2018-02-28 |
| 223962 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in ftp/curl | 2017-12-05 |
| 223756 | Ports & Packages | Individual Port(s) | pizzamig | Closed | FIXED | net-mgmt/cacti: Update to 1.1.28 [security] | 2017-11-27 |
| 223733 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | www/webkit2-gtk3: update to 2.18.3 (SECURITY), enable Wayland support | 2018-04-10 |
| 223629 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in GraphicsMagick 1.3.26 | 2018-06-20 |
| 223626 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in FFmpeg | 2018-07-27 |
| 223583 | Ports & Packages | Individual Port(s) | girgen | Closed | FIXED | databases/postgresql{92,93,94,95,96,10}-server: Please merge to 2017Q4, (security) update from r453847 | 2017-11-10 |
| 223577 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | net/wireshark: update to 2.4.2 | 2017-11-27 |
| 223557 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | security/vuxml: Document vulnerability in roundcube (CVE-2017-16651) | 2017-11-11 |
| 223547 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Update to 1.3.3, fixes security vulnerability (CVE-2017-16651) | 2017-11-11 |
| 223482 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server - invalid vuxml entry | 2017-11-07 |
| 223319 | Ports & Packages | Individual Port(s) | ale | Closed | Overcome By Eve | lang/php56: Update to 5.6.32 (Fixes security vulnerabilities) | 2018-02-26 |
| 223107 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | net-mgmt/cacti: Update to 1.1.26 [security] | 2017-10-19 |
| 223051 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document vulnerability in wpa_supplicant and hostapd | 2017-10-16 |
| 222957 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple vulnerabilities in FFmpeg < 3.3.4 | 2017-10-13 |
| 222952 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document vulnerability in nss (CVE-2017-7805) | 2017-10-12 |
| 222739 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | dns/dnsmasq: Security update to 2.78 | 2017-10-02 |
| 222683 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Please use correct ISO date format | 2017-09-29 |
| 222632 | Base System | kern | testing | Open | --- | connect(2) not available in capability mode | 2021-12-20 |
| 222622 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | graphics/ImageMagick7: Please MFH r450491 (contains a security vulnerability fix) | 2017-09-27 |
| 222621 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security Vulnerability in ImageMagick (CVE-2017-14741) | 2017-09-27 |
| 222398 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python27: Update to 2.7.14 | 2017-10-14 |
| 221747 | Ports & Packages | Individual Port(s) | lev | Closed | Overcome By Eve | devel/subversion: 1.9.7 should be MFH to quarterly | 2017-10-17 |
| 221539 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | sysutils/py-supervisor: Update to 3.3.3, Fixes security vulnerability | 2017-09-19 |
| 221417 | Base System | bin | bugs | Closed | FIXED | pw usermod silently ignores -G "" | 2017-09-08 |
| 221362 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | ftp/curl: Security update to 7.55.0 | 2017-08-10 |
| 221281 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Feedback Timeou | sysutils/ezjail should verify downloaded tarballs before use | 2019-12-20 |
| 221201 | Base System | kern | kp | Closed | FIXED | [pf] Prevent possible endless loop when searching for an unused nat port | 2018-02-26 |
| 221128 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: Needs to be updated to 5.5.57 | 2017-08-07 |
| 221014 | Ports & Packages | Individual Port(s) | mm | Closed | FIXED | net-im/jabberd: Update to 2.6.1 (Fixes security vulnerability: CVE-2017-10807) | 2017-07-27 |
| 220977 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | devel/gsoap: Update to 2.8.50 (Fixes security vulnerability: CVE-2017-9765) | 2017-07-25 |
| 220869 | Ports & Packages | Individual Port(s) | woodsb02 | Closed | FIXED | sysutils/py-salt : Update to 2017.7.1 | 2017-08-26 |
| 220849 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | databases/mysql55-server databases/mysql56-server databases/mysql57-server security/vuxml: Update to latest (Fixes security vulnerabilities) | 2017-08-07 |
| 220823 | Ports & Packages | Individual Port(s) | olivier | Closed | FIXED | security/strongswan: Update to 5.5.3 (Fixes security vulnerabilities) | 2017-07-23 |
| 220818 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | devel/oniguruma5: Fix multiple vulnerabilities in 5.9.6_p1 | 2017-11-26 |
| 220809 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php56: Change from oniguruma5 to oniguruma6 | 2017-11-26 |
| 220797 | Ports & Packages | Individual Port(s) | olivier | Closed | FIXED | net-mgmt/collectd5: update to 5.7.2 (Fixes security vulnerability) | 2017-07-23 |
| 220742 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-mgmt/cacti: Update to 1.1.13 (Fixes security vulnerability) | 2017-07-17 |
| 220713 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document security vulnerability in evince and atril (CVE-2017-1000083) | 2017-08-22 |
| 220664 | Ports & Packages | Individual Port(s) | osa | Closed | FIXED | www/nginx www/nginx-devel: Update to latest versions (fixing CVE-2017-7529) | 2017-07-12 |
| 220608 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | graphics/poppler: Update to >= 0.56.0, Multiple security (CVE) vulnerabilities | 2017-08-24 |
| 220607 | Ports & Packages | Individual Port(s) | gecko | Closed | Overcome By Eve | www/libxul: Update to 52.2.0, Multiple (23) security (CVE) vulnerabilities | 2018-06-22 |
| 220586 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | textproc/jq: Dependency update: devel/oniguruma5 -> devel/oniguruma6 | 2017-10-08 |
| 220584 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: Security vulnerabilities (CVE-2017-10971, CVE-2017-10972) | 2018-05-23 |
| 220544 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | irc/irssi: Update to 1.0.4 (security fixes) | 2017-07-08 |
| 220438 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | devel/oniguruma6: Update to 6.4.0 | 2017-10-09 |
| 220435 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | www/smarty3: Update to 3.1.31 | 2017-07-24 |
| 220160 | Ports & Packages | Individual Port(s) | apache | Closed | FIXED | www/apache24: Update to 2.4.26 (addresses multiple CVE reports) | 2017-07-14 |
| 220136 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/p5-Crypt-OpenSSL-RSA: Additional functions | 2020-01-20 |
| 220134 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/p5-Crypt-OpenSSL-CA: adding functionality for parse existing CRL | 2017-06-19 |
| 220031 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/rt44: Add security patches from BestPractical | 2017-06-17 |
| 219864 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/tor-devel: Update to 0.3.1.3-alpha | 2017-07-25 |
| 219863 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/tor: Update to 0.3.0.8 (Security fixes) | 2017-07-25 |
| 219827 | Ports & Packages | Individual Port(s) | vlad-fbsd | Closed | FIXED | irc/irssi: Update to 1.0.3 (security fixes) | 2017-06-08 |
| 219801 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | mail/squirrelmail, mail/squirrelmail-translations: Update to 20170705 (Also fixes CVE-2017-7692) | 2017-08-25 |
| 219789 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | mail/roundcube: Update to 1.2.5 (security fix) | 2017-06-09 |
