Lucene search

GoogleOSV:DSA-912-1

HistoryNov 30, 2005 - 12:00 a.m.

centericq - denial of service

2005-11-3000:00:00

Google

osv.dev

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Wernfried Haas discovered that centericq, a text-mode multi-protocol
instant messenger client, can crash when it receives certain zero
length packets and is directly connected to the Internet.

For the old stable distribution (woody) this problem has been fixed in
version 4.5.1-1.1woody1.

For the stable distribution (sarge) this problem has been fixed in
version 4.20.0-1sarge3.

For the unstable distribution (sid) this problem has been fixed in
version 4.21.0-4.

We recommend that you upgrade your centericq package.

CPENameOperatorVersion
centericqeq4.20.0-1
centericqeq4.20.0-1sarge1
centericqeq4.20.0-1sarge2

Name	Operator	Version
centericq	eq	4.20.0-1
centericq	eq	4.20.0-1sarge1
centericq	eq	4.20.0-1sarge2

References

www.debian.org/security/2005/dsa-912

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Related for OSV:DSA-912-1