- The function host_aton() can overflow a buffer
if it is presented with an illegal IPv6 address
that has more than 8 components.
- The second report described a buffer overflow
in the function spa_base64_to_bits(), which is part
of the code for SPA authentication.