Referenced CVEs:
CVE-2008-2927
Description:
===========================================================Ubuntu Security Notice USN-675-2 November 24, 2008gaim vulnerabilityCVE-2008-2927===========================================================A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSThis advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: gaim 1:1.5.0+1.5.1cvs20051015-1ubuntu10.1After a standard system upgrade you need to restart Gaim to effectthe necessary changes.Details follow:It was discovered that Gaim did not properly handle certain malformedmessages in the MSN protocol handler. A remote attacker could send a speciallycrafted message and possibly execute arbitrary code with user privileges.(CVE-2008-2927)
More...