| 219783 | Ports & Packages | Individual Port(s) | bofh | Closed | Overcome By Eve | graphics/tiffgt is vulnerable, possibly duplicate | 2017-06-06 |
| 219662 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | net/freeradius{2,3}: Update to 3.0.14 (CVE-2017-9148 FreeRADIUS TLS resumption authentication bypass) | 2017-06-01 |
| 219527 | Base System | misc | delphij | Closed | FIXED | Flawed umask handling in /etc/rc.d/random | 2017-05-31 |
| 219514 | Ports & Packages | Individual Port(s) | timur | Closed | Overcome By Eve | net/samba{35+}: Security vulnerability: CVE-2017-7494 (RCE) | 2017-10-30 |
| 219422 | Ports & Packages | Individual Port(s) | timur | Closed | Overcome By Eve | net/samba45: urgent revert to 4.5.7 from 4.5.8 | 2018-06-14 |
| 219271 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | [exp-run] print/freetype2 update to 2.8 | 2017-05-21 |
| 219154 | Base System | bin | kib | Closed | FIXED | [PATCH] buffer overflows in realpath(3) | 2017-12-17 |
| 219045 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server: Upgrade to latest version(v10.1.23) - current(v10.1.22) has critical vulnerabilities | 2017-05-30 |
| 219006 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 52.1.0 | 2017-05-02 |
| 218934 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Quarterly (2017Q2) branch version vulnerable | 2017-04-29 |
| 218671 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | security/vuxml: Document dovecot2 vulnerability | 2017-04-30 |
| 217993 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba44: Fails to build with new Uses/samba.mk. Update fixes CVE-2017-2619 | 2017-03-31 |
| 217878 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | irc/irssi: Update to 1.0.2 | 2017-03-22 |
| 217782 | Base System | kern | mizhka | Closed | FIXED | sys/dev/bhnd/cores/pmu/bhnd_pmu_subr.c: PVS-Studio: Assignment to Variable without Use (CWE-563) (3) | 2020-11-24 |
| 217099 | Ports & Packages | Individual Port(s) | amdmi3 | Closed | FIXED | ports-mgmt/fbsdmon: Please delete this port | 2017-12-17 |
| 216952 | Ports & Packages | Individual Port(s) | madpilot | Closed | FIXED | graphics/optipng: update to 0.7.6 | 2017-02-16 |
| 216666 | Ports & Packages | Individual Port(s) | bsd | Closed | Not A Bug | multimedia/zoneminder - CVE-2016-10140 | 2017-02-06 |
| 216665 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/ikiwiki - multiple vulnerabilities | 2017-03-05 |
| 216664 | Ports & Packages | Individual Port(s) | feld | Closed | Overcome By Eve | lang/php70 - CVE-2017-5340 | 2017-02-04 |
| 216663 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | lang/guile2 - CVE-2016-8605 & CVE-2016-8606 | 2017-02-04 |
| 216662 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | databases/mantis - CVE-2016-6837 | 2017-02-04 |
| 216661 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/chicken - multiple vulnerabilities | 2017-03-05 |
| 216660 | Ports & Packages | Individual Port(s) | feld | Closed | Overcome By Eve | graphics/png - CVE-2016-10087 | 2017-06-09 |
| 216659 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | textproc/libebml - missing vuxml entries | 2017-02-04 |
| 216658 | Ports & Packages | Individual Port(s) | feld | Closed | Overcome By Eve | security/vuxml: graphics/tiff < 4.0.7 has multiple vulnerabilities (2016Q4 or older) | 2017-06-09 |
| 216654 | Ports & Packages | Individual Port(s) | feld | Closed | Not Enough Info | lang/php70-gd & lang/php56-gd - CVE-2016-8670 | 2017-06-09 |
| 216584 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 45.7.1 | 2017-03-03 |
| 216540 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/wordpress chinese/wordpress-zh_CN chinese/wordpress-zh_TW japanese/wordpress german/wordpress: Update to 4.7.2 | 2017-01-30 |
| 216515 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | russian/wordpress: Update to 4.7.2 | 2017-01-30 |
| 216136 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | dns/powerdns: Upgrade to recent version (v4.0.2) - current(4.0.1) has critical vulnerabilities | 2017-01-18 |
| 216135 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | dns/powerdns-recursor: Upgrade to recent version (v4.0.4) - current(4.0.3) is vulnerable | 2017-01-18 |
| 216059 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/wordpress chinese/wordpress-zh_CN chinese/wordpress-zh_TW japanese/wordpress german/wordpress russian/wordpress: Update to 4.7.1 | 2017-01-15 |
| 215989 | Ports & Packages | Individual Port(s) | rm | Closed | FIXED | shells/lshell: Update to 0.9.18, take MAINTAINER'ship | 2017-02-06 |
| 215988 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Document multiple security vulnerabilities in lshell | 2018-07-27 |
| 215909 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | [exp-run] security/gnutls: Update to 3.5.8 | 2017-01-12 |
| 215865 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | www/tomcat8 {tomcat7,tomcat6}: update to 8.0.40, 7.0.74, 6.0.49 | 2017-03-18 |
| 215822 | Ports & Packages | Individual Port(s) | nobutaka | Closed | FIXED | www/w3m: Update request (has known security vulnerabilities) | 2017-01-09 |
| 215805 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Document security vulnerabilities in libvncserver | 2017-01-09 |
| 215802 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | net/libvncserver: Update to 0.9.11 (Security fixes) | 2017-01-22 |
| 215801 | Ports & Packages | Individual Port(s) | vanilla | Closed | FIXED | security/vuxml: Document security vulnerabilities in Irssi | 2017-01-06 |
| 215800 | Ports & Packages | Individual Port(s) | vanilla | Closed | FIXED | irc/irssi: Update to 0.8.21 (Security fixes) | 2017-01-08 |
| 215733 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 45.6.0 | 2017-01-06 |
| 215651 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | devel/py-Jinja2: Update to 2.8.2 | 2017-04-04 |
| 215615 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/py-pillow: Update to 3.4.2 (security fixes) | 2017-01-09 |
| 215576 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | mail/phpmailer: Update to 5.2.18 | 2017-01-03 |
| 215481 | Ports & Packages | Individual Port(s) | robak | Closed | FIXED | textproc/apache-poi update to version 3.15 | 2017-03-28 |
| 215464 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/lynx - multiple vulnerabilites | 2017-01-09 |
| 215418 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid-devel: update to 4.0.17 | 2016-12-23 |
| 215416 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid: update to 3.5.23 | 2016-12-23 |
| 215271 | Ports & Packages | Individual Port(s) | cpm | Closed | FIXED | www/chromium: maybe use system ffmpeg | 2017-02-06 |
| 215096 | Ports & Packages | Individual Port(s) | apache | Closed | FIXED | www/apache24: Fix HTTP/2 DoS vulnerability | 2016-12-06 |
| 215085 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | devel/libdwarf: Update to 20161124 (Fixes many security vulnerabilities) | 2017-01-09 |
| 215036 | Ports & Packages | Individual Port(s) | tobik | Closed | FIXED | multimedia/ffmpeg0: remove port | 2019-06-15 |
| 214978 | Ports & Packages | Individual Port(s) | gecko | Closed | FIXED | www/firefox: update firefox and friends to 50.0.2/45.5.1 | 2016-12-02 |
| 214952 | Ports & Packages | Individual Port(s) | portmgr | Closed | Not Enough Info | graphics/tiff - CVE-2016-8331 | 2017-06-09 |
| 214951 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | textproc/linux-c6-expat: update to 2.0.1-13.el6_8, security/vuxml: Add entry for CVE-2016-0718 | 2016-12-01 |
