- Keywords: security
This result was limited to 500 bugs. See all search results for this query.
| ID▼ | Product | Component | Assignee | Status | Resolution | Summary | Changed |
|---|---|---|---|---|---|---|---|
| 278463 | Ports & Packages | Individual Port(s) | pi | New | --- | ftp/filezilla: needs update to 3.67.0 to fix PuTTY bug leaking info on NIST-P521 based private keys [CVE-2024-31497] | Sun 07:23 |
| 278404 | Ports & Packages | Individual Port(s) | marcus | Open | --- | ports-mgmt/portlint: Add check for files' permissions | Thu 12:18 |
| 278244 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | DUPLICATE | net/jose: Update to v13 (CVE-2023-50967) | 2024-04-07 |
| 278243 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/jose: Update to v13 (CVE-2023-50967) | 2024-04-11 |
| 278180 | Ports & Packages | Individual Port(s) | joneum | New | --- | www/mod_security: Update to 2.9.7 and Latest Project Changes | 2024-04-05 |
| 277631 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/grafana: Update to 10.4.1 and 9.5.17 (Fixes security vulnerability) | 2024-03-26 |
| 277587 | Ports & Packages | Individual Port(s) | grembo | Open | --- | sysutils/pftop crashing v0.10 installed via pkg install pftop | 2024-04-08 |
| 277261 | Ports & Packages | Individual Port(s) | rodrigo | Closed | FIXED | dns/c-ares: upgrade to 1.27.0 required (moderate security issue) | 2024-02-23 |
| 277228 | Base System | misc | geom | New | --- | Device permissions security hole with partitioning (/dev/geom.ctl) | 2024-03-03 |
| 277184 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | www/grafana: Update to 10.3.3 and 9.5.16 (Fixes security vulnerability) | 2024-02-23 |
| 276515 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/rclone: update to 1.65.1 | 2024-01-26 |
| 276491 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Security update to 1.6.6 | 2024-01-24 |
| 276422 | Base System | conf | bugs | Closed | Unable to Repro | pam_passwdqc(8) - add more examples | 2024-01-18 |
| 276022 | Ports & Packages | Individual Port(s) | dvl | Closed | FIXED | databases/mantis: Update to patch known vulns | 2024-01-06 |
| 275999 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | devel/zookeeper: Update to 3.8.3 (Fixes critical security vulnerability) and release the port | 2023-12-29 |
| 275055 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | security/openvpn: Update to 2.6.7 | 2023-11-19 |
| 274520 | Ports & Packages | Individual Port(s) | ale | Closed | FIXED | mail/roundcube: Security update to 1.6.4 | 2023-11-10 |
| 274270 | Ports & Packages | Individual Port(s) | vbox | Open | --- | emulators/virtualbox-ose-legacy family, including www/phpvirtualbox-legacy: deprecate six legacy ports | 2023-10-05 |
| 274235 | Ports & Packages | Individual Port(s) | fluffy | Closed | FIXED | mail/exim: update 4.96 -> 4.96.1 to fix several CVEs | 2023-10-03 |
| 274215 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | mail/libspf2: add fix for CVE-2023-42118 | 2023-10-05 |
| 274113 | Ports & Packages | Individual Port(s) | erlang | Closed | FIXED | net/rabbitmq: update to 3.11.24 | 2023-12-29 |
| 273766 | Ports & Packages | Individual Port(s) | sunpoet | Open | --- | graphics/webp: critical vulnerability (affects browsers) | 2023-10-01 |
| 273749 | Ports & Packages | Individual Port(s) | sunpoet | Closed | Overcome By Eve | graphics/webp: backport fix for CVE-2023-4863 | 2023-09-15 |
| 273691 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/gitea: Update to 1.20.4 (fixes security vulnerabilities) | 2023-09-10 |
| 273595 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba413: back port security patches from 4.6.11 | 2023-10-15 |
| 273563 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | net-im/py-matrix-synapse: update to 1.93.0 | 2023-10-27 |
| 273417 | Ports & Packages | Individual Port(s) | makc | Closed | FIXED | [patch] archivers/7-zip: Update to 23.00 or 23.01 (Security) | 2024-02-16 |
| 273379 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | www/gitea: Update to 1.20.3 (fixes security vulnerabilities) | 2023-08-28 |
| 273363 | Ports & Packages | Individual Port(s) | skreuzer | Closed | FIXED | devel/py-joblib: upgrade to 1.3.2 and fixes CVE-2022-21797 | 2023-08-29 |
| 272902 | Base System | kern | bugs | New | --- | Security: allow passphrases for WPA-EAP to be saved without using clear text in a world-readable file | 2023-08-02 |
| 272586 | Ports & Packages | Individual Port(s) | grahamperrin | Closed | DUPLICATE | emulators/virtualbox-ose: FORBIDDEN for all 6.1.4⋯ versions of ports in the family | 2023-07-19 |
| 272191 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/tang: Update to v14 (Fix CVE-2023-1672) | 2023-06-29 |
| 272161 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.27 and 9.5.5 (Fixes critical security vulnerability) | 2023-06-25 |
| 271893 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana{8,9}: Update to 8.5.26 and 9.5.3 (Fixes security vulnerabilities) | 2023-06-08 |
| 271839 | Base System | bin | emaste | Closed | FIXED | crypto/openssh: Status of CVE-2023-28531 | 2023-06-21 |
| 271695 | Ports & Packages | Individual Port(s) | diizzy | Closed | FIXED | graphics/webp: Patch CVE-2023-1999 | 2023-06-06 |
| 271141 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/vuxml: vulnerabilities for the emulators/virtualbox-ose family, 6.⋯ versions prior to 6.1.46 | 2023-07-20 |
| 271108 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/cloud-init: (and net/cloud-init-devel) security update | 2023-05-01 |
| 271100 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/activemq: Version update, explict jdk specification and rc script bug fixes | 2023-04-30 |
| 271086 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/grafana{8,9}: Update to 8.5.24 and 9.4.9 (Fixes security vulnerability) | 2023-04-27 |
| 271064 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/nginx-naxsi: Does not run with pcre2 | 2023-08-05 |
| 271041 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | multimedia/jellyfin: update to 10.8.10 | 2023-04-25 |
| 270923 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | security/vuxml: 18 new entries for vulnerable ports | 2023-09-03 |
| 270875 | Ports & Packages | Individual Port(s) | joneum | New | --- | www/nginx: with njs < 0.7.11 is vulnerable | 2023-04-16 |
| 270823 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | print/ghostscript9-agpl-base: please check for CVE-2023-28879 | 2023-05-01 |
| 270800 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | print/ghostscript10: please fix CVE-2023-28879 by updating to 10.01.1 | 2023-04-13 |
| 270795 | Ports & Packages | Individual Port(s) | philip | In Progress | --- | security/vuxml: taking port flavours into account in recent new entries | 2024-02-15 |
| 270767 | Ports & Packages | Individual Port(s) | python | Closed | FIXED | lang/python311 backport 3.11.3 to quarterly | 2023-06-16 |
| 270744 | Ports & Packages | Individual Port(s) | philip | Closed | FIXED | security/vuxml: 20 new entries for vulnerable ports | 2023-04-12 |
| 270739 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: Fix py-redis port name | 2023-04-12 |
| 270723 | Ports & Packages | Individual Port(s) | philip | Closed | FIXED | VuXML new entries for 20 vulnerable ports | 2023-04-12 |
| 270562 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/grafana{8,9}: Update to 8.5.22 and 9.4.7 (Fixes security vulnerability) | 2023-04-01 |
| 270540 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: CVE-2023-1393 | 2023-04-07 |
| 270357 | Ports & Packages | Individual Port(s) | portmgr | Closed | FIXED | ftp/curl: Update to 8.0.1 | 2023-04-18 |
| 270050 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | databases/mantis: Update to 2.25.6 | 2023-03-10 |
| 270037 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/apache24: Security Update to 2.4.56 | 2023-03-15 |
| 269967 | Ports & Packages | Individual Port(s) | yasu | Closed | FIXED | ftp/curl: security update to 7.88.1 | 2023-03-19 |
| 269903 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana{8,9}: Update to 8.5.21 and 9.3.8 (Fixes security vulnerabilities) | 2023-03-03 |
| 269768 | Ports & Packages | Package Infrastruc | apache | Closed | FIXED | www/apache24: broken dependency / potential security issue | 2023-04-01 |
