Ubuntu 12.04 LTS : libotr vulnerability (USN-2926-1)

Markus Vervier discovered that OTR incorrectly handled large incoming messages. A remote attacker could use this issue to cause OTR to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description block...

Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : libotr vulnerability (USN-1541-1)

Justin Ferguson discovered multiple heap overflows in libotr. A remote attacker could use this to craft a malformed OTR message that could cause a denial of service via application crash or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description...

USN-1541-1: libotr vulnerability

Justin Ferguson discovered multiple heap overflows in libotr. A remote attacker could use this to craft a malformed OTR message that could cause a denial of service via application crash or possibly execute arbitrary code...

PT-2012-6326 · Libotr +1 · Libotr +1

Name of the Vulnerable Software and Affected Versions: libotr versions prior to 3.2.1 Description: The issue is related to the allocation of a zero-length buffer when decoding a base64 string, which can lead to a denial of service application crash via a message with a specific value. This can be...