Debian Security Advisory DSA 2852-1 (libgadu - heap-based buffer overflow)

Yves Younan and Ryan Pentney discovered that libgadu, a library for accessing the Gadu-Gadu instant messaging service, contained an integer overflow leading to a buffer overflow. Attackers which impersonate the server could crash clients and potentially execute arbitrary code. OpenVAS Vulnerabili...