| 269707 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: update to 1.18.4 (fixes security vulnerabilities) | 2023-02-20 |
| 269667 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/vuxml: document CVE-2022-39282 and CVE-2022-39283 for net/freerdp | 2023-02-24 |
| 269655 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | security/vuxml: document CVE-2023-22490 and CVE-2023-23946 for devel/git, www/gitlab-ce, … | 2023-02-21 |
| 269652 | Ports & Packages | Individual Port(s) | vvd | Closed | FIXED | www/tomcat{85,9,101,-devel}: Update to 8.5.88, 9.0.74, 10.1.8, 11.0.0-M5 (CVE-2023-24998 FileUpload DoS with excessive parts) | 2023-05-02 |
| 269530 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | print/harfbuzz: update to 7.0.0 | 2023-02-23 |
| 269409 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana{8,9}: Update to 8.5.20 and 9.3.6 (Fixes security vulnerabilities) | 2023-02-09 |
| 269226 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | security/vuxml: document CVE-2021-42835 for multimedia/plexmediaserver < 1.25.0 | 2023-01-30 |
| 269221 | Ports & Packages | Individual Port(s) | fernape | Closed | Overcome By Eve | security/vuxml: document CVE-2017-11610 and CVE-2019-12105 for outdated versions of sysutils/py-supervisor | 2023-09-02 |
| 269170 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/kafka: update to 3.3.2 | 2023-02-05 |
| 269154 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | sysutils/node_exporter: update to 1.5.0 | 2023-02-04 |
| 269153 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net-mgmt/prometheus2: Update to 2.41.0 | 2023-01-30 |
| 269147 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | security/vuxml: document CVE-2018-21232 for devel/re2c < 2.0 | 2023-01-25 |
| 269131 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: update to 1.18.3 (fixes security vulnerabilities) | 2023-01-24 |
| 269116 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | dns/powerdns-recursor: update to 4.8.1 (fixes CVE-2023-22617) | 2023-01-24 |
| 269079 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/eternalterminal: Update to 6.2.4 | 2023-01-23 |
| 269051 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/awstats: update to 7.9 | 2023-01-23 |
| 269050 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/krill: Update to 0.12.1 | 2023-01-23 |
| 269030 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | [PATCH] security/sudo update 1.9.12p2 (fix CVE-2023-22809) | 2023-02-27 |
| 268963 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: update to 21.1.7 | 2023-03-27 |
| 268754 | Ports & Packages | Individual Port(s) | dvl | Closed | FIXED | devel/viewvc-devel: update to 1.3.0-20230104 | 2023-01-13 |
| 268742 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net-mgmt/cacti: Update to 1.2.23 | 2023-01-05 |
| 268656 | Ports & Packages | Individual Port(s) | fuz | Closed | FIXED | www/minio: multiple vulnerabilities | 2023-03-27 |
| 268523 | Ports & Packages | Individual Port(s) | gnome | Open | --- | www/webkit2-gtk{3,4}: 2.38 available | 2023-12-27 |
| 268357 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/typo3-11: Update to 11.5.20 | 2022-12-18 |
| 268244 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python39: Update to 3.9.16 | 2022-12-22 |
| 268190 | Ports & Packages | Individual Port(s) | glewis | Closed | FIXED | archivers/libarchive: Fix CVE 2022-36227 | 2022-12-06 |
| 268078 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana9: Update to 9.2.7 (fixes security vulnerability) | 2022-12-23 |
| 267937 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | archivers/advancecomp: update to 2.4 | 2022-11-27 |
| 267728 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.15 and 9.2.4 (fixes security vulnerabilities) | 2022-11-13 |
| 267627 | Ports & Packages | Individual Port(s) | timur | Closed | Overcome By Eve | net/samba413: CVE-2022-3437: backport port revision 4 to 2022Q4 | 2023-01-05 |
| 267624 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | databases/cassandra3: Update to 3.11.14 | 2023-01-11 |
| 267617 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | security/sudo: Update to 1.9.12p1 | 2022-11-08 |
| 267507 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/darkhttpd: Update to 1.14 (Fixes CVE-2020-25691) | 2022-11-08 |
| 267466 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/webtrees: Update to 1.7.20 (security release) | 2022-12-29 |
| 267465 | Ports & Packages | Individual Port(s) | mikael | Closed | FIXED | www/webtrees20: Update to 2.0.25 (.24 was a security release) | 2023-01-16 |
| 267276 | Ports & Packages | Individual Port(s) | desktop | Open | --- | graphics/tiff: Backport fixes for CVE-2022-2519, CVE-2022-2520 and CVE-2022-2521 | 2023-02-23 |
| 267177 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | devel/git: Update to 2.38.1 (security release) | 2022-10-19 |
| 267080 | Ports & Packages | Individual Port(s) | wen | In Progress | --- | lang/python39: Update to 3.9.15 | 2022-12-14 |
| 267049 | Ports & Packages | Individual Port(s) | horde | Closed | FIXED | mail/horde-imp: address ZDI-20-1051 / ZDI-CAN-10436 | 2022-10-28 |
| 267037 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/strongswan: update to 5.9.8 | 2022-10-19 |
| 266938 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | security/strongswan: CVE-2022-40617 | 2022-10-10 |
| 266907 | Ports & Packages | Individual Port(s) | vvd | Closed | FIXED | emulators/virtualbox-ose{-*}: Update to 6.1.44 | 2023-05-26 |
| 266865 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/routinator: Update to 0.11.3 | 2022-10-09 |
| 266766 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | devel/zydis: update to 3.2.1 | 2022-10-04 |
| 266654 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | dns/unbound: Update to 1.16.3 | 2022-09-29 |
| 266591 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | Overcome By Eve | security/vuxml: Add nodejs September 22nd 2022 Security Releases | 2024-02-13 |
| 266535 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/grafana7: Deprecate and remove port | 2022-10-06 |
| 266530 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.13 and 9.1.6 (Fixes security vulnerability) | 2022-09-21 |
| 266318 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/mod_security: Update to 2.9.6 | 2022-10-19 |
| 266286 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python39: Update to 3.9.14 | 2022-09-19 |
| 266133 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | databases/mariadb10[456]-server: update to latest security releases | 2022-09-09 |
| 266128 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.11 and 9.1.2 (Fixes security vulnerability) | 2022-09-01 |
| 265800 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/gemserv: Update to 0.6.6 | 2023-01-26 |
| 265468 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql80-server: Update to 8.0.30 (Fixes several CVE) | 2022-09-16 |
| 265330 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/grafana{8,9}: Update to 8.5.9 and 9.0.3 (Fixes security vulnerability) | 2022-07-28 |
| 265250 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Works As Intend | ports-mgmt/portmaster -F does not suppress build of depends (for sysutils/restic, for one) | 2022-07-17 |
| 265244 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: CVE-2022-2319 and CVE-2022-2320 | 2023-03-29 |
| 265160 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/node16: Update to 16.16.0 | 2023-01-01 |
| 265159 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/node14: Update to 14.20.0 | 2023-01-01 |
| 265082 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | devel/ipython: 7.31.1 was a security release but not marked or merged (CVE-2022-21699) | 2022-11-12 |
| 265036 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net-im/gotosocial: upgrade to 0.3.7 | 2022-07-07 |
| 264999 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb106-server: conf.d/wsrep.cnf overrides bind-address in conf.d/server.cnf. | 2023-04-10 |
| 264847 | Ports & Packages | Individual Port(s) | mr | Closed | FIXED | security/vaultwarden: Change file permissions of rc.conf.d/vaultwarden to 0600 | 2022-07-22 |
| 264618 | Ports & Packages | Individual Port(s) | nc | Closed | FIXED | graphics/p5-Image-ExifTool: Update to 12.42 - (fixed security vulnerability) | 2022-06-24 |
