Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Julien Lemoine <speedblue-8fiUuRrzOP0dnm+yROfE0A <at> public.gmane.org>
Subject: Re: CenterICQ IJHook.CC Remote Buffer Overflow Vulnerability
Newsgroups: gmane.network.centericq
Date: Tuesday 16th January 2007 14:45:16 UTC (over 10 years ago)
Hello,

Debian package includes a fix for this buffer overflow (available on 
version >= 4.21.0-17).

Patch is available here :
http://www2.speedblue.org/download/security_TK53_livejournal.dpatch

There is also a potential segmentation fault in jabber module fixed in 
centericq >= 4.21.0-18.

Patch is available here :
http://www2.speedblue.org/download/potentialsegv_strstr.dpatch

Best Regards.
Julien Lemoine

* [email protected]
 [2007-01-16
13:39:57 -0000]:

> I saw this security report on the Security Focus Vulnerability mailing
list.
> 
> 
> http://www.securityfocus.com/bid/21932
> 
> I was hoping to find a new version
> with a fix, or at least some discussion on this topic.  Is there an
effort
> I haven't seen yet that is working on a fix for this issue?
> 
>   Shlomo
> _______________________________________________
> Cicq mailing list
> Cicq-xGejAJT2w6wWP6gT/[email protected]
> http://mailman.linuxpl.org/mailman/listinfo/cicq
> Questions? Check the FAQ first: http://centericq.de/faq/

-- 
Julien LEMOINE / SpeedBlue
_______________________________________________
Cicq mailing list
Cicq-xGejAJT2w6wWP6gT/[email protected]
http://mailman.linuxpl.org/mailman/listinfo/cicq
Questions? Check the FAQ first: http://centericq.de/faq/
 
CD: 3ms