Detections
Analytics

FreeBSD : Memory leak bug in Toxcore (4c11b51e-cd8d-11e8-b0cb-a0f3c100ae18)

high Nessus Plugin ID 118074

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The Tox project blog reports :

A memory leak bug was discovered in Toxcore that can be triggered remotely to exhaust one's system memory, resulting in a denial of service attack. The bug is present in the TCP Server module of Toxcore and therefore it affects mostly bootstrap nodes. Regular Tox clients generally have the TCP Server functionality disabled by default, leaving them unaffected.

Solution

Update the affected package.

See Also

http://www.nessus.org/u?29ce1d88

http://www.nessus.org/u?48d27b39

Plugin Details

Severity: High

ID: 118074

File Name: freebsd_pkg_4c11b51ecd8d11e8b0cba0f3c100ae18.nasl

Version: 1.2

Type: local

Published: 10/12/2018

Updated: 11/10/2018

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:toxcore, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 10/11/2018

Vulnerability Publication Date: 9/29/2018