FreeBSD : FreeBSD -- Multiple integer overflows in expat (libbsdxml) XML parser (0da8a68e-600a-11e6-a6c3-14dae9d210b8)
Medium Nessus Plugin ID 92894
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionMultiple integer overflows have been discovered in the XML_GetBuffer() function in the expat library. Impact : The integer overflows may be exploited by using specifically crafted XML data and lead to infinite loop, or a heap buffer overflow, which results in a Denial of Service condition, or enables remote attackers to execute arbitrary code.
SolutionUpdate the affected packages.