7.5 - RHSA-2005:429

Executive Summary

Summary
Title	gaim security update

Informations
Name	RHSA-2005:429	First vendor Publication	2005-05-11
Vendor	RedHat	Last vendor Modification	2005-05-11
Severity (Vendor)	Critical	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

An updated gaim package that fixes two security issues is now available.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

The Gaim application is a multi-protocol instant messaging client.

A stack based buffer overflow bug was found in the way gaim processes a message containing a URL. A remote attacker could send a carefully crafted message resulting in the execution of arbitrary code on a victim's machine. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-1261 to this issue.

A bug was found in the way gaim handles malformed MSN messages. A remote attacker could send a carefully crafted MSN message causing gaim to crash. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-1262 to this issue.

Users of Gaim are advised to upgrade to this updated package which contains backported patches and is not vulnerable to these issues.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

5. RPMs required:

Red Hat Enterprise Linux AS version 3:

SRPMS: ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/gaim-1.2.1-6.el3.src.rpm bc81df1e2393d51d607dbdd5ebcd6254 gaim-1.2.1-6.el3.src.rpm

i386: 83ef867ebf9618418bbde568a3599830 gaim-1.2.1-6.el3.i386.rpm

ia64: 4a93e8e28ddfc147277773480c90a706 gaim-1.2.1-6.el3.ia64.rpm

ppc: 742c7971f07ba2a83af5023ac4283f02 gaim-1.2.1-6.el3.ppc.rpm

s390: 987db3f09037b9f8deeaaafd51fe76c3 gaim-1.2.1-6.el3.s390.rpm

s390x: 16d7c8d5fe4dd0f99f1bd6418f3e03c7 gaim-1.2.1-6.el3.s390x.rpm

x86_64: 76c553295cbee1bb7f5369cf54e1115b gaim-1.2.1-6.el3.x86_64.rpm

Red Hat Desktop version 3:

SRPMS: ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/gaim-1.2.1-6.el3.src.rpm bc81df1e2393d51d607dbdd5ebcd6254 gaim-1.2.1-6.el3.src.rpm

i386: 83ef867ebf9618418bbde568a3599830 gaim-1.2.1-6.el3.i386.rpm

x86_64: 76c553295cbee1bb7f5369cf54e1115b gaim-1.2.1-6.el3.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS: ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/gaim-1.2.1-6.el3.src.rpm bc81df1e2393d51d607dbdd5ebcd6254 gaim-1.2.1-6.el3.src.rpm

i386: 83ef867ebf9618418bbde568a3599830 gaim-1.2.1-6.el3.i386.rpm

ia64: 4a93e8e28ddfc147277773480c90a706 gaim-1.2.1-6.el3.ia64.rpm

x86_64: 76c553295cbee1bb7f5369cf54e1115b gaim-1.2.1-6.el3.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS: ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/gaim-1.2.1-6.el3.src.rpm bc81df1e2393d51d607dbdd5ebcd6254 gaim-1.2.1-6.el3.src.rpm

i386: 83ef867ebf9618418bbde568a3599830 gaim-1.2.1-6.el3.i386.rpm

ia64: 4a93e8e28ddfc147277773480c90a706 gaim-1.2.1-6.el3.ia64.rpm

x86_64: 76c553295cbee1bb7f5369cf54e1115b gaim-1.2.1-6.el3.x86_64.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS: ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/gaim-1.2.1-6.el4.src.rpm 8bcd80b9e9aad765a1596378c4d08626 gaim-1.2.1-6.el4.src.rpm

