Gaim Vulnerability
| Title | Gadu-Gadu memory alignment bug |
|---|
| Date | 11 August 2005 |
|---|
| CVE Name | CAN-2005-2370 |
|---|
| Discovered By | Marcin Owsiany and Wojtek Kaniewski |
|---|
| Summary | A memory alignment bug in the Gadu-Gadu protocol plugin can result in a buffer overflow |
|---|
| Description | There was a memory alignment bug in the library Gaim uses to access the Gadu-Gadu network. This bug can not be exploited on x86 architectures. This bug was recently fixed in the libgadu library, but also needed to be fixed in Gaim because Gaim includes a copy of the libgadu library. |
|---|
| Fixed in Version | 1.5.0 |
|---|
| Fix | The vulnerable section of code was modified to work correctly on all architectures. |
|---|
Return to Index of Vulnerabilities
Gaim