| 214941 | Ports & Packages | Individual Port(s) | vd | Closed | FIXED | ftp/wget - missing vuxml entry | 2016-11-30 |
| 214940 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | archivers/p7zip: Security vulnerability (CVE-2016-9296) | 2016-12-01 |
| 214938 | Ports & Packages | Individual Port(s) | thierry | Closed | FIXED | science/hdf5-18 - multiple vulnerabilites & missing vuxml entry | 2017-01-09 |
| 214936 | Ports & Packages | Individual Port(s) | royger | Closed | FIXED | emulators/xen {-tools/-kernel}: security advisories (XSA-185 - XSA-201) | 2016-12-04 |
| 214925 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Update to 1.2.3 (Fixes security vulnerability) | 2016-12-14 |
| 214915 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/py-cryptography: Update to 1.6 (security fixes) | 2017-01-09 |
| 214631 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: 45.5.0 (with enigmail 1.9.6.1) | 2016-11-22 |
| 214546 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/libwww: Security vulnerabilities | 2016-11-29 |
| 214532 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | security/vuxml: Document www/libwww vulnerability | 2016-11-29 |
| 214520 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in ImageMagick (CVE-2016-9298) | 2016-12-04 |
| 214517 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/ImageMagick: Update to 6.9.6-4 (security fixes) | 2016-12-05 |
| 214514 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in ImageMagick7 | 2016-12-04 |
| 214511 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/ImageMagick7: Update to 7.0.3-7 (security fixes) | 2016-12-05 |
| 214488 | Base System | kern | kib | Closed | FIXED | mqueuefs mq_setattr() leaks stack memory | 2016-12-04 |
| 214412 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | graphics/py-pillow: Multiple vulnerabilities (CVE-2016-9189, CVE-2016-9190) | 2017-01-09 |
| 214410 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in py-pillow (CVE-2016-9189, CVE-2016-9190) | 2016-12-04 |
| 214360 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in rubygem-gitlab (CVE-2016-9086) | 2016-11-09 |
| 214000 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | ftp/curl: Update to 7.51.0 (Fixes multiple vulnerabilities) | 2016-11-02 |
| 213831 | Ports & Packages | Individual Port(s) | emulation | Closed | FIXED | www/linux-c6-flashplugin11: 11.2r202.637 vulnerable, Update to >= 11.2r202.643 | 2016-10-27 |
| 213792 | Ports & Packages | Individual Port(s) | jhale | Closed | FIXED | www/axis2: Update to 1.7.4, Security Vulnerability | 2016-10-31 |
| 213698 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | www/linux-c6-flashplugin11: 11.2r202.632 vulnerable, should update to 11.2r202.637 or later | 2016-10-24 |
| 213664 | Ports & Packages | Individual Port(s) | koobs | Closed | DUPLICATE | lang/php56: Update to 5.6.27 | 2016-10-21 |
| 213640 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/openssh-portable: Security vulnerability (CVE-2016-8858) | 2016-10-29 |
| 213604 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/node: Update to 6.9.1 | 2016-10-28 |
| 213603 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/node4: Update to 4.6.1 | 2016-10-28 |
| 213602 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/node012: Update to 0.12.17 | 2016-10-28 |
| 213589 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php56 lang/php70: Update to latest versions (5.6.27, 7.0.12) - Fixes Security Vulnerabilities | 2016-10-21 |
| 213546 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Document axis2 vulnerability | 2016-10-18 |
| 213537 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | deskutils/py-khal: Update to 0.7.1 (security fixes) | 2016-10-18 |
| 213536 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/axis2: Update to 1.7.3, Security Vulnerability, Take MAINTAINER'ship | 2016-10-20 |
| 213495 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | dns/c-ares: Update to 1.12.0 (CVE-2016-5180) | 2016-10-20 |
| 213199 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | archivers/file-roller CVE-2016-7162 | 2016-12-28 |
| 213141 | Ports & Packages | Individual Port(s) | gecko | Closed | FIXED | mail/thunderbird: 45.4.0 | 2020-10-02 |
| 213034 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/py-django18, www/py-django19: Update to 1.8.15 and 1.9.10 respectively | 2016-09-29 |
| 213033 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | security/vuxml: Security vulnerability in py-django, py-django18 and py-django19 (CVE-2016-7401) | 2016-09-29 |
| 213032 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/ImageMagick: Upgrade to 6.9.5-10 (security fixes) | 2016-10-12 |
| 213023 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in libgd, php56-gd and php70-gd | 2016-10-12 |
| 213020 | Ports & Packages | Individual Port(s) | dinoex | Closed | FIXED | graphics/gd: Fix integer overflow in gdImageWebpCtx | 2016-10-16 |
| 212952 | Ports & Packages | Individual Port(s) | rene | Closed | FIXED | security/tor and security/tor-devel: Update to 0.2.8.9 and 0.2.9.4-alpha | 2016-11-15 |
| 212889 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in irssi | 2016-09-21 |
| 212888 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | irc/irssi: Multiple vulnerabilities | 2016-09-21 |
| 212677 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | ftp/curl: Update to 7.50.3 / fix vuln | 2016-09-21 |
| 212619 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | databases/percona56-server: CVE 2016-6662 | 2016-09-13 |
| 212618 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | databases/percona55-server: CVE 2016-6662 | 2016-09-13 |
| 212617 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server: CVE 2016-6662 | 2016-09-28 |
| 212616 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb100-server: CVE 2016-6662 | 2016-09-28 |
| 212615 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb55-server: CVE 2016-6662 | 2016-09-28 |
| 212614 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql55-server: CVE 2016-6662 | 2016-11-27 |
| 212613 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql56-server: CVE 2016-6662 | 2016-11-27 |
| 212612 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | databases/mysql57-server: CVE 2016-6662 | 2016-11-27 |
| 212606 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | databases/mysql*-server, databases/percona*-server: CVE 2016-6662 | 2016-11-27 |
| 212463 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 45.3.0 | 2016-09-10 |
| 212455 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | ftp/curl: Security Vulnerability: CVE-2016-7141 <= 7.50.2 | 2016-10-09 |
| 212380 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in net/libvncserver | 2016-10-12 |
| 212379 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in editors/openoffice-4 (CVE-2014-3575) | 2016-10-12 |
| 212378 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | mail/mailman - missing vuxml entry | 2016-09-06 |
| 212305 | Base System | bin | emaste | Closed | FIXED | Security: possible to edit crontab of other user | 2017-01-19 |
| 212275 | Ports & Packages | Individual Port(s) | bdrewery | Closed | FIXED | security/openssh-portable - missing vuxml entries | 2016-09-01 |
| 212207 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/mupdf: CVE-2016-6525, CVE-2016-6265 | 2016-10-12 |
| 211930 | Ports & Packages | Individual Port(s) | portmgr | Closed | Not Accepted | Mk/bsd.default-versions.mk: Change default Perl version to 5.22 or 5.24 (5.20 End-of-Life) | 2016-08-17 |
