Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

USN-692-1: Gadu vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) USN-692-1: Gadu vulnerability
# 1  
Old 12-17-2008
USN-692-1: Gadu vulnerability
Referenced CVEs:
CVE-2008-4776


Description:
===========================================================Ubuntu Security Notice USN-692-1 December 17, 2008ekg, libgadu vulnerabilityCVE-2008-4776===========================================================A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSUbuntu 7.10Ubuntu 8.04 LTSUbuntu 8.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: libgadu3 1:1.6+20051103-1ubuntu1.1Ubuntu 7.10: libgadu3 1:1.7~rc2-2ubuntu0.7.10.1Ubuntu 8.04 LTS: libgadu3 1:1.7~rc2-2ubuntu0.8.04.1Ubuntu 8.10: libgadu3 1:1.8.0+r592-1ubuntu0.1After a standard system upgrade you need to restart your session to effectthe necessary changes.Details follow:It was discovered that the Gadu library, used by some Instant Messagingclients, did not correctly verify certain packet sizes from the server.If a user connected to a malicious server, clients using Gadu could bemade to crash, leading to a denial of service.





More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

kadu

KADU(1) 						      General Commands Manual							   KADU(1)

NAME

       kadu - instant messenger for Gadu-Gadu protocol

SYNOPSIS

       kadu

DESCRIPTION

       Gadu-Gadu  is very popular instant messenger for MS Windows in Poland.  kadu is Gadu-Gadu's client for Unix-like systems. The most complete
       documentations of kadu and related modules is at the project's home page at:
       http://www.kadu.net

ENVIRONMENT

       On startup kadu chacks if $CONFIG_DIR variable is set. If not, kadu will use default directory (which is $HOME/.kadu) to store it's config-
       uration	files. However, one may wish to run another instance of kadu, for different Gadu-Gadu account, on the same system account. In such
       case, one needs to set $CONFIG_DIR so it points to the directory that is supposed to hold configuration files for the other account.

AUTHOR

       kadu was written by Kadu Team (see /usr/share/kadu/doc/AUTHORS file for details).

       Copyright (C) 2007, 2008 Patryk Cisek <patryk@debian.org>

       This manual page was written by Patryk Cisek <patryk@debian.org>, for the Debian project (but may be used by others). It may be distributed
       under the terms of GPL license version 2, or (at your opinion) any later version.  On Debian GNU/Linux system, the complete text of the GNU
       General Public License can be found in `/usr/share/common-licenses/GPL'. If you're not using Debian, you may also find  full  text  of  the
       license	at http://www.gnu.org/licenses/.

																	   KADU(1)