IMFreedom Security

Description

A remote AIM or ICQ user can cause a buffer overflow in Gaim by setting an away message containing many AIM substitution strings (such as %t or %n).

Mitigation

The substitution function was modified to use a dynamic buffer instead of one with a fixed size.