| 211911 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | audio/teamspeak3-server: Update to 3.0.13.2 (fixes security vulnerabilities) | 2016-08-30 |
| 211892 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | www/h2o: Update to 2.0.4 | 2016-09-14 |
| 211854 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Overcome By Eve | dns/powerdns*: backport CVE-2016-6172 fix to 3.x series | 2016-11-27 |
| 211846 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | [Security Advisory] audio/teamspeak3-server: Several vulnerabilities found in Teamspeak3-server | 2016-08-14 |
| 211797 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | x11-fonts/xfs: Add CPE information | 2021-08-18 |
| 211795 | Ports & Packages | Individual Port(s) | ehaupt | Closed | FIXED | x11/xterm: add CPE information | 2016-08-13 |
| 211709 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Security vulnerability in databases/redis and redis-devel (CVE-2013-7458) | 2016-10-11 |
| 211693 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | dns/nsd: Update to 4.1.11 (Fixes security vulnerability: Fixes CVE-2016-6173) | 2016-08-10 |
| 211613 | Ports & Packages | Individual Port(s) | brd | Closed | FIXED | net-mgmt/collectd5: Update to 5.5.2 (Fixes security vulnerability: CVE-2016-6254) | 2016-08-14 |
| 211590 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | [MAINTAINER] www/piwik: Update to 2.16.2 (security update) | 2016-08-11 |
| 211580 | Base System | kern | jail | Closed | FIXED | deny system message buffer access from jails | 2018-10-20 |
| 211575 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | ftp/curl: Update to 7.50.1 (Fixes 3 Security Vulnerabilities), security/vuxml: Add entry | 2016-08-04 |
| 211561 | Ports & Packages | Individual Port(s) | perl | Closed | FIXED | lang/perl5.20, 5.22 & 5.24: Multiple Vulnerabilities | 2016-08-15 |
| 211482 | Ports & Packages | Individual Port(s) | royger | Closed | FIXED | emulators/xen {-tools/-kernel}: security advisories (XSA-182,183,184) | 2016-08-02 |
| 211407 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | dns/libidn: update 1.31 -> 1.33 | 2016-08-01 |
| 211405 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | graphics/tiff: Remove gif2tiff (Reporting still vulnerable to CVE-2016-5102) | 2016-08-06 |
| 211290 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php56: Update to 5.6.24 | 2016-07-26 |
| 211274 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb*-server: Multiple vulnerabilities | 2016-08-08 |
| 211251 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php70: Update to 7.0.9 (multiple security fixes) | 2016-07-27 |
| 211248 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | databases/mysql55-server, databases/mysql56-server, databases/mysql57-server: Multiple CVE | 2017-04-25 |
| 211206 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | www/nextcloud: Update to 9.0.53 (Fixes security vulnerability: https://httpoxy.org/#cve) | 2016-07-26 |
| 211124 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | graphics/gimp: update to 2.8.18 | 2016-07-29 |
| 211114 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | archivers/p7zip: update to 15.14.1 (Fixes security vulnerabilities) | 2016-07-15 |
| 211113 | Ports & Packages | Individual Port(s) | portmgr | Closed | FIXED | graphics/tiff: Backport fixes for CVE-2016-5875, CVE-2016-3186 | 2016-07-27 |
| 211100 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Overcome By Eve | editors/libreoffice: Update to latest version, security vulnerability (CVE-2016-4324) | 2018-02-23 |
| 211099 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | java/jakarta-struts: Vulnerable to CVE-2016-3092 | 2016-12-01 |
| 211023 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | textproc/xerces-c3 - Multiple Vulnerabilities | 2016-07-26 |
| 211009 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba43: version 4.3.11 released, security fix (CVE-2016-2119) | 2016-07-13 |
| 211008 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba42: version 4.2.14 released, security fix (CVE-2016-2119) | 2016-07-13 |
| 211006 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba44: version 4.4.5 released, security fix (CVE-2016-2119) | 2016-07-13 |
| 210871 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | www/typo3-lts: Update to 6.2.25 | 2016-07-19 |
| 210870 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | www/typo3: Update to 7.6.9 | 2016-07-19 |
| 210751 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security vulnerability in SQLite3 (CVE-2016-6153) | 2016-07-03 |
| 210749 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | mail/thunderbird: update to 45.2.0 | 2016-07-09 |
| 210581 | Ports & Packages | Individual Port(s) | junovitch | Closed | Overcome By Eve | chinese/wordpress-zh_CN and chinese/wordpress-zh_TW: update 4.5.2 -> 4.5.3 (security) | 2016-08-29 |
| 210550 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: CVE-2016-2177 missing for security/openssl | 2016-07-01 |
| 210541 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security vulnerability in python33 (CVE-2016-5699) | 2016-07-04 |
| 210539 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | lang/python33: HTTP Header Injection in Python urllib (CVE-2016-5699) | 2016-11-30 |
| 210512 | Ports & Packages | Individual Port(s) | vd | Closed | FIXED | ftp/wget: bump to 1.18 in 2016Q2 (CVE-2016-4971) | 2016-06-24 |
| 210502 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php56 PHP 5.6.23 released (fixing "several security bugs") | 2016-06-25 |
| 210493 | Ports & Packages | Individual Port(s) | glewis | Closed | FIXED | archivers/libarchive: update to 3.2.1 | 2016-06-23 |
| 210491 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | lang/php70: Update to 7.0.8 (Security fixes) | 2016-06-25 |
| 210458 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | www/piwik: Update to 2.16.1 (security update) | 2016-06-25 |
| 210421 | Ports & Packages | Individual Port(s) | vd | Closed | FIXED | ftp/wget: Update to 1.18 (Fixes CVE-2016-4971) | 2016-06-24 |
| 210420 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security Vulnerability in wget (CVE-2016-4971) | 2016-06-21 |
| 210325 | Ports & Packages | Individual Port(s) | rm | Closed | FIXED | lang/python35, lang/python34, lang/python33, lang/python27: Backport patches for CVE-2016-5636 | 2016-06-19 |
| 210324 | Ports & Packages | Individual Port(s) | rm | Closed | FIXED | security/vuxml, lang/python*: Security vulnerability -- Heap overflow in zipimporter module (CVE-2016-5636) | 2016-06-17 |
| 210317 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/drupal7: Update to 7.44 (Security fixes) | 2016-07-16 |
| 210298 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | textproc/libxslt: Update to 1.1.29 | 2016-06-20 |
| 210155 | Ports & Packages | Individual Port(s) | emulation | Closed | FIXED | textproc/expat2 & textproc/linux-*-expat: Expat issues CVE-2012-6702 and CVE-2016-5300 | 2016-12-03 |
| 209841 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: 1.1.5 vulnerable to CVE-2016-5103 | 2016-06-10 |
| 209809 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net-mgmt/cacti: upgrade to 0.8.8h - fix sql vulns | 2016-06-06 |
| 209779 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php55 lang/php56: Update to latest versions (5.5.36, 5.6.22) fixes security vulnerabilities | 2016-05-28 |
| 209669 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | [PATCHE] www/tomcat7 and www/tomcat-native upgrade | 2016-06-26 |
