1. byrnejb

    OpenSSH_7.9p1, OpenSSL 1.1.1k-freebsd 24 Aug 2021 and CVE-2019-16905

    13.0-RELEASE-p6 I am dealing with a pci audit and the reason given for a failure is this: CVSS Base Score:4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P CVSS Temporal Score:3.4 E:POC/RL:OF/RC:C Severity:3 QID:38773 Category:General remote services CVE ID:CVE-2019-16905 Vendor Reference:OpenSSH 8.1 Bugtraq...
  2. C

    Greenbone Security Assistant Installation (previously "OpenVAS")

    There are several tutorials and guides on how to install OpenVAS on FreeBSD; however, recently OpenVAS was renamed to Greenbone Security Assistant, spread across multiple packages and now no longer fits any of the past setup descriptions. After wading through the documentation myself, I figured...
  3. G

    How do I know a CVE has been fixed for FreeBSD

    Package www/firefox returned so many CVE's from pkg aud -F. So how can I know that all those CVE are patched or not. Some of them are *RESERVED*. Say status of CVE-5863; CVE-2018-5156 etc. from various web sources of cve.mitre & NVD. From FreshPorts-VuXML says an older version is vulnerable...
  4. French Fries

    FreeBSD vulnerability scan

    Dear friends, I switched only recently to FreeBSD from Debian GNU/Linux. Is there an equivalent of debsecan for FreeBSD? debsecan scans all installed packages and looks for vulnerabilities in the CVE database: Example: debsecan --suite=sid CVE-2017-11333...
  5. vermaden

    Truth About Linux 4.6 Security from GRSecurity Member

    HERE: Let me paste it below, dunno how long it will hang on the net. The Truth about Linux 4.6 by spender » Sat May 14, 2016 1:06 pm As anticipated in public comments, the Linux Foundation is already beginning a campaign to rewrite...