Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2021-09-21 libssh -- possible heap-buffer overflow vulnerability
2020-04-19 Client/server denial of service when handling AES-CTR ciphers
2020-02-02 libssh -- Unsanitized location in scp could lead to unwanted command execution
2018-10-17 libssh -- authentication bypass vulnerability
2016-03-05 libssh -- weak Diffie-Hellman secret generation
2015-05-10 libssh -- null pointer dereference
2014-10-29 libssh -- PRNG state reuse on forking servers