FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

bro -- "Magellan" remote code execution vulnerability in bundled sqlite

Affected packages
bro < 2.6.1

Details

VuXML ID b80f039d-579e-4b82-95ad-b534a709f220
Discovery 2018-12-01
Entry 2018-12-20

Bro Network security Monitor reports:

Bro 2.6.1 updates the embedded SQLite to version 3.26.0 to address the "Magellan" remote code execution vulnerability. The stock Bro configuration/scripts don't use SQLite by default, but custom user scripts/packages may.

References

URL https://www.bro.org/download/NEWS.bro.html