IMFreedom Security

Description

Certain malformed SNAC packets sent by other AIM or ICQ users can trigger an infinite loop in Gaim when parsing the SNAC. The remote user would need a custom client, able to generate malformed SNACs.

Mitigation

The OSCAR protocol plugin was modified to drop these malformed packets.