I've installed the latest Firefox package (firefox-61.0.1_1,1) on my FreeBSD 11.2-RELEASE, and activated u2f (security.webauth.u2f -> true), but the yubikey is not activated/recognized by Firefox.
Package www/firefox returned so many CVE's from pkg aud -F.
So how can I know that all those CVE are patched or not. Some of them are *RESERVED*.
Say status of CVE-5863; CVE-2018-5156 etc. from various web sources of cve.mitre & NVD.
From FreshPorts-VuXML says an older version is vulnerable...