Slackware 10.0: 2004-296-01 Critical: Gaim Buffer Overflow
slackware
October 23, 2004
New gaim packages are available for Slackware 9.0, 9.1, 10.0 and -current to fix a buffer overflow in the MSN protocol
Summary
Here are the details from the Slackware 10.0 ChangeLog: patches/packages/gaim-1.0.2-i486-1.tgz: Upgraded to gaim-1.0.2 and gaim-encryption-2.32. A buffer overflow in the MSN protocol handler for GAIM 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and may allow the execution of arbitrary code. For more details, see: https://www.cve.org/CVERecord?id=CAN-2004-0891 (* Security fix *)
Topics Covered
Where Find New Packages
Updated package for Slackware 9.0:
Updated package for Slackware 9.1:
Updated package for Slackware 10.0:
Updated package for Slackware -current:
MD5 Signatures
Slackware 9.0 package:
1a5f3b8edcf6ceceefea4e23cc177509 gaim-1.0.2-i386-1.tgz
Slackware 9.1 package:
52273586aefcd5b72db8b455fb4b7790 gaim-1.0.2-i486-1.tgz
Slackware 10.0 package:
f40eebc81b21b3503be5fc721bcd893f gaim-1.0.2-i486-1.tgz
Slackware -current package:
b459d1f10c35d3e4df78a3e47dbc693a gaim-1.0.2-i486-1.tgz
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Installation instructions: Upgrade the package as root: # upgradepkg gaim-1.0.2-i486-1.tgz
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!