i386: 136094a6e2717de5ac02826cd91d493c gaim-1.2.1-6.el4.i386.rpm

ia64: 84e2bde6e30fb3da72651f3a3b3a1a91 gaim-1.2.1-6.el4.ia64.rpm

ppc: f596381eb4b924a8b43df623ac2011ae gaim-1.2.1-6.el4.ppc.rpm

s390: c72eb22cda05c6f23caabc458a6b3132 gaim-1.2.1-6.el4.s390.rpm

s390x: 6a64c4e6cd546fd98d2ee0f44c04f6bb gaim-1.2.1-6.el4.s390x.rpm

x86_64: d835d342a18973c499c3444a46db9cba gaim-1.2.1-6.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS: ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/gaim-1.2.1-6.el4.src.rpm 8bcd80b9e9aad765a1596378c4d08626 gaim-1.2.1-6.el4.src.rpm

i386: 136094a6e2717de5ac02826cd91d493c gaim-1.2.1-6.el4.i386.rpm

x86_64: d835d342a18973c499c3444a46db9cba gaim-1.2.1-6.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS: ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/gaim-1.2.1-6.el4.src.rpm 8bcd80b9e9aad765a1596378c4d08626 gaim-1.2.1-6.el4.src.rpm

i386: 136094a6e2717de5ac02826cd91d493c gaim-1.2.1-6.el4.i386.rpm

ia64: 84e2bde6e30fb3da72651f3a3b3a1a91 gaim-1.2.1-6.el4.ia64.rpm

x86_64: d835d342a18973c499c3444a46db9cba gaim-1.2.1-6.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS: ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/gaim-1.2.1-6.el4.src.rpm 8bcd80b9e9aad765a1596378c4d08626 gaim-1.2.1-6.el4.src.rpm

i386: 136094a6e2717de5ac02826cd91d493c gaim-1.2.1-6.el4.i386.rpm

ia64: 84e2bde6e30fb3da72651f3a3b3a1a91 gaim-1.2.1-6.el4.ia64.rpm

x86_64: d835d342a18973c499c3444a46db9cba gaim-1.2.1-6.el4.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2005-429.html

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10725

Oval ID:	oval:org.mitre.oval:def:10725
Title:	Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL.
Description:	Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-1261	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND gaim is earlier than 1:1.2.1-6.el3 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND gaim is earlier than 1:1.2.1-6.el4

Definition Id: oval:org.mitre.oval:def:10861

Oval ID:	oval:org.mitre.oval:def:10861
Title:	Gaim 1.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed MSN message.
Description:	Gaim 1.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed MSN message.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-1262	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND gaim is earlier than 1:1.2.1-6.el3 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND gaim is earlier than 1:1.2.1-6.el4

