Some BSD related news, articles, and discussions you may have missed out on. Enjoy and happy BSD-ing!

OpenZFS Support Merged Into Mainline FreeBSD via Phoronix

OpenZFS 2.0-RC3 Released With Bug Fixes, Intel QAT Support For Newer Kernels via Phoronix

FreeBSD 11.3 end-of-life via BSDSec

DragonFlyBSD 5.8.2 Released With Numerous Fixes via Phoronix

NetBSD Has Some Wayland Support But X11 Is Far More Mature via Phoronix

The Power To Serve: Setting Up FreeBSD via nxfury

FreeBSD 12.2 BETA2 Brings TRIM For Bhyve’s VirtIO-BLK, Intel ICE Added via Phoronix

FREEBSD DISPLAY DRIVER – X64 Version: 450.80.02 via NVIDIA

The FreeBSD Project Discord

Started using FreeBSD on an old laptop from freebsd

BastilleBSD – native container management for FreeBSD from freebsd

My BSD sucks less than yours from BSD

Gaming on BSD from freebsd

Macbook quadruple boot. FreeBSD is Cute! from freebsd

 

— Security advisories —

FreeBSD : ark — extraction outside of extraction directory (38fdf07b-e8ec-11ea-8bbe-e0d55e2a8bf9) via Tenable

Vigil@nce – FreeBSD : buffer overflow via posix_spawnp via Vigil@nce

Vigil@nce – FreeBSD: privilege escalation via IPv6 Socket Option via Vigil@nce

ure device driver susceptible to packet-in-packet attack via FreeBSD-Announce

bhyve SVM guest escape via FreeBSD-Announce

FreeBSD — ftpd privilege escalation via ftpchroot feature via VuXML

FreeBSD — bhyve privilege escalation via VMCS access via VuXML

FreeBSD : Node.js — September 2020 Security Releases (4ca5894c-f7f1-11ea-8ff8-0022489ad614) via Tenable

FreeBSD : chromium — multiple vulnerabilities (bed5d41a-f2b4-11ea-a878-e09467587c17) via Tenable

FreeBSD : zeek — Various vulnerabilities (2c92fdd3-896c-4a5a-a0d8-52acee69182d) via Tenable

FreeBSD : samba — Unauthenticated domain takeover via netlogon (24ace516-fad7-11ea-8d8c-005056a311d1) via Tenable

FreeBSD : Nextcloud — Password share by mail not hashed (eeec4e6f-fa71-11ea-9bb7-d4c9ef517024) via Tenable

FreeBSD : libxml — multiple vulnerabilities (f5abafc0-fcf6-11ea-8758-e0d55e2a8bf9) via Tenable

FreeBSD: VID-1E7B316B-C6A8-11EA-A7D5-001999F8D30B (CVE-2020-14675): VirtualBox — Multiple vulnerabilities via Rapid7

FreeBSD : Python — multiple vulnerabilities (2cb21232-fb32-11ea-a929-a4bf014bf5f7) via Tenable

FreeBSD : webkit2-gtk3 — multible vulnerabilities (efd03116-c2a9-11ea-82bc-b42e99a1b9c3) via Tenable

FreeBSD : py-matrix-synapse — malformed events may prevent users from joining federated rooms (2327234d-fc4b-11ea-adef-641c67a117d8) via Tenable

FreeBSD : Rails — Potential XSS vulnerability (7b630362-f468-11ea-a96c-08002728f74c) via Tenable

FreeBSD : Gitlab — multiple vulnerabilities (a3495e61-047f-11eb-86ea-001b217b3468) via Tenable

FreeBSD : libexif — multiple vulnerabilities (cff0b2e2-0716-11eb-9e5d-08002728f74c) via Tenable

FreeBSD : zeek — Vulnerability due to memory leak (769a4f60-9056-4c27-89a1-1758a59a21f8) via Tenable

FreeBSD : chromium — multiple vulnerabilities (64988354-0889-11eb-a01b-e09467587c17) via Tenable

FreeBSD : Rails — Possible XSS vulnerability (95f306a6-0aee-11eb-add4-08002728f74c) via Tenable

FreeBSD : Apache Ant leaks sensitive information via the java.io.tmpdir (6d5f1b0b-b865-48d5-935b-3fb6ebb425fc) via Tenable

FreeBSD : powerdns — Leaking uninitialised memory through crafted zone records (b371db92-fe34-11ea-b90e-6805ca2fa271) via Tenable

FreeBSD : tt-rss — multiple vulnerabilities (2eec1e85-faf3-11ea-8ac0-4437e6ad11c4) via Tenable

FreeBSD: VID-A3495E61-047F-11EB-86EA-001B217B3468 (CVE-2020-13334): Gitlab — multiple vulnerabilities via Rapid7

FreeBSD: VID-EFD03116-C2A9-11EA-82BC-B42E99A1B9C3 (CVE-2020-9802): webkit2-gtk3 — multible vulnerabilities via Rapid7