Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-200507-23
HistoryJul 25, 2005 - 12:00 a.m.

Kopete: Vulnerability in included Gadu library

2005-07-2500:00:00
Gentoo Foundation
security.gentoo.org
12

0.068 Low

EPSS

Percentile

93.8%

JSON

Background

KDE is a feature-rich graphical desktop environment for Linux and Unix-like Operating Systems. Kopete (also part of kdenetwork) is the KDE Instant Messenger.

Description

Kopete contains an internal copy of libgadu and is therefore subject to several input validation vulnerabilities in libgadu.

Impact

A remote attacker could exploit this vulnerability to execute arbitrary code or crash Kopete.

Workaround

Delete all Gadu Gadu contacts.

Resolution

All Kopete users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose kde-base/kdenetwork

All KDE Split Ebuild Kopete users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=kde-base/kopete-3.4.1-r1"
OSVersionArchitecturePackageVersionFilename
Gentooanyallkde-base/kdenetwork< 3.4.1-r1UNKNOWN
Gentooanyallkde-base/kopete< 3.4.1-r1UNKNOWN

Related

nessus 10
debian 2
debiancve 1
cve 1
openvas 9
securityvulns 2
ubuntucve 1
cvelist 1
gentoo 1
redhat 1
centos 1
freebsd 1
ubuntu 1
nessus
nessus
Fedora Core 4 : kdenetwork-3.4.1-0.fc4.2 (2005-624)
2005-07-24 00:00:00
GLSA-200507-26 : GNU Gadu, CenterICQ, Kadu, EKG, libgadu: Remote code execution in Gadu library
2005-07-31 00:00:00
GLSA-200507-23 : Kopete: Vulnerability in included Gadu library
2005-07-31 00:00:00
debian
debian
[SECURITY] [DSA 767-1] New ekg packages fix arbitrary code execution
2005-07-27 00:00:00
[SECURITY] [DSA 767-1] New ekg packages fix arbitrary code execution
2005-07-27 14:46:48
debiancve
debiancve
CVE-2005-1852
2005-07-26 04:00:00
cve
cve
CVE-2005-1852
2005-07-26 04:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200507-23 (kopete)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200507-26 (gnugadu centericq kadu ekg libgadu)
2008-09-24 00:00:00
Debian Security Advisory DSA 767-1 (ekg)
2008-01-17 00:00:00
securityvulns
securityvulns
[ GLSA 200507-26 ] GNU Gadu, CenterICQ, Kadu, EKG, libgadu: Remote code execution in Gadu library
2005-07-27 00:00:00
Multiple vulnerabilities in libgadu and ekg package
2005-07-22 00:00:00
ubuntucve
ubuntucve
CVE-2005-1852
2005-07-26 00:00:00
cvelist
cvelist
CVE-2005-1852
2005-07-26 04:00:00
gentoo
gentoo
GNU Gadu, CenterICQ, Kadu, EKG, libgadu: Remote code execution in Gadu library
2005-07-27 00:00:00
redhat
redhat
(RHSA-2005:639) kdenetwork security update
2005-07-21 00:00:00
centos
centos
kdenetwork security update
2005-07-22 12:00:12
freebsd
freebsd
libgadu -- multiple vulnerabilities
2005-07-21 00:00:00
ubuntu
ubuntu
ekg and Gadu library vulnerabilities
2005-08-09 00:00:00

0.068 Low

EPSS

Percentile

93.8%

JSON
Related for GLSA-200507-23
nessus10debian2debiancve1cve1openvas9securityvulns2ubuntucve1cvelist1gentoo1redhat1centos1freebsd1ubuntu1