CVE-2005-2370

Synopsis kdenetwork security update Type/Severity Security Advisory: Critical Topic Updated kdenetwork packages to correct a security flaw in Kopete are nowavailable for Red Hat Enterprise Linux 4This update has been rated as having critical security impact by the RedHat Security Response Team De ...

Synopsis gaim security update Type/Severity Security Advisory: Critical Topic An updated gaim package that fixes multiple security issues is now availableThis update has been rated as having critical security impact by the RedHat Security Response Team Description Gaim is an Internet Mess ...

Marcin Owsiany and Wojtek Kaniewski discovered that some contributed scripts (contrib/ekgh, contrib/ekgnvsh, and contrib/getekgsh) in the ekg package created temporary files in an insecure way, which allowed exploitation of a race condition to create or overwrite files with the privileges of the user invoking the script (CAN-2005-1850) ...

Daniel Atallah discovered a Denial of Service vulnerability in the file transfer handler of OSCAR (the module that handles various instant messaging protocols like ICQ) A remote attacker could crash the Gaim client of an user by attempting to send him a file with a name that contains invalid UTF-8 characters (CAN-2005-2102) ...

Several remote vulnerabilities have been discovered in ekg, a console Gadu Gadu client The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-2370 It was discovered that memory alignment errors may allow remote attackers to cause a denial of service on certain architectures such as sparc This onl ...

Szymon Zygmunt and Michal Bartoszkiewicz discovered a memory alignment error in libgadu (from ekg, console Gadu Gadu client, an instant messaging program) which is included in gaim, a multi-protocol instant messaging client, as well This can not be exploited on the x86 architecture but on others, eg on Sparc and lead to a bus error, in other wor ...