Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2005-09-23 firefox & mozilla -- multiple vulnerabilities
2005-09-22 firefox & mozilla -- command line URL shell command injection
2005-09-10 firefox & mozilla -- buffer overflow vulnerability
2005-07-16 firefox & mozilla -- multiple vulnerabilities
2005-05-12 mozilla -- "Wrapped" javascript: urls bypass security checks
mozilla -- privilege escalation via non-DOM property overrides
2005-05-11 mozilla -- code execution via javascript: IconURL vulnerability
2005-04-16 mozilla -- code execution through javascript: favicons
mozilla -- javascript "lambda" replace exposes memory contents
mozilla -- privilege escalation via DOM property overrides
2005-03-24 mozilla -- heap buffer overflow in GIF image processing
2005-02-26 mozilla -- arbitrary code execution vulnerability
mozilla -- insecure temporary directory vulnerability
2005-01-24 web browsers -- window injection vulnerabilities
2005-01-18 mozilla -- insecure permissions for some downloaded files
2004-09-30 mozilla -- hostname spoofing bug
mozilla -- scripting vulnerabilities
mozilla -- users may be lured into bypassing security dialogs
2004-09-28 mozilla -- BMP decoder vulnerabilities