FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libgadu -- multiple vulnerabilities

Affected packages
gaim < 1.4.0_1
ja-gaim < 1.4.0_1
ko-gaim < 1.4.0_1
ru-gaim < 1.4.0_1
3.2.2 < kdenetwork < 3.4.2
pl-ekg < 1.6r3,1
centericq < 4.21.0_1

Details

VuXML ID 3b4a6982-0b24-11da-bc08-0001020eed82
Discovery 2005-07-21
Entry 2005-08-12
Modified 2005-10-23

Wojtek Kaniewski reports:

Multiple vulnerabilities have been found in libgadu, a library for handling Gadu-Gadu instant messaging protocol. It is a part of ekg, a Gadu-Gadu client, but is widely used in other clients. Also some of the user contributed scripts were found to behave in an insecure manner.

References

Bugtraq ID 14345
CVE Name CVE-2005-1850
CVE Name CVE-2005-1851
CVE Name CVE-2005-1852
CVE Name CVE-2005-2369
CVE Name CVE-2005-2370
CVE Name CVE-2005-2448
Message 42DFF06F.7060005@toxygen.net
URL http://gaim.sourceforge.net/security/?id=20
URL http://www.kde.org/info/security/advisory-20050721-1.txt