Bugzilla – Bug 49228
VUL-0: CVE-2004-0006: gaim: missed one buffer oveflow
Last modified: 2021-09-30 15:18:16 UTC
Bad news. We have still one bug in our gaim.
Stefan told us, that the util.c:gaim_url_parse is in html.c:parse_url instead.
<!-- SBZ_reproduce -->
Shit, that's why I needed you to go over it too, I was hoping 4 eyes would be
better than 2.
Anyway. Full loop again, with packages, patchinfo etc.?
I will attach the files ASAP.
Created attachment 15818 [details]
Created attachment 15819 [details]
Ok, submitted to 80 -> 90, and both patchinfos added.
i think part of CVE-2004-0006
CVE-2004-0006: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)