Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2024-02-13 DNSSEC validators -- denial-of-service/CPU exhaustion from KeyTrap and NSEC3 vulnerabilities
2022-04-03 dnsmasq -- heap use-after-free in dhcp6_no_relay
2021-03-18 dnsmasq -- cache poisoning vulnerability in certain configurations
2021-01-20 dnsmasq -- DNS cache poisoning, and DNSSEC buffer overflow, vulnerabilities
2017-10-02 dnsmasq -- multiple vulnerabilities
2016-06-30 dnsmasq -- denial of service
2015-05-23 dnsmasq -- data exposure and denial of service
2009-09-02 dnsmasq -- TFTP server remote code injection vulnerability