1:53 PM - CVE-2008-1391 Integer Overflow Fixed
This affected the strfmon function in libc. It has been corrected in CURRENT. A memory leak was also corrected.
References:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1391
http://www.midnightbsd.org/cgi-bin/cvsweb.cgi/src/lib/libc/stdlib/strfmon.c