ALT-PU-2014-1968-1
Closed vulnerabilities
Published: 2014-05-22
BDU:2015-04123
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Severity: HIGH (7.5)
References:
Published: 2014-10-10
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2013-4488
libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.
Severity: MEDIUM (4.3)
References:
- [libgadu-devel] 20130602 Re: How to Report a Security Bug in libgadu
- [libgadu-devel] 20130602 Re: How to Report a Security Bug in libgadu
- MDVSA-2014:185
- MDVSA-2014:185
- [oss-security] 20131031 Re: CVE Request
- [oss-security] 20131031 Re: CVE Request
- 63473
- 63473
- https://bugzilla.redhat.com/show_bug.cgi?id=1025718
- https://bugzilla.redhat.com/show_bug.cgi?id=1025718
- FEDORA-2013-23260
- FEDORA-2013-23260
- GLSA-201508-02
- GLSA-201508-02
Published: 2014-05-22
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2014-3775
libgadu before 1.11.4 and 1.12.0 before 1.12.0-rc3, as used in Pidgin and other products, allows remote Gadu-Gadu file relay servers to cause a denial of service (memory overwrite) or possibly execute arbitrary code via a crafted message.
Severity: HIGH (7.5)
References:
- [libgadu-devel] 20140507 libgadu 1.12.0-rc3
- [libgadu-devel] 20140507 libgadu 1.12.0-rc3
- [libgadu-devel] 20140508 libgadu 1.11.4
- [libgadu-devel] 20140508 libgadu 1.11.4
- 58668
- 58668
- 58870
- 58870
- 58871
- 58871
- DSA-2935
- DSA-2935
- [oss-security] 20140519 Re: libgadu vulnerability: possible memory corruption
- [oss-security] 20140519 Re: libgadu vulnerability: possible memory corruption
- 67471
- 67471
- USN-2215-1
- USN-2215-1
- USN-2216-1
- USN-2216-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1099776
- https://bugzilla.redhat.com/show_bug.cgi?id=1099776
- GLSA-201508-02
- GLSA-201508-02