| 209592 | Ports & Packages | Individual Port(s) | emulation | Closed | FIXED | www/linux-c6-flashplugin11 / linux-f10-flashplugin11 - CVE-2016-4117 | 2016-06-19 |
| 209534 | Ports & Packages | Individual Port(s) | bjk | Closed | FIXED | net/openafs - multiple vulnerabilities | 2016-06-05 |
| 209409 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | chinese/wordpress-zh_CN: update 4.4.2 -> 4.5.2 (security) | 2016-05-20 |
| 209344 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | databases/mysql56-server: 2016Q2 branch still unpatched | 2016-05-10 |
| 209318 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb100-server: Update to 10.0.25 | 2016-05-07 |
| 209241 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | graphics/ImageMagick: Add VuXML entry to report vulnerability for CVE-2016-3714 | 2016-05-07 |
| 209225 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | [security] www/gitlab: Update to 8.7.1 | 2016-05-03 |
| 209219 | Ports & Packages | Individual Port(s) | vanilla | Closed | FIXED | devel/jansson: denial of service vulnerability (CVE-2016-4425) | 2016-05-20 |
| 209218 | Ports & Packages | Individual Port(s) | makc | Closed | FIXED | irc/quassel: update to 0.12.4 (CVE-2016-4414) | 2016-07-07 |
| 209145 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/php56: Update to 5.6.21 | 2016-05-03 |
| 209142 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: multiple vulnerabilities | 2016-05-28 |
| 209022 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net-mgmt/cacti: No vuxml entry for CVE-2016-3659 | 2016-05-29 |
| 208840 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | net/dhcpcd: Add VuXML entry for CVE-2014-7912 and CVE-2014-7913 | 2016-04-17 |
| 208482 | Ports & Packages | Individual Port(s) | marino | Closed | FIXED | security/wpa_supplicant: several upstream security advisories (CVE-2015-{5310,5315,5316}) | 2016-04-19 |
| 208476 | Ports & Packages | Individual Port(s) | royger | Closed | Not A Bug | emulators/xen {-tools/-kernel}: security advisories (XSA-172) | 2016-04-04 |
| 208465 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/php56: Update to 5.6.20 | 2016-04-03 |
| 208463 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | www/squid: update to 3.5.16 | 2016-04-03 |
| 208462 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | java/jakarta-struts: Security vulnerability: input validation bypass (JVN#86448949/CVE-2015-0899) | 2016-09-10 |
| 208404 | Ports & Packages | Individual Port(s) | kevlo | Closed | FIXED | [patch] net/openvswitch CVE-2016-2074 | 2016-07-03 |
| 208385 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | security/linux-c6-nss needs updating to resolve vulnerabilities | 2016-09-05 |
| 208280 | Base System | conf | re | Closed | FIXED | release/scripts/pkg-stage.sh: Rip out Fedora 10. | 2016-05-27 |
| 208260 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | devel/pcre - CVE-2016-1283 | 2016-04-03 |
| 208155 | Ports & Packages | Individual Port(s) | garga | Closed | Overcome By Eve | security/clamav: Problem with bundled LLVM | 2016-09-05 |
| 208074 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | devel/git - CVE-2016-2315 & CVE-2016-2324 | 2016-03-18 |
| 207934 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | Update textproc/apache-poi to version 3.14 | 2016-04-24 |
| 207854 | Base System | kern | bugs | Closed | FIXED | usr/src/sys/contrib/ncsw/Peripherals/QM/qm_portal_fqr.c:1437: bad shift ? | 2019-12-21 |
| 207740 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | devel/websvn: Add patches for CVE-2013-6892 and CVE-2016-2511 | 2016-03-06 |
| 207686 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | graphics/graphite2: update to 1.3.6 | 2016-03-08 |
| 207574 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Entry for graphics/silgraphite missing or insufficient information (vid 8f10fa04-cf6a-11e5-96d6-14dae9d210b8) | 2016-10-07 |
| 207498 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | www/drupal7: Update 7.42 to 7.43 (Security Release) | 2016-02-26 |
| 207494 | Ports & Packages | Individual Port(s) | wen | Closed | Overcome By Eve | www/typo3: Update to 7.6.4 | 2017-02-15 |
| 207454 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid: update to 3.5.15 | 2016-02-28 |
| 207444 | Ports & Packages | Individual Port(s) | skreuzer | Closed | FIXED | net-mgmt/cacti: upgrade to 0.8.8g | 2016-03-02 |
| 207334 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/bsh: Update to version 2.0b6 (Fixes security vulnerability, CVE-2016-2510) | 2016-02-21 |
| 207304 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | lang/go: Merge 406071 (security vulnerability fix) to quarterly branch 2016Q1 | 2016-02-24 |
| 207294 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid: update to 3.5.14 (CVE-2016-2390/SQUID-2016:1) | 2016-02-25 |
| 207207 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | www/firefox: update to 44.0.2 | 2016-02-15 |
| 207187 | Ports & Packages | Individual Port(s) | horde | Closed | Overcome By Eve | www/horde-base & devel/pear-Horde_Core: XSS vulnerabilites in 2016Q1 version | 2016-04-03 |
| 207174 | Ports & Packages | Individual Port(s) | danilo | Closed | FIXED | misc/xdelta3: update to 3.0.11 (address CVE-2014-9765 in < 3.0.9) | 2016-03-02 |
| 207173 | Ports & Packages | Individual Port(s) | demon | Closed | FIXED | devel/hive: Apache Hive authorization bug disclosure in 1.2.1 (CVE-2015-7521) | 2016-07-03 |
| 207054 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | graphics/py-imaging: Backport 2 Pillow security fixes. | 2016-02-11 |
| 207053 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | graphics/py-pillow: Backport security fixes from 3.1.1. | 2016-02-13 |
| 207003 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net/libsrtp: Update to 1.5.4 (Fixes security vulnerability CVE-2015-6360) | 2016-02-21 |
| 207001 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | graphics/jpgraph2 - CVE-2009-4422 | 2016-03-14 |
| 206998 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | databases/mysql57-{server,client}: Update to 5.7.12 | 2016-05-07 |
| 206906 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | sysutils/py-salt: Update to 2015.8.5 (Fixes CVE-2016-1866) | 2016-02-05 |
| 206905 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | russian/wordpress: Update to 4.4.2 | 2016-02-23 |
| 206808 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | net/samba36: security/vuxml: ineffective vuxml entry | 2016-02-27 |
| 206761 | Base System | kern | bugs | Closed | FIXED | Kernel stack overflow in sysctl handler for kern.binmisc.add | 2016-04-05 |
| 206756 | Ports & Packages | Individual Port(s) | zeising | Closed | FIXED | ftp/curl: Update to 7.47.0 (Fixes CVE-2016-0755) | 2016-02-03 |
| 206754 | Base System | kern | bugs | Closed | FIXED | Out of bounds negative array index in iicrdwr | 2019-01-15 |
| 206746 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | security/py-rsa: Update to 3.3 (Fixes CVE-2016-1494) | 2016-02-04 |
| 206727 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/nghttp2: Missing VuXML entry (CVE-2015-8659) | 2016-01-29 |
| 206726 | Ports & Packages | Individual Port(s) | sbruno | Closed | DUPLICATE | emulators/qemu-sbruno: Missing VuXML entry | 2016-10-07 |
| 206725 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Security vulnerability in emulators/qemu-devel, emulators/qemu-sbruno | 2016-12-04 |
| 206724 | Ports & Packages | Individual Port(s) | kevlo | Closed | FIXED | www/owncloud - missing multiple vuxml entries | 2016-01-29 |
