FreeBSD : apache-xml-security-c -- heap overflow during XPointer evaluation (81da673e-dfe1-11e2-9389-08002798f6ff)
High Nessus Plugin ID 67103
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionThe Apache Software Foundation reports :
The attempted fix to address CVE-2013-2154 introduced the possibility of a heap overflow, possibly leading to arbitrary code execution, in the processing of malformed XPointer expressions in the XML Signature Reference processing code.
SolutionUpdate the affected package.