Download
| Alert*
oval:org.secpod.oval:def:89045312
This update for libotr fixes the following issues: - Apply libotr-CVE-2016-2851.patch to fix integer overflows that used to occur on 64-bit architectures when receiving 4GB messages. This flaw could potentially have been exploited by an attacker to remotely execute arbitrary code on the user"s machi ... oval:org.secpod.oval:def:602409 Markus Vervier of X41 D-Sec GmbH discovered an integer overflow vulnerability in libotr, an off-the-record messaging library, in the way how the sizes of portions of incoming messages were stored. A remote attacker can exploit this flaw by sending crafted messages to an application that is using li ... oval:org.secpod.oval:def:110311 Off-the-Record Messaging Library and Toolkit This is a library and toolkit which implements Off-the-Record Messaging. OTR allows you to have private conversations over IM by providing Encryption, Authentication, Deniability and Perfect forward secrecy. oval:org.secpod.oval:def:110326 Off-the-Record Messaging Library and Toolkit This is a library and toolkit which implements Off-the-Record Messaging. OTR allows you to have private conversations over IM by providing Encryption, Authentication, Deniability and Perfect forward secrecy. oval:org.secpod.oval:def:703019 libotr: Off-the-Record Messaging library OTR could be made to crash or run programs if it received specially crafted network traffic. |