The host is missing a critical severity security update according to Google advisory. The update is required to fix a buffer overflow vulnerability. The flaw is present in the application, which fails to handle a crafted response. Successful exploitation allows remote HTTP servers to cause a denial of service (application crash) or possibly execute arbitrary code.