Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2018-02-23 tomcat -- Security constraints ignored or applied too late
2017-10-06 tomcat -- Remote Code Execution
2017-01-07 tomcat -- information disclosure vulnerability
tomcat -- multiple vulnerabilities
tomcat -- multiple vulnerabilities
2016-02-28 tomcat -- multiple vulnerabilities
2015-06-16 tomcat -- multiple vulnerabilities
2014-07-23 tomcat -- multiple vulnerabilities
2012-12-04 tomcat -- bypass of CSRF prevention filter
tomcat -- bypass of security constraints
tomcat -- denial of service
2012-11-08 tomcat -- authentication weaknesses
tomcat -- Denial of Service
2012-01-17 tomcat -- Denial of Service
2011-02-15 tomcat -- Cross-site scripting vulnerability
2010-04-24 tomcat -- information disclosure vulnerability
2007-07-24 tomcat -- multiple vulnerabilities
tomcat -- XSS vulnerability in sample applications