A local overflow exists in FreeBSD. The setlocale() function fails to check bounds of the PATH_LOCALE environment variable resulting in a stack overflow. With a specially crafted request, an attacker can gain root privileges resulting in a loss of integrity.
Currently, there are no known workarounds or upgrades to correct this issue. However, FreeBSD has released a patch to address this vulnerability.