CVE-2013-4385

Name of the Vulnerable Software and Affected Versions CHICKEN versions prior to 4.8.0.5 CHICKEN development snapshots versions prior to 4.8.3

Description The issue is related to a buffer overflow in the read-string! procedure within the extras unit. This can be exploited by remote attackers to cause memory corruption and application crash, potentially leading to the execution of arbitrary code. The attack vector involves a #f value in the NUM argument.

Recommendations For CHICKEN versions prior to 4.8.0.5, update to version 4.8.0.5 or later to resolve the issue. For CHICKEN development snapshots versions prior to 4.8.3, update to version 4.8.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the read-string! procedure in the extras unit until a patch is applied.