| 206723 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | www/typo3 & typo3-lts missing vuxml entries | 2016-01-29 |
| 206707 | Ports & Packages | Individual Port(s) | lx | Closed | FIXED | net-im/prosody: Update to 0.9.10 | 2016-02-14 |
| 206698 | Ports & Packages | Individual Port(s) | osa | Closed | FIXED | www/nginx www/nginx-devel: Update to security releases 1.8.1 & 1.9.10 respectively | 2016-01-30 |
| 206680 | Base System | kern | emaste | Closed | FIXED | kbd spl calls obscure locking | 2024-01-07 |
| 206678 | Base System | kern | lifanov | Closed | FIXED | OGIO_KEYMAP command does not restore priority level | 2017-01-17 |
| 206626 | Base System | kern | emaste | Closed | FIXED | Integer overflow in nfssvc system call | 2016-10-07 |
| 206610 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | security/libressl: Identify whether affected by OpenSSL vulnerability | 2016-01-29 |
| 206608 | Ports & Packages | Individual Port(s) | dinoex | Closed | FIXED | security/openssl: Update to 1.0.2f (Fixes security vulnerability) | 2016-01-29 |
| 206607 | Services | Security Team | koobs | Closed | Not A Bug | Forthcoming OpenSSL Security Releases (1.0.2f, 1.0.1r.) | 2016-04-17 |
| 206592 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | security/vuxml: Missing vuxml entry for security/sudo (CVE-2015-5602) | 2016-07-16 |
| 206590 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | security/vuxml: Add entry for devel/gdcm - CVE-2015-8397 & CVE-2015-8396 | 2016-02-01 |
| 206585 | Base System | kern | bugs | Closed | FIXED | hpt_set_info possible buffer overflow | 2019-01-14 |
| 206584 | Base System | kern | bugs | Closed | Works As Intend | Possible integer overflow in update_intel | 2016-01-24 |
| 206581 | Base System | kern | net | Closed | FIXED | bxe_ioctl_nvram handler is faulty | 2018-05-23 |
| 206579 | Base System | kern | bugs | Closed | Not A Bug | amr(4): Multiple vulnerabilities in AMR ioctl handler | 2016-01-25 |
| 206573 | Base System | misc | bugs | Closed | FIXED | Improper userland pointer handling in aacraid | 2016-05-06 |
| 206551 | Base System | kern | bugs | Closed | Not A Bug | Heap overflow in iconv kernel module | 2016-01-24 |
| 206504 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | [MAINTAINER] www/privoxy: Update to 3.0.24 stable | 2016-01-26 |
| 206417 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | devel/cgit: Update to 0.12 (Security fixes) | 2016-01-21 |
| 206404 | Ports & Packages | Individual Port(s) | ale | Closed | Overcome By Eve | security issue in mail/roundcube <1.1.4 | 2016-06-10 |
| 206386 | Base System | bin | secteam | Closed | FIXED | vendor/libarchive: directory traversal vulnerability/local denial of services | 2019-03-04 |
| 206372 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | graphics/imlib2: Update to 1.4.7 | 2016-01-22 |
| 206282 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | multimedia/ffmpeg zero-day vulnerability HLS | 2016-01-17 |
| 206193 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | www/h2o: Update to 1.6.2, Add security/vuxml entry | 2016-01-19 |
| 206157 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | devel/p5-PathTools: Update to 3.62 | 2016-01-13 |
| 206150 | Ports & Packages | Individual Port(s) | lx | Closed | FIXED | net-im/prosody: Update to 0.9.9 | 2016-01-26 |
| 206129 | Ports & Packages | Individual Port(s) | miwi | Closed | FIXED | lang/php55 lang/php56: Update to latest versions (5.5.31, 5.6.17) - Fixes Security Vulnerabilities | 2016-01-11 |
| 206072 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | textproc/py-pygments: Add patch for CVE-2015-8557 | 2016-01-17 |
| 206015 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | net/dhcpcd: Update to 6.10.0 (Fixes security vulnerabilities) | 2016-01-08 |
| 205936 | Ports & Packages | Individual Port(s) | johans | Closed | FIXED | security/wolfssl: Update to 3.8.0 (Fixes Security Vulnerability) | 2016-09-12 |
| 205923 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | graphics/tiff: Add patches for CVE-2015-8665, CVE-2015-8683 and other vulnerabilities | 2016-01-05 |
| 205920 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | net-mgmt/cacti: Add patch for CVE-2015-8369 | 2016-01-06 |
| 205841 | Ports & Packages | Individual Port(s) | royger | Closed | FIXED | emulators/xen {-tools/-kernel}: multiple security advisories (XSA-157 to XSA-169) | 2021-11-02 |
| 205814 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | emulators/qemu {-devel}: multiple vulnerabilities | 2021-11-02 |
| 205813 | Ports & Packages | Individual Port(s) | sbruno | Closed | FIXED | emulators/qemu-sbruno: multiple vulnerabilities | 2021-11-02 |
| 205779 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Update to 1.1.4 | 2016-01-02 |
| 205670 | Ports & Packages | Individual Port(s) | makc | Closed | Overcome By Eve | irc/quassel: Vulnerable version in 2015Q4 branch. | 2016-01-04 |
| 205502 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | graphics/librsvg2: update 2.40.10 -> 2.40.12 | 2015-12-23 |
| 205159 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb100-server: Not updated in 2015Q4 | 2015-12-09 |
| 205110 | Ports & Packages | Individual Port(s) | mmoll | Closed | FIXED | www/redmine: multiple vulnerabilities | 2015-12-11 |
| 205105 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/keepassx: address information disclosure vulnerability (CVE-2015-8378) | 2015-12-23 |
| 205104 | Ports & Packages | Individual Port(s) | osa | Closed | FIXED | www/rubygem-passenger: update to 5.0.22 (CVE-2015-7519) | 2015-12-09 |
| 205009 | Services | Security Team | secteam | Closed | FIXED | [META] Track Base & Ports Updates for OpenSSL Security Advisory [3 Dec 2015] | 2015-12-05 |
| 205008 | Base System | misc | security-officer | Closed | FIXED | OpenSSL: Multiple Security Vulnerabilities (Update to 1.0.2e) | 2015-12-05 |
| 205007 | Ports & Packages | Individual Port(s) | dinoex | Closed | FIXED | security/openssl: Multiple Security Vulnerabilities (Update to 1.0.2e) | 2015-12-05 |
| 204965 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Update for net-mgmt/lldpd entry (2a4a112a-7c1b-11e5-bd77-0800275369e2) | 2016-02-02 |
| 204670 | Ports & Packages | Individual Port(s) | vanilla | Closed | FIXED | www/twiki: Patch patch-cve-2014-7236 failed to apply cleanly. | 2015-11-19 |
| 204643 | Base System | kern | kp | Closed | FIXED | [msdosfs] [panic] Crash while accessing files with large, non-english names | 2017-10-13 |
| 204597 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | security/strongswan: Update to 5.3.4 [CVE-2015-8023] | 2015-11-17 |
| 204551 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | graphics/png: buffer overflows in libpng 1.6.18 (CVE-2015-8126) | 2015-11-17 |
| 204500 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | mail/phpmailer: Update to 5.2.14, Take MAINTAINER'ship, Add VuXML entry. | 2015-12-03 |
| 204416 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/p5-HTML-Scrubber - missing vuxml entry for CVE-2015-5667 | 2015-11-15 |
| 204413 | Ports & Packages | Individual Port(s) | ehaupt | Closed | FIXED | archivers/unzip multiple vulnerabilities | 2016-01-05 |
| 204410 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb55-server: Multiple security vulnerabilities | 2017-02-01 |
| 204407 | Ports & Packages | Individual Port(s) | madpilot | Closed | FIXED | deskutils/owncloudclient: Missing VUXML entry for CVE-2015-7298 | 2015-11-13 |
