Index of Vulnerabilities

This is a list of all potential Gaim security vulnerabilities discovered after August 1st, 2004.

Title CVE Name Date Fixed In
AIM/ICQ away message buffer overflow CAN-2005-2103 11 August 2005 1.5.0
AIM/ICQ non-UTF-8 filename crash CAN-2005-2102 11 August 2005 1.5.0
Gadu-Gadu memory alignment bug CAN-2005-2370 11 August 2005 1.5.0
MSN Remote DoS CAN-2005-1934 10 June 2005 1.3.1
Remote Yahoo! crash CAN-2005-1269 10 June 2005 1.3.1
MSN Remote DoS CAN-2005-1262 10 May 2005 1.3.0
Remote crash on some protocols CAN-2005-1261 10 May 2005 1.3.0
Jabber remote crash CAN-2005-0967 4 April 2005 1.2.1
Remote DoS on receiving certain messages over IRC CAN-2005-0966 2 April 2005 1.2.1
Remote DoS on receiving malformed HTML CAN-2005-0965 2 April 2005 1.2.1
Remote DoS on receiving malformed HTML CAN-2005-0208 24 February 2005 1.1.4
Remote DoS on receiving malformed HTML CAN-2005-0473 17 February 2005 1.1.3
AIM/ICQ remote denial of service CAN-2005-0472 17 February 2005 1.1.3
MSN SLP buffer overflow CAN-2004-0891 19 October 2004 1.0.2
MSN SLP DOS (malloc error) N/A 19 October 2004 1.0.2
MSN File transfer DOS (malloc error) N/A 19 October 2004 1.0.2
Content-length DOS (malloc error) N/A 26 August 2004 0.82
RTF message buffer overflow CAN-2004-0785 26 August 2004 0.82
Local hostname resolution buffer overflow CAN-2004-0785 26 August 2004 0.82
URL decode buffer overflow CAN-2004-0785 26 August 2004 0.82
Groupware message receive integer overflow CAN-2004-0754 26 August 2004 0.82
Smiley theme installation lack of escaping CAN-2004-0784 22 August 2004 0.82
MSN strncpy buffer overflow CAN-2004-0500 22 August 2004 0.82