Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2020-05-09 Python -- CRLF injection via the host part of the url passed to urlopen()
2020-04-23 Python -- Regular Expression DoS attack against client
2019-03-26 Python -- NULL pointer dereference vulnerability
2018-05-05 python 2.7 -- multiple vulnerabilities
2017-10-11 Python 2.7 -- multiple vulnerabilities
2016-07-03 Python -- smtplib StartTLS stripping vulnerability
2016-06-30 Python -- HTTP Header Injection in Python urllib
2016-06-17 Python -- Integer overflow in zipimport module
2014-03-01 Python -- buffer overflow in socket.recvfrom_into()
2012-02-14 Python -- DoS via malformed XML-RPC / HTTP POST request