Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2014-06-05 OpenSSL -- multiple vulnerabilities
2014-05-03 OpenSSL -- NULL pointer dereference / DoS
2014-04-23 OpenSSL -- Remote Data Injection / DoS
2014-04-11 OpenSSL -- Local Information Disclosure
2014-04-07 OpenSSL -- Remote Information Disclosure
2014-01-06 openssl -- multiple vulnerabilities
2013-02-06 OpenSSL -- TLS 1.1, 1.2 denial of service
2012-05-10 OpenSSL -- DTLS and TLS 1.1, 1.2 denial of service
2012-04-21 OpenSSL -- integer conversions result in memory corruption
2012-03-15 OpenSSL -- CMS and S/MIME Bleichenbacher attack
2012-01-20 OpenSSL -- DTLS Denial of Service
2012-01-14 OpenSSL -- multiple vulnerabilities
2011-09-07 OpenSSL -- multiple vulnerabilities
2010-11-17 openssl -- TLS extension parsing race condition
2009-05-30 openssl -- denial of service in DTLS implementation
2007-02-26 OpenSSL -- Multiple problems in crypto(3)
2006-12-19 openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3)
2005-10-12 openssl -- potential SSL 2.0 rollback
2004-03-17 OpenSSL ChangeCipherSpec denial-of-service vulnerability