| 264523 | Ports & Packages | Individual Port(s) | horde | Closed | FIXED | mail/horde-turba: Update to 4.2.29 (4.2.26 fixes RCE security vulnerability: CVE-2022-30287) | 2022-10-14 |
| 264437 | Ports & Packages | Individual Port(s) | ports-secteam | Open | --- | security/vuxml: Cannot validate entry: error: xmlAddEntity: invalid redeclaration of predefined entity | 2022-10-14 |
| 264435 | Base System | bhyve | jhb | Closed | FIXED | bhyve: hda_write() can index (and jump) beyond end of array | 2023-02-01 |
| 264426 | Ports & Packages | Individual Port(s) | bofh | Open | --- | www/mitmproxy: Update to 8.0.0 (<=7.0.4 vulnerable to CVE-2022-24766) | 2023-12-15 |
| 264425 | Ports & Packages | Individual Port(s) | jhixson | Closed | FIXED | sysutils/nomad: Secure nomad data_dir | 2022-06-10 |
| 264232 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | www/mattermost-{server,webapp}: Update to 7.3.0 | 2023-02-23 |
| 264170 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb103-server: Update to 10.3.35 (includes security fixes) | 2022-05-24 |
| 264082 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | www/grafana{7,8}: Update to 8.5.3 and 7.5.16 (Fixes security vulnerability) | 2022-11-07 |
| 263824 | Base System | bin | karels | Closed | FIXED | genet(4): Driver interface may overwrite memory in a consecutive memory copy operations when parsing TX packet | 2022-05-23 |
| 263789 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | net/eternalterminal: Update to 6.2.1 | 2022-05-11 |
| 263640 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql80-server: Update to 8.0.29 (Fixes multiple CVE) | 2022-05-17 |
| 263624 | Ports & Packages | Individual Port(s) | marcus | Closed | Overcome By Eve | net/netatalk3: Update to 3.1.13 (Fixes multiple/many security vulnerabilities) | 2022-05-06 |
| 263623 | Ports & Packages | Individual Port(s) | yasu | Closed | Overcome By Eve | databases/redis: Update to 6.2.7 on 2022Q2 branch | 2022-08-29 |
| 263434 | Base System | bin | jkim | Closed | Not A Bug | openssl: Unpatched bugs in /crypto/openssl/apps | 2022-06-20 |
| 263060 | Ports & Packages | Individual Port(s) | python | Closed | FIXED | devel/py-py: Update to 1.10.0 (security) -> 1.11.0 (for @py311 support) | 2023-09-01 |
| 262898 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: Update to 1.16.5 (fixes security vulnerabilities) | 2022-03-29 |
| 262879 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | dns/powerdns dns/powerdns-recursor: Update to 4.6.1 (fixes CVE-2022-27227) + fix building against LibreSSL | 2022-04-06 |
| 262693 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | irc/scrollz: Update to 2.3.1 | 2022-04-12 |
| 262662 | Ports & Packages | Individual Port(s) | mat | Closed | FIXED | dns/bind91{1,6,8}: CVE-2021-25220 CVE-2022-0396 CVE-2022-0635 CVE-2022-0667 | 2022-03-25 |
| 262537 | Ports & Packages | Individual Port(s) | diizzy | Closed | Not Accepted | dns/dns2blackhole : dns2blackhole-update2 is downloading executable to make ddos | 2023-06-19 |
| 262341 | Ports & Packages | Individual Port(s) | nc | Closed | FIXED | www/glpi: Update to 9.5.7 | 2022-03-09 |
| 262327 | Ports & Packages | Individual Port(s) | egypcio | Closed | FIXED | [PATCH] security/meek: update 0.35.0 to 0.37.0 | 2022-08-07 |
| 262295 | Base System | misc | bugs | New | --- | [pf] Tables and anchors | 2022-03-02 |
| 262197 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/typo3-11: Update to 11.5.7 | 2022-02-27 |
| 262196 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/typo3-10: Update to 10.4.25 | 2022-02-27 |
| 262180 | Base System | kern | bugs | Open | --- | jail escaping via jail-friendly nullfs | 2023-11-24 |
| 262174 | Documentation | Books & Articles | carlavilla | Closed | FIXED | gpg.conf options in Committer's guide should be reviewed/updated | 2023-09-07 |
| 262163 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | net/freerdp: Update to 2.6.0 | 2022-02-24 |
| 262133 | Ports & Packages | Individual Port(s) | ume | Closed | FIXED | security/cyrus-sasl2*: Update to 2.1.28 (security/bugfix release) | 2022-02-28 |
| 261969 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb10[345]-server: Update to latest versions (security releases) | 2022-02-19 |
| 261892 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | www/grafana[678]: Update to latest versions (8.3.5, 7.?.?, 6.?.?) fixing security vulnerabilities | 2022-04-04 |
| 261804 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | security/vuxml: libX11 CVE-2021-31535 missing PORTEPOCH | 2022-02-09 |
| 261791 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | devel/py-twisted: Update to 22.1.0 (includes a security update) | 2022-02-13 |
| 261789 | Ports & Packages | Individual Port(s) | otis | Closed | FIXED | www/node16: Update to 16.14.0 (LTS) | 2022-06-04 |
| 261576 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | www/gitea: Update to 1.16.4 (was: 1.15.11: fixes security vulnerability) | 2022-03-29 |
| 261560 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | www/grafana6: deprecate and remove port | 2022-03-31 |
| 261527 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/mod_security: Update to 2.9.5 | 2022-03-04 |
| 261526 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | security/modsecurity3: Update to 3.0.6 | 2022-07-30 |
| 261499 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/phpmyadmin5 : Update to 5.1.2 | 2022-02-02 |
| 261482 | Ports & Packages | Individual Port(s) | desktop | Closed | FIXED | sysutils/polkit: Add upstream fix for CVE-2021-4034 "pwnkit" security vulnerability | 2022-01-27 |
| 261436 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | www/phpmustache: update to 2.14.1 | 2022-01-27 |
| 261410 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | www/firefox: Update to 96.0.3 (unfixed security vulnerabilities) | 2022-01-28 |
| 261306 | Base System | conf | bugs | New | --- | Geli rc.d script does not support insertion of USB devices containing a keyfile. | 2023-04-27 |
| 261273 | Ports & Packages | Individual Port(s) | wen | Closed | Overcome By Eve | devel/liblas: Vulnerable to multiple CVEs, Deprecated, fails to run tests: crashes | 2024-04-01 |
| 261210 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | security/vuxml: Add Prosody XMPP server advisory 2022-01-13 | 2022-01-16 |
| 261209 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | net-im/prosody: Update to 0.11.12 | 2022-01-16 |
| 261120 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | devel/mill Update to 0.9.12 (log4j security fix) | 2022-01-12 |
| 261056 | Ports & Packages | Individual Port(s) | svysh.fbsd | Closed | FIXED | net/uriparser: Update to 0.9.6 | 2022-01-09 |
| 260675 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/matomo: Update to 4.6.2 | 2021-12-31 |
| 260594 | Ports & Packages | Individual Port(s) | mikael | Closed | FIXED | mail/opendmarc: update to 1.4.2 | 2021-12-30 |
| 260590 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | URGENT graphics/p5-Image-ExifTool security update needs commit since February, Request MAINTAINER'ship | 2022-03-25 |
| 260575 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/grafana7: Update to 7.5.12 (Fixes security vulnerabilities) | 2022-01-09 |
| 260574 | Ports & Packages | Individual Port(s) | diizzy | Closed | FIXED | security/tang: Update to v11 (Fix CVE-2021-4076) | 2022-02-12 |
| 260570 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | devel/zookeeper: Update log4j to 2.17 | 2021-12-20 |
| 260549 | Ports & Packages | Individual Port(s) | truckman | Closed | FIXED | devel/py-opengrok-tools: Possible security issue: Update to 1.6.9 (>1.6.7?) | 2022-05-05 |
| 260534 | Ports & Packages | Individual Port(s) | truckman | Closed | FIXED | devel/opengrok: Update to 1.6.9 (>1.6.7), fixes security vulnerability (CVE-2021-2322) | 2022-04-26 |
| 260526 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: Update to 1.20.14 as a security fix | 2023-03-27 |
| 260481 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | devel/zookeeper: Update log4j to 2.16 | 2021-12-18 |
| 260421 | Ports & Packages | Package Infrastruc | portmgr | Closed | FIXED | devel/log4j: Security vulnerability tracking issue (CVE-2021-44228 / CVE-2021-45046) | 2023-03-01 |
| 260391 | Ports & Packages | Individual Port(s) | otis | Closed | Overcome By Eve | textproc/elasticsearch7: Update to 7.16.1 | 2021-12-20 |
