FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- OPIE off-by-one stack overflow

Affected packages
6.4 < FreeBSD < 6.4_10
7.1 < FreeBSD < 7.1_12
7.2 < FreeBSD < 7.2_8
7.3 < FreeBSD < 7.3_1
8.0 < FreeBSD < 8.0_3

Details

VuXML ID 768cfe70-ca40-11df-aade-0050568f000c
Discovery 2010-05-27
Entry 2010-10-24

Problem Description:

A programming error in the OPIE library could allow an off-by-one buffer overflow to write a single zero byte beyond the end of an on-stack buffer.

References

FreeBSD Advisory SA-10:05.opie