FreeBSD : newsfetch -- server response buffer overflow vulnerability (76e0b133-6bfd-11d9-a5df-00065be4b5b6)
High Nessus Plugin ID 18987
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionThe newsfetch program uses the sscanf function to read information from server responses into static memory buffers. Unfortunately this is done without any proper bounds checking. As a result long server responses may cause an overflow when a newsgroup listing is requested from an NNTP server.
SolutionUpdate the affected package.