| 260390 | Ports & Packages | Individual Port(s) | otis | Closed | Overcome By Eve | sysutils/logstash7: Update to 7.16.1 | 2021-12-20 |
| 260373 | Ports & Packages | Individual Port(s) | mfechner | Closed | FIXED | textproc/apache-solr: Update to 8.11 (Fixes security vulnerability) | 2021-12-17 |
| 260358 | Ports & Packages | Individual Port(s) | matthew | Closed | FIXED | www/grafana8: Update to 8.3.2 (Fixes moderate severity vulnerabilities) | 2021-12-20 |
| 260138 | Base System | kern | bugs | New | --- | TPM2 Support in bootloader / kernel in order to retrieve GELI passphrase | 2024-02-07 |
| 259938 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | mail/libspf2: Update to 1.2.11 (Fixes CVE-2021-20314) | 2022-05-13 |
| 259638 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | www/grafana8: Update to 8.2.7 (Fixes high vulnerabilities) | 2021-12-12 |
| 259637 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | math/py-numpy: Update to 1.22.4 | 2022-06-23 |
| 259597 | Ports & Packages | Individual Port(s) | ygy | Closed | FIXED | www/grafana7: Update to 7.5.11 (Fixes Security Vulnerability) | 2021-11-25 |
| 259590 | Ports & Packages | Individual Port(s) | office | Closed | FIXED | graphics/libemf: update to 1.0.13 | 2021-11-02 |
| 259534 | Ports & Packages | Individual Port(s) | ygy | Closed | FIXED | archivers/advancecomp: Update to 2.1-6-g7b08f7a and take maintainership | 2021-11-19 |
| 259512 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | net/php{73,74,80}: Backport fix for CVE-2021-21703 security vulnerability | 2022-09-11 |
| 259362 | Ports & Packages | Individual Port(s) | gnome | Closed | Not Accepted | www/webkit2-gtk3: update to 2.34.1 | 2021-11-12 |
| 259338 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql57-server: Update to 5.7.36 (fixes security vulnerabilities) | 2021-11-01 |
| 259126 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node14: Update to 14.18.1 | 2021-10-14 |
| 258978 | Ports & Packages | Individual Port(s) | yasu | Closed | FIXED | databases/mongodb50: update to 5.0.3 | 2021-10-27 |
| 258936 | Ports & Packages | Individual Port(s) | osa | Closed | FIXED | databases/redis{,5,6}: Update to latest releases | 2021-10-05 |
| 258834 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | security/ca_root_nss: request to remove outdated "DST Root CA X3" cert b/c of collateral damage | 2022-11-07 |
| 258802 | Ports & Packages | Package Infrastruc | portmgr | Closed | FIXED | No updates to vuln.xml since 2021-09-16 | 2021-09-30 |
| 258519 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | Bump lang/python37 to 3.7.12 | 2021-09-19 |
| 258518 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | lang/python36: Update to 3.6.15 | 2021-09-19 |
| 258354 | Ports & Packages | Individual Port(s) | diizzy | Closed | FIXED | graphics/libpano13: Update to 2.9.20 | 2021-09-23 |
| 258195 | Ports & Packages | Individual Port(s) | wen | In Progress | --- | lang/python38: Update to 3.8.12 | 2021-09-19 |
| 258187 | Ports & Packages | Individual Port(s) | ashish | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.41.1 | 2021-09-02 |
| 258071 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | mail/fetchmail: security update to 6.4.22.rc2 - CVE-2021-39272 | 2021-08-29 |
| 258021 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | net-mgmt/icinga2: Update to 2.12.6 (security/bugfix release) | 2021-10-17 |
| 257903 | Ports & Packages | Individual Port(s) | otis | Closed | FIXED | www/node14: Update to 14.17.6 | 2021-09-23 |
| 257902 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node: Update to 16.8.0 | 2021-09-22 |
| 257900 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | dns/c-ares: Update to 1.17.2 | 2021-08-17 |
| 257832 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql80-server: Update to 8.0.26 (fixes multiple CVE) | 2021-08-29 |
| 257758 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | www/typo3-9: Update to 9.5.29 | 2021-10-05 |
| 257757 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | www/typo3-10: Update to 10.4.19 | 2021-10-05 |
| 257709 | Base System | kern | net | Closed | FIXED | netinet6: Set net.inet6.icmp6.nodeinfo default to 0 | 2023-05-01 |
| 257582 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | mail/opendmarc: Update to 1.4.1.1; Add ARC support | 2021-12-25 |
| 257480 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | mail/fetchmail: Update to 6.4.20 (security fix) | 2021-07-29 |
| 257306 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | ftp/curl: Update to 7.78.0 (security and bugfix release) | 2021-08-20 |
| 257221 | Ports & Packages | Individual Port(s) | ygy | Closed | FIXED | www/gitea: Update to 1.14.5 | 2021-07-18 |
| 257153 | Ports & Packages | Individual Port(s) | kbowling | Closed | FIXED | www/tomcat{7,85,9,10,-devel}: Update to 7.0.109, 8.5.69, 9.0.50, 10.0.8, 10.1.0-M2 | 2021-11-02 |
| 257150 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | security/linux-c7-nettle: Update to 2.7.1-9.el7_9 (security fix) | 2022-12-25 |
| 257148 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | x11/cde: Update to 2.4.0 | 2021-09-14 |
| 257066 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | databases/mantis: update to 2.25.2 | 2021-07-10 |
| 256957 | Base System | wireless | hrs | Open | --- | Wi-Fi: rc.conf(5) NOAUTO, ifconfig(8) up and unwanted WLAN connections to open networks | 2023-12-21 |
| 256860 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | mail/dovecot: Update to 2.3.15 | 2021-07-04 |
| 256472 | Ports & Packages | Individual Port(s) | lcook | Closed | FIXED | sysutils/zrepl: /var/run/zrepl should not be world-readable | 2021-06-08 |
| 256436 | Ports & Packages | Individual Port(s) | arrowd | Closed | FIXED | textproc/libxml2: Update to 2.9.12 (fixes several vulnerabilities) | 2021-06-23 |
| 256405 | Ports & Packages | Individual Port(s) | desktop | Closed | FIXED | sysutils/polkit: Update to 0.119 | 2021-08-01 |
| 256274 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | x11-toolkits/wlroots: fix CVE-2013-2003 | 2021-05-31 |
| 256273 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | graphics/wayland: fix CVE-2013-2003 | 2021-05-31 |
| 256236 | Ports & Packages | Individual Port(s) | pkg | Closed | Overcome By Eve | ports-mgmt/pkg: audit command didn't work properly with port epoch | 2021-06-24 |
| 256220 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | devel/py-yaml: update to 5.4.1 | 2021-06-02 |
| 255976 | Ports & Packages | Individual Port(s) | ygy | Closed | FIXED | net-mgmt/prometheus2: Update to 2.27.1 | 2021-06-03 |
| 255949 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | devel/websvn: update to 2.6.1 | 2022-02-26 |
| 255937 | Ports & Packages | Individual Port(s) | fluffy | Closed | FIXED | databases/mysql80-server: Update to 8.0.25 (Fixes security vulnerability) | 2021-05-24 |
| 255818 | Ports & Packages | Individual Port(s) | thierry | Closed | FIXED | graphics/ImageMagick6: Upgrade to 6.9.12-12 | 2021-07-20 |
| 255802 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | graphics/ImageMagick7: upgrade to 7.0.11-12 and fix some vulnerabilities | 2021-05-28 |
| 255748 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql57-server: Update to 5.7.34 (fixes security vulnerabilities??) | 2021-08-26 |
| 255528 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | www/webkit2-gtk3: update to 2.34.0 | 2022-07-09 |
| 255492 | Ports & Packages | Individual Port(s) | kbowling | Closed | FIXED | irc/ircII: Update to 20210314 (fixes CVE-2021-29376) | 2021-06-15 |
| 255455 | Ports & Packages | Individual Port(s) | nc | Closed | FIXED | mail/sympa: security upgrade to 6.2.62 | 2021-04-28 |
| 255417 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | www/drupal7: Update to 7.80 (fixes security vulnerability) | 2021-06-06 |
| 255369 | Ports & Packages | Individual Port(s) | portmgr | Closed | Not A Bug | graphics/jpeg-turbo: CVE-2021-20205 | 2021-04-25 |
| 255368 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | devel/binutils: Backport patch fixing CVE-2021-3487 | 2021-08-18 |
| 255361 | Ports & Packages | Individual Port(s) | sunpoet | Closed | Overcome By Eve | graphics/py-pillow: Update to 8.2.0 (fixes security vulnerabilities) | 2024-04-08 |
| 255292 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | irc/ircII: Update to 20210314 (CVE-2021-29376: irc/scrollz, irc/bitchx also affected) | 2022-12-01 |
