Ubuntu Update For Libgadu USN-2101-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Yves Younan and Ryan Pentney discovered that libgadu incorrectly handled certain Gadu-Gadu HTTP messages. A malicious remote server or a man in the middle could use this issue to cause applications using libgadu to crash, resulting in a denial of service, or possibly execute arbitrary code.

Affected

libgadu on Ubuntu 13.10 , Ubuntu 12.10 , Ubuntu 12.04 LTS

Severity

Classification

CVE CVE-2013-6487

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for bash USN-2380-1
Ubuntu Update for clamav vulnerabilities USN-926-1
Ubuntu Update for ffmpeg USN-1675-1
Ubuntu Update for Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities USN-896-1
Ubuntu Update for curl USN-1721-1

Ubuntu Update for libgadu USN-2101-1

Take action and discover your vulnerabilities