USN-2215-1: libgadu vulnerability
21 May 2014
libgadu could be made to crash or run programs if it received specially crafted network traffic.
- libgadu - Gadu-Gadu protocol library
It was discovered that libgadu incorrectly handled certain messages from
file relay servers. A malicious remote server or a machine-in-the-middle could
use this issue to cause applications using libgadu to crash, resulting in a
denial of service, or possibly execute arbitrary code.
- USN-2216-1: finch, libpurple-bin, pidgin-dev, pidgin-data, pidgin, libpurple-dev, finch-dev, libpurple0