Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Gentoo: GLSA-200401-04 Normal: GAIM 0.75 Remote Overflow Advisory

gentoo
Calendar Grey January 27, 2004
Dist Gentoo Esm H88
GAIM 0.75 Remote exploit flaw identified in Gentoo alert, urging users to update for improved protection.
Various overflows in the handling of AIM DirectIM packets was revealed in GAIM that could lead to a remote compromise of the IM client.

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory                           GLSA 200401-04
~                                            https://security.gentoo.org/

~  Severity: Normal
~     Title: GAIM 0.75 Remote overflows
~      Date: January 27, 2004
~      Bugs: #39470
~        ID: 200401-04


Synopsis
=======
Various overflows in the handling of AIM DirectIM packets was revealed
in GAIM that could lead to a remote compromise of the IM client.

Background
=========
Gaim is a multi-platform and multi-protocol instant messaging client. It
is compatible with AIM , ICQ, MSN Messenger, Yahoo, IRC, Jabber,
Gadu-Gadu, and the Zephyr networks.

==========
Yahoo changed the authentication methods to their IM servers, rendering
GAIM useless. The GAIM team released a rushed release solving this
issue, however, at the same time a code audit revealed 12
vulnerabilities [ 1 ].

Impact
=====
Due to the nature of instant messaging many of these bugs require
man-in-the-mid...
Read the Full Advisory
Topics%20covered

Topics Covered

security advisory Gentoo software upgrade remote compromise GAIM IM client overflow risk

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo software upgrade remote compromise GAIM IM client overflow risk

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here