Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2023-03-30 rubygem-time -- ReDoS vulnerability
rubygem-uri -- ReDoS vulnerability
2022-11-24 rubygem-cgi -- HTTP response splitting vulnerability
2022-04-13 Ruby -- Buffer overrun in String-to-Float conversion
Ruby -- Double free in Regexp compilation
2021-11-24 rubygem-cgi -- buffer overrun in CGI.escape_html
rubygem-cgi -- cookie prefix spoofing in CGI::Cookie.parse
2021-11-15 rubygem-date -- Regular Expression Denial of Service Vunlerability of Date Parsing Methods
2021-07-14 Ruby -- multiple vulnerabilities