FreeBSD : bogofilter -- heap underrun on malformed base64 input (25ed4ff8-8940-11df-a339-0026189baca3)
Medium Nessus Plugin ID 47616
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionJulius Plenz reports :
I found a bug in the base64_decode function which may cause memory corruption when the function is executed on a malformed base64 encoded string.
If a string starting with an equal-sign is passed to the base64_decode function it triggers a memory corruption that in some cases makes bogofilter crash.
SolutionUpdate the affected packages.