I know almost nothing about BlastPass, but, looking at the first page of search hits, it seemed to have been an Apple implementation vulnerability rather than some vulnerability baked into the standard itself. In general, buffer overflows are implementation-specific.
Oh. That’s what I get for making wild-assed guesses from the first page of search results ¯\_(ツ)_/¯