| 255102 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net/libzmq4: Update to 4.3.4 (Fixes security vulnerabilities) | 2021-05-26 |
| 254930 | Ports & Packages | Individual Port(s) | adamw | Closed | FIXED | www/gitea: Update to 1.13.7 (fixes security vulnerabilities) | 2021-04-10 |
| 254783 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python39: Update to 3.9.4 | 2021-04-20 |
| 254780 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | security/vuxml: Document information disclosure vulnerability in python. | 2021-04-13 |
| 254773 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | ftp/curl: Update to 7.76.1 | 2021-04-28 |
| 254551 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | security/openssl: Update to 1.1.1k (Security Update - High) | 2021-03-26 |
| 254526 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | [PATCH] mail/spamassassin Update to 3.4.5 fixing CVE-2020-1946 | 2021-04-14 |
| 254355 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | security/nettle: Update to 3.7.2 (fixes security vulnerabilities) | 2021-03-30 |
| 254045 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node: Update to 15.10.0 | 2021-03-10 |
| 254044 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node14: Update to 14.16.0 | 2021-03-09 |
| 254043 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node12: Update to 12.21.0 | 2021-03-09 |
| 254042 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node10: Update to 10.24.0 | 2021-03-09 |
| 254007 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | mail/dovecot: Update to 2.3.14 | 2021-07-03 |
| 253415 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | graphics/opencv: add HARDENING and LTO options | 2021-02-11 |
| 252681 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node: Update to v15.5.1 | 2021-01-14 |
| 252639 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | databases/mantis: update to 2.24.4 | 2021-03-10 |
| 252583 | Ports & Packages | Individual Port(s) | garga | Closed | FIXED | security/sudo: Update to 1.9.5 | 2021-01-13 |
| 252564 | Ports & Packages | Individual Port(s) | kevans | Closed | FIXED | devel/nexus2-oss: update to 2.14.20-02 | 2021-09-29 |
| 252472 | Ports & Packages | Individual Port(s) | ler | Open | --- | security/vuxml document vulnerability in mail/dovecot lower than 2.3.13 (CVE-2020-24386) | 2023-04-10 |
| 252415 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | mail/dovecot: Update to 2.3.13 (security) | 2021-01-06 |
| 252291 | Ports & Packages | Individual Port(s) | jrm | Closed | FIXED | irc/inspircd: Update to 3.8.1 (fixes security vulnerability) | 2021-01-01 |
| 252262 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Overcome By Eve | security/tpm2-tss: Update to 3.0.3 | 2021-03-04 |
| 251768 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.24.0 | 2020-12-13 |
| 251744 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/glpi: Update to 9.5.3 | 2020-12-11 |
| 251695 | Ports & Packages | Individual Port(s) | mat | Closed | Overcome By Eve | sysutils/tmux: Update quarterly to 3.1c | 2021-01-04 |
| 251577 | Ports & Packages | Individual Port(s) | adamw | Closed | FIXED | www/gitea: Update to 1.13.0 (fixes security vulnerabilities) | 2020-12-05 |
| 251385 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | devel/binutils: Update to 2.37 | 2021-08-21 |
| 251277 | Ports & Packages | Individual Port(s) | fernape | Closed | FIXED | mail/mutt: Update to 2.0.2 | 2020-11-23 |
| 251212 | Ports & Packages | Individual Port(s) | eduardo | Closed | FIXED | www/typo3-10: Update to 10.4.10 | 2021-05-14 |
| 251013 | Ports & Packages | Individual Port(s) | rhurlin | Closed | FIXED | sysutils/py-salt: Update to 3002.1 (includes security fix) | 2020-11-19 |
| 250971 | Ports & Packages | Individual Port(s) | kde | Closed | FIXED | textproc/raptor2 heap overflow | 2020-11-09 |
| 250616 | Ports & Packages | Individual Port(s) | portmgr | Closed | FIXED | graphics/jpeg: update or remove | 2020-10-26 |
| 250425 | Ports & Packages | Individual Port(s) | jhale | Closed | FIXED | games/chocolate-doom: update to 3.0.1 | 2021-01-22 |
| 250318 | Ports & Packages | Individual Port(s) | dch | Closed | FIXED | dns/powerdns-recursor: Update to 4.3.5 | 2020-11-08 |
| 250286 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb103-server: Update to 10.3.25 | 2020-10-24 |
| 250190 | Ports & Packages | Individual Port(s) | ports-secteam | Closed | FIXED | graphics/jpeg-turbo: Update to 2.0.5 | 2020-11-16 |
| 250105 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | graphics/libexif: Update to 0.6.22 | 2020-10-07 |
| 249948 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-im/py-matrix-synapse: Security update to 1.21.2 | 2020-10-17 |
| 249473 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/tt-rss: Update to g20200919 (Fixes several security vulnerabilities) | 2020-09-30 |
| 249445 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | sysutils/accountsservice: Update to 0.6.55 | 2022-12-16 |
| 249373 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | DUPLICATE | net-im/py-matrix-synapse: Update to 1.19.2 (security) | 2020-09-16 |
| 249312 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | security/modsecurity3: patch for cve 2020-15598 | 2022-08-08 |
| 249256 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8 (8.8.7 in ports) please update to 8.8.8 (security fix) or 8.8.9 (bug fix) | 2020-11-25 |
| 249187 | Ports & Packages | Individual Port(s) | fluffy | Closed | FIXED | lang/python35: Update to 3.5.10 | 2020-09-25 |
| 248780 | Ports & Packages | Individual Port(s) | zeising | Closed | FIXED | dns/adns: Update to 1.6.0 | 2020-08-20 |
| 248751 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | security/vuxml: CVE-2019-20907, CVE-2020-14422: Python VuXML updates | 2020-08-19 |
| 248673 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | net/ceph14: Update to 14.2.11 | 2020-08-30 |
| 248640 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | mail/dovecot: Update to 2.3.11.3 | 2020-08-15 |
| 248580 | Ports & Packages | Individual Port(s) | 0mp | Closed | FIXED | print/ghostscript9-agpl-base: Fix SAFER Sandbox Breakout vulnerability (CVE-2020-15900) | 2021-01-20 |
| 248569 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php72: Update to 7.2.33 | 2020-08-19 |
| 248568 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php73: Update to 7.3.21 | 2020-08-19 |
| 248567 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php74: Update to 7.4.9 | 2020-08-19 |
| 248410 | Ports & Packages | Individual Port(s) | x11 | Closed | FIXED | x11-servers/xorg-server: fix CVE-2020-14347 (release 1.20.9 soon) | 2020-08-01 |
| 248268 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | audio/libsndfile: Update to master branch and use cmake | 2020-07-28 |
| 248162 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-mgmt/snmptt: Update to 1.4.2 | 2020-08-15 |
| 248139 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | net-mgmt/cacti: Update to 1.2.13 | 2020-07-28 |
| 247987 | Ports & Packages | Individual Port(s) | madpilot | Closed | FIXED | security/vuxml: emulators/virtualbox-ose 23 CVEs | 2020-07-19 |
| 247795 | Ports & Packages | Individual Port(s) | rodrigo | Closed | FIXED | net/rsync: Update to 3.2.3 | 2020-08-20 |
| 247735 | Ports & Packages | Individual Port(s) | danilo | Open | --- | envoy/istio: Multiple vulnerabilites | 2020-07-05 |
| 247720 | Ports & Packages | Individual Port(s) | lwhsu | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.15.2 (security) | 2020-07-05 |
| 247713 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | www/trafficserver: update to fix CVE-2020-9494, add vuxml entry | 2020-08-10 |
| 247708 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | [exp-run] graphics/exiv2: Update to 0.27.3 (Bug and security fixes) | 2020-07-09 |
| 247555 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | security/vuxml tomcat vulnerability CVE-2020-11996 | 2020-07-23 |
| 247554 | Ports & Packages | Individual Port(s) | mm | Closed | FIXED | ftp/proftpd: Update to 1.3.6d | 2020-08-17 |
| 247406 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | deskutils/anydesk: Update to 5.5.5 | 2020-11-02 |
| 247400 | Ports & Packages | Individual Port(s) | zeising | Closed | FIXED | mail/mutt: Update to 1.14.5 | 2020-07-15 |
