FreeBSD VuXML

Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

in the FreeBSD Ports Collection repository, path ports/security/vuxml/vuln.xml
as a local copy
as a local copy, compressed with bzip2
as a local copy, compressed with xz
as a local copy, compressed with zstandard

Please report security issues to the FreeBSD Security Team at <ports-secteam@FreeBSD.org>. Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.

erlang-runtime29

erlang-runtime29 at FreshPorts.org

Entered	Topic
2026-05-28	Erlang/OTP -- OCSP responder certificate accepted after expiry in public_key
	Erlang/OTP -- public_key accepts non-CA certificate as intermediate issuer
	Erlang/OTP -- TLS hostname verification bypass via Subject CommonName fallback and name constraints