FreeBSD : chicken -- buffer overrun in substring-index[-ci] (e7b7f2b5-177a-11e5-ad33-f8d111029e6a)
High Nessus Plugin ID 84328
The remote FreeBSD host is missing a security-related update.
chicken developer Moritz Heidkamp reports : The substring-index[-ci] procedures of the data-structures unit are vulnerable to a buffer overrun attack when passed an integer greater than zero as the optional START argument. As a work-around you can switch to SRFI 13's string-contains procedure which also returns the substring's index in case it is found.