| 247394 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | databases/mongodb36: Update to 3.6.18 | 2020-06-29 |
| 247392 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/vuxml mongodb issue | 2020-06-29 |
| 247149 | Ports & Packages | Individual Port(s) | secteam | Closed | FIXED | Multiple sqlite3 vulnerabilities (ports and base) | 2020-08-06 |
| 247089 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | devel/json-c: update quarterly to 0.14 | 2020-11-20 |
| 246984 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | lang/python* Fix CVE-2020-8492, CVE-2019-18348 | 2020-06-22 |
| 246892 | Ports & Packages | Individual Port(s) | adamw | Closed | FIXED | www/gitea: Update to 1.11.6 (fixes security vulnerabilities) | 2020-05-31 |
| 246808 | Ports & Packages | Individual Port(s) | koobs | Closed | DUPLICATE | lang/python36: Update to 3.6.10 (and backport security fixes) | 2020-06-15 |
| 246803 | Ports & Packages | Individual Port(s) | tobik | Closed | Overcome By Eve | graphics/sane-backends: update to 1.0.30, security fixes | 2020-05-30 |
| 246738 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | lang/python36: Update to 3.6.11 | 2020-06-13 |
| 246582 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-mgmt/zabbix3-*: Update to 3.0.31 | 2020-05-22 |
| 246569 | Ports & Packages | Individual Port(s) | delphij | Closed | FIXED | dns/unbound: Update to 1.10.1 | 2020-05-22 |
| 246482 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php74: Update to 7.4.6 | 2020-05-16 |
| 246481 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php73: Update to 7.3.18 | 2020-05-18 |
| 246480 | Ports & Packages | Individual Port(s) | tz | Closed | FIXED | lang/php72: Update to 7.2.31 | 2020-05-15 |
| 246239 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | security/openconnect: Update to 8.10 | 2020-08-24 |
| 246164 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | security/vuxml: cacti CVE-2020-7106 | 2020-05-04 |
| 246161 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-mgmt/cacti: Update to 1.2.12 | 2020-05-05 |
| 246145 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | devel/json-c: Update to 0.14 | 2020-05-21 |
| 246061 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | sysutils/py-salt: Update to 2019.2.4 (CVE fix) | 2020-05-16 |
| 245968 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Not Accepted | www/firefox 75.0_2,1 & www/chromium 81.0.4044.113 - Servere Security Issue | 2021-03-29 |
| 245943 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | www/py-bleach: Update to 3.1.5, Fix security issue | 2020-05-14 |
| 245776 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python27: Update to 2.7.18 (Fixes vulnerability) | 2020-05-15 |
| 245672 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | mail/sympa: update to 6.2.54 - security fix | 2020-05-27 |
| 245517 | Ports & Packages | Individual Port(s) | kevans | Closed | FIXED | net/freerdp: Update to 2.1.1 | 2020-06-17 |
| 245475 | Ports & Packages | Individual Port(s) | timur | Closed | FIXED | net/samba41, net/samba411: Update to latest versions (security releases) | 2020-09-23 |
| 245468 | Ports & Packages | Individual Port(s) | woodsb02 | Closed | FIXED | net-mgmt/cacti: Update to 1.2.11 | 2020-05-23 |
| 245284 | Ports & Packages | Individual Port(s) | apache | Closed | FIXED | www/apache24: Security Update to 2.4.43 | 2020-04-02 |
| 245282 | Ports & Packages | Individual Port(s) | demon | Closed | FIXED | net/haproxy: Security Update (all supported Versions) CVE-2020-11100 | 2020-05-02 |
| 245252 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | devel/py-twisted: Update to 20.3.0 (includes security updates) | 2020-04-27 |
| 245205 | Ports & Packages | Individual Port(s) | woodsb02 | Closed | FIXED | net-mgmt/cacti: Add VuXML entries for multiple vulnerabilities in cacti < 1.2.10 | 2020-04-04 |
| 245153 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | www/piwigo: Update to 2.10.2 (Bugfix and security release) | 2020-05-23 |
| 245096 | Ports & Packages | Individual Port(s) | fjoe | Closed | FIXED | databases/phpmyadmin: 4.9.5 is not a vulnerable version, but still marked vulnerable (matches < 5.0.2 entries) | 2020-05-05 |
| 245023 | Ports & Packages | Individual Port(s) | ruby | Closed | FIXED | devel/rubygem-json: Update to 2.3.0 (CVE-2020-10663) | 2020-04-03 |
| 245019 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: Update to 80.0.3987.149 | 2020-03-25 |
| 245016 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | www/nextcloud: Update to 18.0.3 | 2020-05-23 |
| 244992 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: Update to 8.8.4 (Fixes security vulnerability: SA-CORE-2020-001) | 2024-01-27 |
| 244987 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/tomcat9: MFH port r526773 (Security update: CVE-2020-1938) | 2020-04-02 |
| 244985 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/postgresql*-server | 2020-03-29 |
| 244971 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/glpi: Update to 9.4.5 | 2020-06-10 |
| 244876 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | www/wt: Update to v4.2.2 | 2020-03-20 |
| 244875 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | www/wt3: Update to v3.5.2 | 2020-03-20 |
| 244723 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node12: Update to to 12.16.1 (fixes security vulnerabilities) | 2020-04-12 |
| 244625 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: [patch] Please update to 80.x | 2020-03-11 |
| 244429 | Ports & Packages | Individual Port(s) | 0mp | Closed | FIXED | audio/timidity++: update 2.14.0 -> 2.15.0, fix CVE-2017-11546 | 2020-03-02 |
| 244365 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | sysutils/consul: Consul 1.7.1 has been released. | 2020-03-27 |
| 244279 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.12.3 | 2020-04-22 |
| 244212 | Ports & Packages | Individual Port(s) | madpilot | Closed | FIXED | emulators/virtualbox-ose: Update to 5.2.44 | 2020-07-19 |
| 244136 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/mattermost-{webapp,server}: Update to 5.21.0 | 2020-07-23 |
| 244117 | Ports & Packages | Individual Port(s) | diizzy | Closed | FIXED | irc/unreal: Update to 5.0.3.1 | 2022-06-12 |
| 244060 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | graphics/libexif: Fix security vulnerabilities | 2020-02-15 |
| 243952 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/nginx: Versions < 1.17.7, with certain error_page configurations, allows HTTP request smuggling (CVE-2019-20372) | 2020-02-21 |
| 243702 | Ports & Packages | Individual Port(s) | secteam | Closed | FIXED | security/vuxml: Add January FreeBSD Security Advisories SA-20:01.libfetch, SA-20:02.ipsec and SA-20:03.thrmisc | 2020-02-14 |
| 243686 | Ports & Packages | Individual Port(s) | fluffy | Closed | FIXED | mail/opensmtpd: Update to v6.6.2p1 (Fixes critical LPE / RCE vulnerability) | 2020-01-31 |
| 243660 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | security/vuxml: MariaDB incorrectly added to MySQL CVE's | 2020-02-02 |
| 243566 | Ports & Packages | Individual Port(s) | multimedia | Closed | FIXED | audio/taglib: Update to 1.12b1 (fixes CVE-2018-11439) | 2020-05-02 |
| 243518 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | net-p2p/rslsync: Update to 2.6.4 | 2020-05-23 |
| 243437 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/gitea: Update to 1.10.3 (fixes security vulnerabilities) | 2020-01-28 |
| 243388 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/npm: Update to 6.13.4 - < 6.13.4 vulnerable to multiple vulnerabilities incl. arbitrary file write | 2020-10-02 |
| 243336 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | graphics/py-pillow: Update to 6.2.2 | 2020-01-28 |
| 243067 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | FIXED | x11/libxdg-basedir: update to 1.2.2 | 2021-04-13 |
| 242929 | Ports & Packages | Individual Port(s) | amdmi3 | Closed | FIXED | security/u2f-devd: new entries for Trezor keys | 2021-03-17 |
| 242834 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | net-mgmt/cacti: Update to 1.2.8 | 2020-01-06 |
| 242708 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-9: Update to 9.5.12 | 2019-12-26 |
| 242707 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-8: Update to 8.7.30 | 2019-12-26 |
| 242702 | Ports & Packages | Individual Port(s) | decke | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.7.1 (fixes security vulnerabilities) | 2020-01-11 |
