Freebsd · Freebsd · CVE-2006-5680
Name of the Vulnerable Software and Affected Versions:
FreeBSD versions 6-STABLE after 2006-09-05 and before 2006-11-08
Description:
The issue allows context-dependent attackers to cause a denial of service, specifically CPU consumption, by providing a malformed archive. This archive causes the library to skip a region past the actual end of the archive, triggering an infinite loop that attempts to read more data.
Recommendations:
For FreeBSD versions 6-STABLE after 2006-09-05 and before 2006-11-08, update to a version outside of this range to resolve the issue.