| 204406 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Multiple security vulnerabilities in emulators/virtualbox-ose | 2016-10-12 |
| 204332 | Ports & Packages | Individual Port(s) | gecko | Closed | FIXED | security/nss: update to 3.20.1 (CVE-2015-7181, CVE-2015-7182) | 2015-11-28 |
| 204269 | Ports & Packages | Individual Port(s) | java | Closed | FIXED | java/openjdk8 - multiple security vulnerabilities | 2015-12-15 |
| 204268 | Ports & Packages | Individual Port(s) | glewis | Closed | FIXED | java/openjdk7 - multiple security vulnerabilities | 2016-01-21 |
| 204237 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | net/librsync: Security Vulnerability (CVE-2014-8242) | 2016-01-08 |
| 204235 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | sysutils/polkit 0.113 missing vuxml entries | 2016-01-08 |
| 204219 | Ports & Packages | Individual Port(s) | amdmi3 | Closed | FIXED | www/piwik: update to 2.15.0 (security update) | 2015-12-02 |
| 204044 | Ports & Packages | Individual Port(s) | mat | Closed | FIXED | [MAINTAINER] net-mgmt/lldpd: Update to 0.7.19, Fixes security vulnerabilities | 2015-12-02 |
| 204016 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/joomla31: update to 3.4.5 (multiple security advisories) | 2015-11-03 |
| 203995 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [patch] www/joomla15: Deprecation | 2015-11-10 |
| 203977 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [MAINTAINER] www/drupal7: Update Drupal 7.40 to 7.41 (Fix security vulnerabilities) | 2015-10-24 |
| 203914 | Ports & Packages | Individual Port(s) | sunpoet | Closed | Not A Bug | www/owncloud: DB password unhashed | 2021-06-25 |
| 203912 | Ports & Packages | Individual Port(s) | w.schwarzenfeld | Closed | FIXED | www/owncloud: Cleartext Password Logs | 2018-03-04 |
| 203671 | Ports & Packages | Individual Port(s) | portmgr | Closed | Feedback Timeou | graphics/tiff: security/vuxml: denial of service bug in libtiff (CVE-2015-7313) | 2016-04-13 |
| 203667 | Ports & Packages | Individual Port(s) | perl | Closed | FIXED | devel/p5-UI-Dialog: patch 1.09 for shell command execution bug (CVE-2008-7315) | 2015-10-10 |
| 203541 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | lang/php*: security/vuxml: security update to PHP 5.5.30, 5.6.14 | 2015-10-12 |
| 203479 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | devel/gdcm: Update to version 2.6.3 (Fixes security vulnerability) | 2016-02-01 |
| 203462 | Ports & Packages | Individual Port(s) | wg | Closed | FIXED | www/zend-framework1: security/vuxml: update to 1.12.16 (fixed ZF2015-08 SQL injection advisory) | 2016-01-03 |
| 203461 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | mail/james: security/vuxml: update to 2.3.2.1 (arbitrary system command execution for servers) | 2015-10-05 |
| 203410 | Ports & Packages | Individual Port(s) | ashish | Closed | FIXED | multimedia/libvpx: bring more options used by Firefox | 2015-11-17 |
| 203401 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/codeigniter: security/vuxml: security update 2.1.4 -> 2.2.4 (multiple vulnerabilities) | 2021-11-02 |
| 203394 | Ports & Packages | Ports Framework | pfg | Closed | FIXED | [exp-run] Toolchain hardening: Enable stack-protector-all & partial RELRO | 2016-06-01 |
| 203255 | Ports & Packages | Individual Port(s) | rm | Closed | FIXED | www/plone: security/vuxml: multiple security advisories | 2016-01-10 |
| 203186 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/squid: security update 3.1.8 -> 3.1.9 | 2016-02-18 |
| 203112 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | emulators/qemu-devel: Multiple security vulnerabilities | 2016-01-01 |
| 203110 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | devel/jenkins: CSRF / Code Execution security vulnerability | 2016-01-06 |
| 202942 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | deskutils/remind: security update 3.1.13 -> 3.1.15 (fixes CVE-2015-5957 buffer overflow) | 2015-09-18 |
| 202941 | Ports & Packages | Individual Port(s) | naddy | Closed | FIXED | audio/vorbis-tools: buffer overflow issue with invalid aiff files (CVE-2015-6749) | 2015-09-11 |
| 202940 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | sysutils/ganglia-webfrontend: update to 3.7.1 (fix Ganglia-web auth bypass CVE-2015-6816) | 2015-10-02 |
| 202906 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | lang/php5 lang/php55 lang/php56: 5.4.45, 5.5.29 5.6.13 released (11 Security Vulnerabilities fixed) | 2015-09-10 |
| 202812 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [MAINTAINER] multimedia/kodi: update to 15.1 (fixes multiple vulnerabilites in internal ffmpeg) | 2015-09-26 |
| 202781 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | print/ghostscript7 *: security/vuxml: denial of service (crash) via crafted Postscript files (CVE-2015-3228) | 2015-09-02 |
| 202738 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | [MAINTAINER] dns/powerdns: Update to 3.4.6 | 2015-09-02 |
| 202633 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/go {14}: security/vuxml: multiple vulnerabilties (CVE-2015-5739, CVE-2015-5740, CVE-2015-5741) | 2015-09-28 |
| 202571 | Services | Bug Tracker | bugmeister | Closed | FIXED | Links like "ports|src|doc rNUMBER" use http instead of https | 2017-02-18 |
| 202402 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | emulators/qemu-devel emulators/qemu-sbruno: multiple vulnerabilities (CVE-2015-5154, CVE-2015-5166, CVE-2015-5165) | 2016-01-03 |
| 202386 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | security/vuxml: document and MFH lang/php5 {55,56} recent vulnerability fixes | 2015-08-17 |
| 202328 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | www/mediawiki123: {124,125} unresolved security vulnerabilities | 2015-12-24 |
| 202270 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | multimedia/libvpx: update to 1.4.0.488 (snapshot) | 2015-08-14 |
| 202262 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | sysutils/froxlor: database password information leak (CVE-2015-5959) | 2015-08-20 |
| 202209 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | devel/pcre: Heap Overflow Vulnerability (CVE TBD) | 2015-09-23 |
| 202099 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | net-mgmt/net-snmp: Fix CVE-2015-5621 | 2015-08-10 |
| 201931 | Ports & Packages | Individual Port(s) | bapt | Closed | FIXED | sysutils/xen-tools: multiple vulnerabilities (CVE-2015-5154, CVE-2015-5166, CVE-2015-5165) | 2015-08-18 |
| 201908 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | sysutils/ganglia-webfrontend maintainer change: simplify permissions in pkg-plist and fix pkg-message.in | 2015-07-30 |
| 201834 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | textproc/elasticsearch: update 1.6.0 -> 1.7.0 (CVE-2015-5377, CVE-2015-5531) | 2015-08-10 |
| 201778 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Not Accepted | audio/sox: Multiple memory corruption vulnerabilities in SoX 14.4.2 | 2019-02-15 |
| 201709 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [MAINTAINER-UPDATE]: www/magento: Update to 1.9.2.0 | 2016-10-14 |
| 201702 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | net-mgmt/cacti: Multiple XSS and SQL injection vulnerabilities (CVE-2015-4634) | 2015-07-22 |
| 201603 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | [PATCH][UPDATE] security/polarssl: 1.2.13->1.2.14, fixing security issues | 2015-07-28 |
| 201513 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | [security] graphics/libwmf - multiple vulnerabilities | 2015-09-07 |
