Rapid7 Vulnerability & Exploit Database

FreeBSD: VID-5A771686-9E33-11E8-8B2D-9CF7A8059466 (CVE-2017-9334): chicken -- multiple vulnerabilities

Back to Search

FreeBSD: VID-5A771686-9E33-11E8-8B2D-9CF7A8059466 (CVE-2017-9334): chicken -- multiple vulnerabilities

Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
03/16/2017
Created
03/19/2019
Added
08/14/2018
Modified
05/07/2019

Description

An incorrect "pair?" check in the Scheme "length" procedure results in an unsafe pointer dereference in all CHICKEN Scheme versions prior to 4.13, which allows an attacker to cause a denial of service by passing an improper list to an application that calls "length" on it.

Solution(s)

  • freebsd-upgrade-package-chicken

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;