Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ekg | Ekg | 1.1 (including) | 1.1 (including) |
| Ekg | Ekg | 1.3 (including) | 1.3 (including) |
| Ekg | Ekg | 1.4 (including) | 1.4 (including) |
| Ekg | Ekg | 1.5 (including) | 1.5 (including) |
| Ekg | Ekg | 1.6_rc1 (including) | 1.6_rc1 (including) |
| Ekg | Ekg | 2005-04-11 (including) | 2005-04-11 (including) |
| Ekg | Ekg | 2005-06-05 (including) | 2005-06-05 (including) |
| Red Hat Enterprise Linux 4 | RedHat | kdenetwork-7:3.3.1-2.3 | * |
| Centericq | Ubuntu | dapper | * |
| Centericq | Ubuntu | edgy | * |
| Centericq | Ubuntu | feisty | * |
| Centerim | Ubuntu | devel | * |
| Ekg | Ubuntu | dapper | * |
| Ekg | Ubuntu | devel | * |
| Ekg | Ubuntu | edgy | * |
| Ekg | Ubuntu | feisty | * |
References
- http://marc.info/?l=bugtraq\u0026m=112198499417250\u0026w=2
- http://www.debian.org/security/2005/dsa-813
- http://www.securityfocus.com/bid/14415
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10281
- http://marc.info/?l=bugtraq\u0026m=112198499417250\u0026w=2
- http://www.debian.org/security/2005/dsa-813
- http://www.securityfocus.com/bid/14415
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10281