According to this Ars Technica article, there is a buffer overflow bug in the GNU C Library v2.9 and later which was introduced in 2008. The problem is the function getaddrinfo(3) which does DNS lookups.
Now my question is, is FreeBSD vulnerable?
Now my question is, is FreeBSD vulnerable?