FreeBSD 14.0 released, OpenSSH and OpenSSL updated

FreeBSD 14.0 is now available for the amd64, aarch64, i386, powerpc, powerpc64, powerpc64le, powerpcspe, armv7, and riscv64 architectures. FreeBSD provides sophisticated features in networking, performance, security, and compatibility. It serves as an … Continue reading FreeBSD 14.0 released, OpenSSH and OpenSSL updated

This Week in Security: IoT In the Hot Tub, App Double Fail, and FreeBSD BadBeacon

[Eaton Zveare] purchased a Jacuzzi hot tub, and splurged for the SmartTub add-on, which connects the whirlpool to the internet so you can control temperature, lights, etc from afar. He …read more Continue reading This Week in Security: IoT In the Hot Tub, App Double Fail, and FreeBSD BadBeacon

Would FreeBSD and OpenBSD have similar known-past-vulnerability stats if they were configured similarly?

OpenBSD has had much fewer "code execution" vulnerabilities and even fewer exploits than FreeBSD, according to https://cvedetails.com :

https://www.cvedetails.com/product/163/Openbsd-Openbsd.html?vendor_id=97
https://www.cvedeta… Continue reading Would FreeBSD and OpenBSD have similar known-past-vulnerability stats if they were configured similarly?

New DNS vulnerabilities have the potential to impact millions of devices

Forescout Research Labs, in partnership with JSOF, disclosed a new set of DNS vulnerabilities, dubbed NAME:WRECK. These vulnerabilities affect four popular TCP/IP stacks – namely FreeBSD, IPnet, Nucleus NET and NetX – which are commonly pre… Continue reading New DNS vulnerabilities have the potential to impact millions of devices