FreeBSD 13.5-RELEASE Errata
Abstract
This document lists errata items for FreeBSD 13.5-RELEASE, containing significant information discovered after the release or too late in the release cycle to be otherwise included in the release documentation. This information includes security advisories, as well as news relating to the software or documentation that could affect its operation or usability. An up-to-date version of this document should always be consulted before installing this version of FreeBSD.
Table of Contents
Introduction
This errata document contains "late-breaking news" about FreeBSD 13.5-RELEASE. Before installing this version, it is important to consult this document to learn about any post-release discoveries or problems that may already have been found and fixed.
Any version of this errata document actually distributed with the release (for example, on a CDROM distribution) will be out of date by definition, but other copies are kept updated on the Internet and should be consulted as the "current errata" for this release. These other copies of the errata are located at https://www.FreeBSD.org/releases/, plus any sites which keep up-to-date mirrors of this location.
Source and binary snapshots of FreeBSD 13-STABLE also contain up-to-date copies of this document (as of the time of the snapshot).
For a list of all FreeBSD CERT security advisories, see https://www.FreeBSD.org/security/.
Security Advisories
| Advisory | Date | Topic |
|---|---|---|
|
2 July 2025 |
Use-after-free in multi-threaded xz decoder |
|
|
8 August 2025 |
Integer overflow in libarchive leading to double free |
|
|
30 September 2025 |
Multiple vulnerabilities in OpenSSL |
|
|
22 October 2025 |
SO_REUSEPORT_LB breaks connect(2) for UDP sockets |
|
|
26 November 2025 |
Cache poison in local-unbound service |
|
|
16 December 2025 |
ipfw denial of service |
|
|
16 December 2025 |
Remote code execution via ND6 Router Advertisements |
|
|
27 January 2026 |
Multiple vulnerabilities in OpenSSL |
|
|
27 January 2026 |
Jail escape by a privileged user via nullfs |
|
|
24 February 2026 |
Jail chroot escape via fd exchange with a different jail |
|
|
24 February 2026 |
Local DoS and possible privilege escalation via routing sockets |
|
|
26 March 2026 |
Remote code execution via RPCSEC_GSS packet validation |
|
|
21 April 2026 |
Kernel use-after-free bug in the TIOCNOTTY handler |
|
|
21 April 2026 |
Missing large page handling in pmap_pkru_update_range() |
|
|
29 April 2026 |
Remote code execution via malicious DHCP options |
|
|
29 April 2026 |
Local privilege escalation via execve() |
|
|
29 April 2026 |
pf can overflow the stack parsing crafted SCTP packets |
|
|
29 April 2026 |
Remotely triggerable out-of-bounds heap write in dhclient |
|
|
29 April 2026 |
Stack overflow via select() file descriptor set overflow |
|
|
29 April 2026 |
Heap overflow in libnv |
Errata Notices
| Errata | Date | Topic |
|---|---|---|
|
10 April 2025 |
Timezone database information update |
|
|
10 April 2025 |
Update expat to 2.7.1 |
|
|
10 April 2025 |
Root certificate bundle update |
|
|
2 July 2025 |
Dynamically-loaded C++ libraries crashing at exit |
|
|
2 July 2025 |
Corruption in ZFS replication streams from encrypted datasets |
|
|
2 July 2025 |
ena resets and kernel panic on Nitro v4 or newer instances |
|
|
16 September 2025 |
arm64 syscall(2) allows unprivileged user to panic kernel |
|
|
30 September 2025 |
freebsd-update(8) installs libraries in incorrect order |
|
|
27 January 2026 |
The page fault handler fails to zero memory |
|
|
21 April 2026 |
The page fault handler fails to zero memory |
|
|
29 April 2026 |
Timezone database information update |
|
|
1 May 2026 |
dhclient(8) lease validation is too strict |
|
|
1 May 2026 |
Source inconsistency between freebsd-update, EN/SAs, and git |
Open Issues
No open issues.
Late-Breaking News
No late-breaking news.
Last modified on: May 2, 2026 by Philip Paeps