| 201374 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | [MAINTAINER] www/squid: Update to 3.5.6 | 2015-07-17 |
| 201359 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: document sysutils/ansible CVEs | 2015-07-06 |
| 201231 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | [PATCH] net/turnserver: update to 4.4.5.3 (Fixes security vulnerability) | 2015-07-07 |
| 201224 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | net-p2p/bitcoin: Update to 0.10.2 (fixes security vulnerability) | 2015-07-06 |
| 201192 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | [MAINTAINER] games/wesnoth: Update to to 1.12.4 | 2015-07-01 |
| 201134 | Ports & Packages | Individual Port(s) | amdmi3 | Closed | FIXED | [MAINTAINER] print/cups-filters: update to 1.0.70 | 2015-07-07 |
| 201064 | Ports & Packages | Individual Port(s) | nox | Closed | FIXED | emulators/qemu: Heap overflow in QEMU PCNET controller, allowing guest->host escape (CVE-2015-3209) | 2015-06-27 |
| 201008 | Ports & Packages | Individual Port(s) | olgeni | Closed | FIXED | textproc/elasticsearch: update to 1.6.0 (And fix vulnerabilities) | 2015-06-30 |
| 200980 | Ports & Packages | Individual Port(s) | junovitch | Closed | FIXED | lang/chicken: CVE-2015-4556: out-of-bounds read in CHICKEN Scheme's string-translate* procedure | 2015-08-02 |
| 200963 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | [MAINTAINER] net-mgmt/cacti: Update to 0.8.8d, Fix security vulnerabilities | 2015-06-23 |
| 200957 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | www/drupal6 [patch][security] Update 6.35_1 to 6.36 | 2015-06-21 |
| 200956 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | www/drupal7: [patch][security] Update Drupal 7.37_1 to 7.38 | 2015-06-21 |
| 200888 | Base System | gnu | pfg | Closed | FIXED | [patch] libiberty: integer overflow (CVE-2012-3509) | 2017-12-12 |
| 200852 | Ports & Packages | Individual Port(s) | wg | Closed | FIXED | multimedia/ffmpeg0: Update to 0.7.17 | 2015-08-26 |
| 200760 | Ports & Packages | Individual Port(s) | antoine | Closed | Not A Bug | textproc/kibana: Security vulnerability CVE-2015-4093 | 2015-06-13 |
| 200759 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | sysutils/logstash: Security vulnerability CVE-2015-4152 | 2015-06-25 |
| 200758 | Ports & Packages | Individual Port(s) | delphij | Closed | DUPLICATE | textproc/elasticsearch: Security vulnerability CVE-2015-4165 | 2015-06-30 |
| 200661 | Ports & Packages | Individual Port(s) | bf | Closed | FIXED | devel/pcre: 8.37 has unresolved vulnerabilities | 2015-06-10 |
| 200543 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | www/py-django: CVE-2015-3982 - Fixed session flushing in the cached_db backend | 2015-06-08 |
| 200537 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | databases/pgbouncer: Security vulnerability (CVE-2015-4054) | 2022-10-26 |
| 200507 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | [security] multimedia/avidemux26 - Multiple vulnerabilities | 2015-06-01 |
| 200506 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | [security] multimedia/avidemux2 - Multiple vulnerabilities | 2015-06-14 |
| 200504 | Ports & Packages | Individual Port(s) | mmoll | Closed | FIXED | www/rubygem-rest-client: Multiple security vulnerabilities (CVE-2015-1820, CVE-2015-3448) | 2015-06-01 |
| 200502 | Ports & Packages | Individual Port(s) | koobs | Closed | FIXED | net/libzmq4: Update to 4.1.2 (And fix CVE-2014-9721) | 2015-06-25 |
| 200431 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | [PATCH] [CVE] lang/php5: Update to 5.4.41, addresses CVE vulnerabilities | 2015-05-26 |
| 200172 | Ports & Packages | Individual Port(s) | python | Closed | FIXED | sysutils/py-salt: Multiple security vulnerabilities | 2015-05-25 |
| 200044 | Ports & Packages | Individual Port(s) | xmj | Closed | FIXED | [MAINTAINER] sysutils/py-salt : Update to 2015.5.1 | 2015-05-24 |
| 199585 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | [PATCH] [SECURITY] lang/php5*: updates to 5.6.8, 5.5.24, 5.4.40 | 2015-05-22 |
| 199508 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net/chrony: update to 1.31 to fix multiple security vulnerabilities | 2015-05-30 |
| 199507 | Ports & Packages | Individual Port(s) | novel | Closed | FIXED | security/libtasn1: Security vulnerability: CVE-2015-2806 | 2015-04-18 |
| 199483 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | databases/sqlite3: Multiple vulnerabilities corrected in 3.8.9.0 | 2015-05-09 |
| 199414 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | [MAINTAINER] games/wesnoth: Update to 1.12.2 | 2015-04-17 |
| 199167 | Ports & Packages | Individual Port(s) | christer.edwards | Closed | Not Accepted | sysutils/py-salt: Run master as non root user | 2017-11-26 |
| 199162 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | [MAINTAINER] devel/dulwich: Update to 0.10.1a (Security Update) | 2015-04-17 |
| 198873 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | multimedia/libav: Multiple security vulnerabilities | 2015-04-04 |
| 198818 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | www/dokuwiki: Multiple security vulnerabilities | 2015-04-13 |
| 198816 | Ports & Packages | Individual Port(s) | brooks | Closed | FIXED | devel/cross-binutils: Multiple security vulnerabilities | 2015-03-24 |
| 198815 | Ports & Packages | Individual Port(s) | feld | Closed | Feedback Timeou | devel/m6811-binutils: Multiple security vulnerabilities | 2017-02-18 |
| 198813 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | devel/psptoolchain-binutils: Multiple security vulnerabilities | 2022-06-30 |
| 198809 | Ports & Packages | Individual Port(s) | makc | Closed | FIXED | irc/quassel: Generates 1024 bit RSA keys by default, which are a bit dated | 2015-03-24 |
| 198508 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | [MAINTAINER] mail/sympa: security update to 6.1.24 | 2015-03-13 |
| 197546 | Ports & Packages | Individual Port(s) | robak | Closed | FIXED | japanese/lynx-current: Add CPE information | 2015-03-17 |
| 197004 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | net/openldap24-server: Unable to generate SSHA256/384/512 hashes using SHA2 overlay | 2015-05-27 |
| 196640 | Ports & Packages | Individual Port(s) | mm | Closed | FIXED | devel/libevent2: update to 2.0.22 (to fix CVE-2014-6272) | 2015-01-12 |
| 196351 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | net/libutp: backport fix for transmission crash (likely CVE-2012-6129) | 2015-01-27 |
| 196146 | Base System | bin | delphij | Closed | FIXED | [security] ntpd <= 2.4.7 vulnerable to possible buffer overrun, denial of service, weak cryptography | 2015-03-12 |
| 195956 | Ports & Packages | Individual Port(s) | jpaetzel | Closed | FIXED | textproc/libyaml: Fix CVE-2014-9130 and Add LICENSE | 2015-01-13 |
| 194699 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Not A Bug | no way to disable weak ciphers in mail/imap-uw | 2021-12-07 |
| 193871 | Base System | bin | bapt | Closed | FIXED | Certificates in /etc/ssl/certs not considered by pkg and fetch | 2016-02-20 |
| 186252 | Base System | misc | bugs | Open | --- | Cannot mount an encrypted swap file in fstab | 2019-02-20 |
| 182518 | Base System | conf | bugs | Open | --- | [login.conf] Better Password Hashes | 2023-08-18 |
| 26286 | Documentation | Manual Pages | bugs | Closed | Overcome By Eve | *printf(3) etc should gain format string warnings | 2022-07-22 |
