Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2022-07-05 OpenSSL -- AES OCB fails to encrypt some bytes
2022-07-03 OpenSSL -- Heap memory corruption with RSA private key operation
2022-06-22 OpenSSL -- Command injection vulnerability
2022-05-04 OpenSSL -- Multiple vulnerabilities
2022-03-16 OpenSSL -- Infinite loop in BN_mod_sqrt parsing certificates
2022-01-28 OpenSSL -- BN_mod_exp incorrect results on MIPS
2021-12-14 OpenSSL -- Certificate validation issue
2021-08-24 OpenSSL -- multiple vulnerabilities
2021-02-16 OpenSSL -- Multiple vulnerabilities
2018-10-29 OpenSSL -- Multiple vulnerabilities in 1.1 branch
2018-06-12 OpenSSL -- Client DoS due to large DH parameter
2018-04-16 OpenSSL -- Cache timing vulnerability
2018-03-27 OpenSSL -- multiple vulnerabilities
2017-11-02 OpenSSL -- Multiple vulnerabilities
2017-02-16 openssl -- crash on handshake
2017-01-26 OpenSSL -- multiple vulnerabilities
2016-11-10 openssl -- multiple vulnerabilities
2016-11-02 FreeBSD -- OpenSSL Remote DoS vulnerability
2016-09-26 OpenSSL -- multiple vulnerabilities
2016-09-22 OpenSSL -- multiple vulnerabilities