Debian Security Advisory DSA 912-1 (centericq) Network Vulnerability

Summary

The remote host is missing an update to centericq announced via advisory DSA 912-1. Wernfried Haas discovered that centericq, a text-mode multi-protocol instant messenger client, can crash when it receives certain zero length packets and is directly connected to the Internet. For the old stable distribution (woody) this problem has been fixed in version 4.5.1-1.1woody1.

Solution

For the stable distribution (sarge) this problem has been fixed in version 4.20.0-1sarge3. For the unstable distribution (sid) this problem has been fixed in version 4.21.0-4. We recommend that you upgrade your centericq package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20912-1

Severity

Classification

CVE CVE-2005-3694
CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Debian Security Advisory DSA 008-1 (dialog)
Debian Security Advisory DSA 1029-1 (libphp-adodb)
Debian Security Advisory DSA 009-1 (stunnel)
Debian Security Advisory DSA 073-1 (imp)
Debian Security Advisory DSA 081-1 (w3m, w3m-ssl)

Take action and discover your vulnerabilities