| 242676 | Base System | kern | Andrew | In Progress | --- | Mitigating speculative execution beyond ERET on aarch64 | 2019-12-20 |
| 242415 | Base System | kern | glebius | Closed | FIXED | Running any command that interacts with network connections as an underprivileged user panics the OS | 2019-12-15 |
| 241981 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | www/gitea: Update to 1.10.0 | 2019-11-23 |
| 241976 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/squid: Update to 4.9 | 2019-11-19 |
| 241870 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/mysql56-server: Update to 5.6.46 (< 5.6.46 is vulnerable to many CVE's) | 2020-01-20 |
| 241734 | Ports & Packages | Individual Port(s) | bofh | Closed | FIXED | sysutils/ansible: Update to 2.9.6 | 2020-04-28 |
| 241693 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: Update to 8.7.8 | 2019-11-28 |
| 241586 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python35: Update to 3.5.9 (python.org shipped broken 3.5.8, tread carefully) | 2020-03-15 |
| 241516 | Ports & Packages | Ports Framework | portmgr | Open | --- | Mk/bsd.port.mk: Fix certificate verification for 'make makesum' | 2024-02-12 |
| 241460 | Ports & Packages | Individual Port(s) | egypcio | Closed | FIXED | [PATCH] net/pacemaker2: update 2.0.0-rc4 to 2.0.3 | 2020-02-04 |
| 241456 | Ports & Packages | Individual Port(s) | egypcio | Closed | FIXED | [PATCH] net/pacemaker1: update 1.1.19 to 1.1.22 | 2020-02-04 |
| 241424 | Ports & Packages | Individual Port(s) | rakuco | Closed | FIXED | sysutils/file: Update to 5.37, Fix CVE-2019-18218 | 2019-11-03 |
| 241422 | Ports & Packages | Individual Port(s) | ports-bugs | Closed | Feedback Timeou | textproc/unoconv: Update to 0.8.2, Fix CVE-2019-17400 | 2020-07-23 |
| 241420 | Ports & Packages | Individual Port(s) | gnome | Closed | Overcome By Eve | textproc/libxslt: Fix CVE-2019-18197 | 2020-01-26 |
| 241362 | Ports & Packages | Individual Port(s) | mat | Closed | Not Accepted | dns/bind911: Merge ports r514624 (9.11.12) to 2019Q4 (Fixes security vulnerability) | 2019-10-20 |
| 241308 | Ports & Packages | Individual Port(s) | dmgk | Closed | FIXED | devel/nexus2-oss: Update to 2.14.15-01 | 2019-11-09 |
| 241268 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | graphics/py-pillow: Update to 6.2.0 | 2019-10-20 |
| 241154 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | [PATCH] www/mod_perl2: update to 2.0.11, fix CVE-2011-2767 | 2019-10-25 |
| 241066 | Ports & Packages | Individual Port(s) | cy | Closed | FIXED | graphics/xpdf3: Backport fix for CVE-2019-16927 and CVE-2019-9877 | 2019-10-19 |
| 241065 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | net-mgmt/prometheus2: Update to 2.13.0 | 2019-10-08 |
| 241033 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | dns/unbound:Update to 1.9.4 (fixes CVE-2019-16866) | 2019-10-20 |
| 240999 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | net-mgmt/cacti: Update to 1.2.7 | 2019-10-05 |
| 240985 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby26: Update to 2.6.5 | 2019-10-02 |
| 240984 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby25: Update to 2.5.7 | 2019-10-02 |
| 240983 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | lang/ruby24: Update to 2.4.9 | 2019-10-02 |
| 240844 | Ports & Packages | Individual Port(s) | tijl | Closed | FIXED | print/ghostscript9-agpl-base: Update to 9.50 (Fixes security vulnerabilities) | 2020-01-06 |
| 240505 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | mail/opendmarc: fix multiple addresses in From vulnerability | 2021-12-30 |
| 240399 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | net/kea: Update to 1.6.0 | 2019-09-20 |
| 240370 | Ports & Packages | Individual Port(s) | bhughes | Closed | FIXED | www/node10: MFH requested but not done | 2019-09-18 |
| 240368 | Ports & Packages | Individual Port(s) | mandree | Closed | FIXED | devel/oniguruma: Update to 6.9.3 (Fixes CVE-2019-13224) | 2019-09-07 |
| 240362 | Ports & Packages | Individual Port(s) | vsevolod | Closed | FIXED | mail/exim: Update to 4.92.2 (Fixes CVE-2019-15846) | 2019-09-06 |
| 240324 | Ports & Packages | Individual Port(s) | timur | Closed | Works As Intend | security/vuxml: 145a3e17-cea2-11e9-81e2-005056a311d1 (net/samba410) should exclude versions before 4.9.0 | 2019-09-04 |
| 240322 | Ports & Packages | Individual Port(s) | feld | Closed | FIXED | security/vuxml: Add August FreeBSD Security Advisories | 2023-07-13 |
| 240196 | Ports & Packages | Individual Port(s) | tobik | Closed | FIXED | www/webkit2-gtk3: Update to 2.24.4 (fixes many security vulnerabilities) | 2019-09-12 |
| 240174 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | mail/dovecot: Update to 2.3.7.2 (Fixes CVE-2019-11500) | 2019-08-29 |
| 240132 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | www/mattermost-{webapp,server}: Update to 5.15.0 | 2019-10-15 |
| 240126 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | databases/mongodb36: Update to 3.6.14 (bugfix & security release) | 2019-10-11 |
| 240046 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | www/gitea: Update to 1.9.2 (fixes security vulnerabilities) | 2019-08-25 |
| 239994 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | www/cliqz: Update to 1.28.2 | 2019-09-03 |
| 239981 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb104-{server,client}: Update to 10.4.7 (with 5 CVEs fixed) | 2019-11-29 |
| 239978 | Base System | bin | markj | Closed | FIXED | Integer Overflow: ping(8) option "-h", bypass the invalid sweepincr packet size check | 2020-12-01 |
| 239977 | Base System | bin | markj | Closed | FIXED | Integer Overflow: ping(8) option "-G" and "-g", bypass the invalid sweepmax and sweepmin packet size check | 2020-12-01 |
| 239975 | Base System | bin | bugs | New | --- | ping(8) crashes with SIGSEGV - Out-of-Bounds Read of size 2 (global-buffer-overflow) | 2020-11-04 |
| 239974 | Base System | bin | markj | Closed | FIXED | ping(8) crashes with SIGSEGV - Out-of-Bounds Write of size 1 (global-buffer-overflow) | 2020-12-01 |
| 239964 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | dns/nsd: Update to 4.2.2 | 2019-08-19 |
| 239897 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/jetty9: Update to 9.4.20 | 2020-04-03 |
| 239839 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | [PATCH] net-mgmt/prometheus2: Update to 2.11.2 | 2019-08-14 |
| 239717 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | databases/mongodb34: Update to 3.4.22 (bugfix & security release) | 2019-10-11 |
| 239684 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | security/clamav: Update to 0.101.4 (security/bugfix release) | 2019-08-24 |
| 239653 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb103-server upgrade to 10.3.17 | 2019-09-03 |
| 239599 | Ports & Packages | Individual Port(s) | jbeich | Closed | FIXED | devel/libevent: update to 2.1.11 | 2019-08-27 |
| 239571 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql55-server databases/mysql56-server databases/mysql57-server databases/mysql80-server - security fixes | 2019-09-20 |
| 239562 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | www/gitea: Update to 1.9.0 | 2019-08-01 |
| 239441 | Ports & Packages | Individual Port(s) | vsevolod | Closed | FIXED | mail/exim: Update to 4.92.1 which fixes CVE-2019-13917 | 2019-07-26 |
| 239272 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql80-server: Update to 8.0.17 (Fixes multiple CVE) | 2019-12-05 |
| 239271 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.27 (Fixes multiple CVE) | 2019-12-05 |
| 239024 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | sysutils/monit: Update to 5.26.0 | 2019-07-15 |
| 239013 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | net-im/py-matrix-synapse: Update to 1.2.1 | 2019-07-29 |
| 239003 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | www/webkit2-gtk3: Update to 2.24.3 (fixes many code execution vulnerabilities) | 2019-08-29 |
| 238952 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | lang/python36: Update to 3.6.9 | 2019-07-23 |
| 238911 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/py-django22: Update to 2.2.3 (bugfix & security release) | 2019-07-07 |
| 238910 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/py-django21: Update to 2.1.10 (Fixes security vulnerability) | 2019-07-07 |
