This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
A programming error in the standard I/O library's __sflush() function
could erroneously adjust the buffered stream's internal state even
when no write actually occurred in the case when write(2) system call
returns an error. Impact : The accounting mismatch would accumulate,
if the caller does not check for stream status and will eventually
lead to a heap buffer overflow.
Such overflows may lead to data corruption or the execution of
arbitrary code at the privilege level of the calling program.
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 6.9
CVSS Temporal Score : 6.0
Public Exploit Available : false