Details
PSI Jabber client before 0.12.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a file transfer request with a negative value in a SOCKS5 option, which bypasses a signed integer check and triggers an integer overflow and a heap-based buffer overflow.Novell Bugzilla entry: 479815 SUSE Security Advisories:
- SUSE-SR:2009:006, published Tue, 10 Mar 2009 15:00:00 +0000
- SUSE-SR:2009:006 , published Tue, 10 Mar 2009 15:00:00 +0000
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| openSUSE 10.3 |
| ZYPP Patch Nr: 6042 SAT Patch Nr: 574 |
| openSUSE 11.0 |
| ZYPP Patch Nr: 6042 SAT Patch Nr: 574 |
| openSUSE 11.1 |
| ZYPP Patch Nr: 6042 SAT Patch Nr: 574 |
| openSUSE 11.1 |
| ZYPP Patch Nr: 6042 SAT Patch Nr: 574 |