apache -- apr_uri_parse IPv6 address handling vulnerability

ID 762D1C6D-0722-11D9-B45D-000C41E2CDAD
Type freebsd
Reporter FreeBSD
Modified 2004-09-15T00:00:00


The Apache Software Foundation Security Team discovered a programming error in the apr-util library function apr_uri_parse. When parsing IPv6 literal addresses, it is possible that a length is incorrectly calculated to be negative, and this value is passed to memcpy. This may result in an exploitable vulnerability on some platforms, including FreeBSD.