Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2019-09-02 libgcrypt -- ECDSA timing attack
2018-06-13 libgcrypt -- side-channel attack vulnerability
2017-08-30 libgcrypt -- side-channel attack vulnerability
2017-06-30 libgcrypt -- side-channel attack on RSA secret keys
2016-08-18 gnupg -- attacker who obtains 4640 bits from the RNG can trivially predict the next 160 bits of output
2016-02-16 libgcrypt -- side-channel attack on ECDH
2013-08-17 GnuPG and Libgcrypt -- side-channel attack vulnerability