| 238892 | Ports & Packages | Individual Port(s) | kai | Closed | FIXED | irc/irssi: Update to 1.2.1 | 2019-07-02 |
| 238864 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | textproc/expat2: Update to 2.2.7 | 2019-09-25 |
| 238863 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/typo3-9: Update to 9.5.8 | 2019-06-29 |
| 238862 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/typo3-8: Update to 8.7.27 | 2019-06-29 |
| 238854 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | archivers/bzip2: Update to 1.0.7 (Fixes security vulnerabilities) | 2019-06-30 |
| 238843 | Base System | bin | delphij | Closed | FIXED | bzip2: Merge recent upstream bugfixes incl. 3 security vulnerabilities | 2019-08-19 |
| 238798 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: update to 8.6.16 (fixes sa-core-2019-007) | 2019-07-21 |
| 238787 | Base System | kern | jtl | Closed | FIXED | IPv6 remote DoS (panic) vulnerability via m_pulldown() bug | 2019-11-13 |
| 238715 | Ports & Packages | Individual Port(s) | tobik | Closed | DUPLICATE | textproc/expat2: update to 2.2.7 | 2019-07-03 |
| 238705 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns: Update to 4.1.10 (Fixes security vulnerabilities) | 2019-07-01 |
| 238642 | Base System | kern | vmaffione | Closed | FIXED | netmap: fix kernel pointer printing in netmap_generic.c | 2019-07-16 |
| 238641 | Base System | kern | vmaffione | Closed | FIXED | netmap: Remove pointer printing in netmap_mem2.c | 2019-09-07 |
| 238638 | Base System | kern | bugs | Open | --- | mfi: Remove unnecessary pointer printing in mfi.c | 2019-06-17 |
| 238635 | Ports & Packages | Individual Port(s) | hrs | Closed | Overcome By Eve | security/heimdal: Update to 7.7 (7.6 and 7.7 addresses two CVEs plus bugfixes) | 2020-07-04 |
| 238573 | Ports & Packages | Individual Port(s) | marcus | Closed | FIXED | net/netatalk3: Add VuXML entry for CVE-2018-1160 (fixed in 3.1.12) | 2019-06-16 |
| 238486 | Base System | kern | bugs | Open | --- | Possible buffer overflow bug in sc_allocate_keyboard() of sys/dev/syscons/syscons.c | 2023-07-31 |
| 238319 | Base System | kern | bugs | Open | --- | login: Extend and add features to session (struct) | 2019-06-04 |
| 238199 | Ports & Packages | Individual Port(s) | kwm | Closed | FIXED | graphics/ImageMagick7: Update to 7.0.8-47 (Fixes many vulnerabilities) | 2019-05-30 |
| 238049 | Ports & Packages | Individual Port(s) | gnome | Closed | FIXED | textproc/libxslt: Update to 1.1.33, fix CVE-2019-11068 | 2019-07-16 |
| 237938 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/drupal7: update to 7.67 | 2019-06-10 |
| 237922 | Base System | kern | kib | Closed | FIXED | Kernel stack disclosure in function freebsd32_swapcontext of sys/arm64/arm64/freebsd32_machdep.c | 2019-12-15 |
| 237501 | Ports & Packages | Individual Port(s) | jpaetzel | Closed | FIXED | devel/py-yaml: Update to 5.1 | 2020-01-13 |
| 237483 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: Update to 8.6.15 (fixes security vulnerabilities) | 2019-04-25 |
| 237399 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.26 (Fixes multiple CVE) | 2019-05-13 |
| 237398 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql56-server: Update to 5.6.44 (Fixes multiple CVE) | 2019-05-13 |
| 237322 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | databases/influxdb: Update to 1.7.6 | 2019-06-06 |
| 237182 | Ports & Packages | Individual Port(s) | zi | Closed | FIXED | net/freeradius3: Update to 3.0.19 (Fixes several security vulnerabilities) | 2019-04-29 |
| 236818 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | security/clamav: Update to 0.101.2. | 2019-08-01 |
| 236767 | Ports & Packages | Individual Port(s) | acm | Closed | FIXED | www/drupal8: Update to 8.6.13 (Fixes Cross Site Scripting vulnerability: SA-CORE-2019-004) | 2019-03-27 |
| 236634 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns: Update to 4.1.7 (Fixes security vulnerabilities) | 2019-03-19 |
| 236570 | Ports & Packages | Individual Port(s) | pi | Closed | FIXED | databases/percona57-{server,client} update to 5.7.26-29 (fixes several vulnerabilities) | 2019-12-10 |
| 236010 | Base System | misc | bugs | Closed | Not A Bug | rand(3) is a bad RNG, but lots of software uses it. Make it a shim around arcrandom(3) | 2022-06-05 |
| 235930 | Ports & Packages | Individual Port(s) | flo | Closed | FIXED | databases/percona56-{server,client}: Update to 5.6.43-84.3 (fixes several vulnerabilities) | 2019-08-22 |
| 235710 | Ports & Packages | Individual Port(s) | cmt | Closed | FIXED | www/firefox: update to 65.0.1 | 2019-02-13 |
| 235574 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-client: Update to 10.1.38 | 2019-02-22 |
| 235573 | Ports & Packages | Individual Port(s) | brnrd | Closed | FIXED | databases/mariadb101-server: Update to 10.1.38 | 2019-02-08 |
| 235523 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | mail/dovecot: Update to 2.3.4.1 (CVE-2019-3814) | 2019-02-05 |
| 235375 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | [PATCH] net-mgmt/prometheus2: Update to 2.7.1 | 2019-02-01 |
| 235188 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/typo3-9: Update to 9.5.4 | 2019-02-03 |
| 235187 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | www/typo3-8: Update to 8.7.24 | 2019-02-03 |
| 235186 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | security/keybase: Needs PORTREVISON bump and rebuild (CVE-2019-6486) | 2019-01-28 |
| 235140 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/gitea: Update to 1.7.0 (Fixes security vulnerabilities) | 2019-01-27 |
| 235113 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | dns/powerdns-recursor: Update to 4.1.9 (fixes CVE-2019-3806 and CVE-2019-3807) | 2019-01-28 |
| 235056 | Ports & Packages | Individual Port(s) | ler | Closed | FIXED | [new port] security/git-secret: tool for storing secret data in a git repo using gpg | 2019-01-19 |
| 234984 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql80-server: Update to 8.0.14 fixes multiple CVE | 2019-01-26 |
| 234983 | Ports & Packages | Individual Port(s) | mmokhi | Closed | FIXED | databases/mysql57-server: Update to 5.7.25 fixes multiple CVE | 2019-01-21 |
| 234965 | Base System | bin | secteam | Closed | FIXED | scp client multiple vulnerabilities (openssh in base/ports affected: CVE-2018-20685 CVE-2019-6111 CVE-2019-6109,6110) | 2020-07-23 |
| 234938 | Ports & Packages | Individual Port(s) | tcberner | Closed | FIXED | security/botan2: Update to 2.9.0 (Fixes CVE-2018-20187) | 2019-01-27 |
| 234798 | Ports & Packages | Individual Port(s) | dbaio | Closed | FIXED | irc/irssi: Update to 1.1.2 | 2019-01-10 |
| 234670 | Ports & Packages | Individual Port(s) | riggs | Closed | FIXED | net/uriparser: Update to 0.9.1 | 2019-01-26 |
| 234473 | Ports & Packages | Individual Port(s) | sunpoet | Closed | FIXED | graphics/openjpeg: Fix CVE-2018-6616 | 2019-01-24 |
| 234255 | Ports & Packages | Individual Port(s) | swills | Closed | FIXED | www/gitea: Update to 1.6.2 (Fixes security vulnerability) | 2018-12-26 |
| 234191 | Ports & Packages | Individual Port(s) | leres | Closed | FIXED | security/bro: Update to 2.6.1 (Fixes Magellan vulnerability) | 2018-12-21 |
| 234113 | Base System | misc | cy | Closed | FIXED | Update SQlite to 3.26.0 | 2019-01-09 |
| 234112 | Services | Security Team | secteam | Closed | FIXED | SQLite: Remote code execution vulnerability (Magellan) | 2019-03-30 |
| 234103 | Ports & Packages | Individual Port(s) | enlightenment | Closed | FIXED | x11/terminology: Update to 1.3.1 (Fixes CVE-2018-20167: Incorrect escaping of crafted files results in code execution) | 2018-12-21 |
| 234088 | Ports & Packages | Individual Port(s) | wen | Closed | FIXED | www/py-gunicorn : Update to 19.9.0 | 2019-03-07 |
| 234013 | Ports & Packages | Individual Port(s) | doceng | Closed | FIXED | print/ghostscript9-agpl-base: Update to 9.26 (Fixes several security vulnerabilities) | 2018-12-23 |
| 234008 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-9: Update to 9.5.3 | 2018-12-15 |
| 234006 | Ports & Packages | Individual Port(s) | joneum | Closed | FIXED | www/typo3-8: Update to 8.7.22 | 2018-12-15 |
| 233990 | Ports & Packages | Individual Port(s) | chromium | Closed | FIXED | www/chromium: Update to 71.0.3578.98 | 2019-01-08 |
