FreeBSD : Memory leak bug in Toxcore (4c11b51e-cd8d-11e8-b0cb-a0f3c100ae18)

High Nessus Plugin ID 118074

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The Tox project blog reports :

A memory leak bug was discovered in Toxcore that can be triggered remotely to exhaust one's system memory, resulting in a denial of service attack. The bug is present in the TCP Server module of Toxcore and therefore it affects mostly bootstrap nodes. Regular Tox clients generally have the TCP Server functionality disabled by default, leaving them unaffected.

Solution

Update the affected package.

See Also

http://www.nessus.org/u?29ce1d88

http://www.nessus.org/u?dc74c3a7

Plugin Details

Severity: High

ID: 118074

File Name: freebsd_pkg_4c11b51ecd8d11e8b0cba0f3c100ae18.nasl

Version: 1.1

Type: local

Published: 2018/10/12

Modified: 2018/10/12

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:toxcore, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2018/10/11

Vulnerability Publication Date: 2018/09/29