Welcome to MidnightBSD

MidnightBSD is a BSD-derived operating system developed with desktop users in mind. It includes all the software you'd expect for your daily tasks — email, web browsing, word processing, gaming, and much more.

With a small community of dedicated developers, MidnightBSD strives to create an easy-to-use operating system everyone can use, freely. Available for x86, AMD64 and as Virtual Machines.

Get MidnightBSD

Latest Release - 2.1.0

Release Notes

News »

Tue, 23 Mar 2021 17:40

Several bug fixes have been made on the mport package manager.  It's now using a sha256 hash for ve

Read more...

Sat, 27 Feb 2021 06:17

MidnightBSD mports started as a refactor of the FreeBSD ports with some influence from OpenBSD many

Read more...

Sat, 27 Feb 2021 05:46

We recently added a new port, mports/sysutils/bastille that allows you to manage containers. This is

Read more...

Wed, 24 Feb 2021 15:40

New 2.0.5 release tagged in git. Happy 15th anniversary to MidnightBSD! Fixes: pam security issue Up

Read more...

Security »

September 23, 2020

MidnightBSD 1.2.10
udf: Validate the full file entry length
Otherwise a corrupted file entry containing invalid extended attribute lengths or allocation descriptor lengths can trigger an overflow when the file entry is loaded.
Discovered by: C Turt

Read more ...

September 15, 2020

MidnightBSD 1.2.9
ftpd
A ftpd(8) bug in the implementation of the file system sandbox, combined with capabilities available to an authenticated FTP user, can be used to escape the file system restriction configured in ftpchroot(5). Moreover, the bug allows a malicious client to gain root privileges.

bhyve
AMD and Intel CPUs support hardware virtualization using specialized data structures that control various aspects of guest operation. These are the Virtual Machine Control Structure (VMCS) on Intel CPUs, and the Virtual Machine Control Block (VMCB) on AMD CPUs. Insufficient access controls allow root users, including those running in a jail, to change these data structures.
A number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped.

Read more ...

View available mports

MidnightBSD App Store