CPE : Common Platform Enumeration

Type	Description	Count
Application	Rob Flynn Gaim cpe:2.3:a:rob_flynn:gaim:1.2.1:::::::* cpe:2.3:a:rob_flynn:gaim:1.2.0:::::::* cpe:2.3:a:rob_flynn:gaim:1.1.4:::::::* cpe:2.3:a:rob_flynn:gaim:1.1.3:::::::* cpe:2.3:a:rob_flynn:gaim:1.1.2:::::::* cpe:2.3:a:rob_flynn:gaim:1.1.1:::::::* cpe:2.3:a:rob_flynn:gaim:1.1.0:::::::* cpe:2.3:a:rob_flynn:gaim:1.0.3:::::::* cpe:2.3:a:rob_flynn:gaim:1.0.2:::::::* cpe:2.3:a:rob_flynn:gaim:1.0.1:::::::* cpe:2.3:a:rob_flynn:gaim:1.0.0:::::::* cpe:2.3:a:rob_flynn:gaim:0.82.1:::::::* cpe:2.3:a:rob_flynn:gaim:0.82:::::::* cpe:2.3:a:rob_flynn:gaim:0.81:::::::* cpe:2.3:a:rob_flynn:gaim:0.80:::::::* cpe:2.3:a:rob_flynn:gaim:0.79:::::::* cpe:2.3:a:rob_flynn:gaim:0.78:::::::* cpe:2.3:a:rob_flynn:gaim:0.77:::::::* cpe:2.3:a:rob_flynn:gaim:0.76:::::::* cpe:2.3:a:rob_flynn:gaim:0.75:::::::* cpe:2.3:a:rob_flynn:gaim:0.74:::::::* cpe:2.3:a:rob_flynn:gaim:0.73:::::::* cpe:2.3:a:rob_flynn:gaim:0.72:::::::* cpe:2.3:a:rob_flynn:gaim:0.71:::::::* cpe:2.3:a:rob_flynn:gaim:0.70:::::::* cpe:2.3:a:rob_flynn:gaim:0.69:::::::* cpe:2.3:a:rob_flynn:gaim:0.68:::::::* cpe:2.3:a:rob_flynn:gaim:0.67:::::::* cpe:2.3:a:rob_flynn:gaim:0.66:::::::* cpe:2.3:a:rob_flynn:gaim:0.65:::::::* cpe:2.3:a:rob_flynn:gaim:0.64:::::::* cpe:2.3:a:rob_flynn:gaim:0.63:::::::* cpe:2.3:a:rob_flynn:gaim:0.62:::::::* cpe:2.3:a:rob_flynn:gaim:0.61:::::::* cpe:2.3:a:rob_flynn:gaim:0.60:::::::* cpe:2.3:a:rob_flynn:gaim:0.59.1:::::::* cpe:2.3:a:rob_flynn:gaim:0.59:::::::* cpe:2.3:a:rob_flynn:gaim:0.58:::::::* cpe:2.3:a:rob_flynn:gaim:0.57:::::::* cpe:2.3:a:rob_flynn:gaim:0.56:::::::* cpe:2.3:a:rob_flynn:gaim:0.55:::::::* cpe:2.3:a:rob_flynn:gaim:0.54:::::::* cpe:2.3:a:rob_flynn:gaim:0.53:::::::* cpe:2.3:a:rob_flynn:gaim:0.52:::::::* cpe:2.3:a:rob_flynn:gaim:0.51:::::::* cpe:2.3:a:rob_flynn:gaim:0.50:::::::* cpe:2.3:a:rob_flynn:gaim:0.10.3:::::::* cpe:2.3:a:rob_flynn:gaim:0.10:::::::*	48

OpenVAS Exploits

Date	Description
2008-09-24	Name : Gentoo Security Advisory GLSA 200505-09 (gaim) File : nvt/glsa_200505_09.nasl
2008-09-04	Name : FreeBSD Ports: gaim, ja-gaim, ko-gaim, ru-gaim File : nvt/freebsd_gaim12.nasl
2008-09-04	Name : FreeBSD Ports: gaim, ja-gaim, ko-gaim, ru-gaim File : nvt/freebsd_gaim13.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
16348	Gaim Malformed MSN Message Remote DoS Gaim contains a flaw that may allow a remote denial of service. The issue is triggered when a client sends an SLP message with an empty body, and will result in loss of availability for the application.
16347	Gaim Multiple Protocol URL Processing Overflow

Nessus® Vulnerability Scanner

Date	Description
2006-07-03	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2005-429.nasl - Type : ACT_GATHER_INFO
2006-01-15	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-125-1.nasl - Type : ACT_GATHER_INFO
2005-07-13	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_889061afc42711d9ac5902061b08fc24.nasl - Type : ACT_GATHER_INFO
2005-07-13	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_ad5e70bbc42911d9ac5902061b08fc24.nasl - Type : ACT_GATHER_INFO
2005-05-17	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-086.nasl - Type : ACT_GATHER_INFO
2005-05-12	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200505-09.nasl - Type : ACT_GATHER_INFO
2005-05-11	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2005-429.nasl - Type : ACT_GATHER_INFO
2005-05-11	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2005-432.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:49:23	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	2
CPE ID(s)	48
osvdb(s)	2
Openvas Exploit(s)	3
Nessus® Exploit(s)	8

	Related
7.5	CVE-2005-1261
5	CVE-2005-1262
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)

7.5 - RHSA-2005:429

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU