Debian Linux Security Advisory 2102-1 – It has been discovered that in barnowl, a curses-based instant-messaging client, the return codes of calls to the ZPending and ZReceiveNotice functions in libzephyr were not checked, allowing attackers to cause a denial of service (crash of the application), and possibly execute arbitrary code.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/93479/dsa-2102-1.txt
Source: https://packetstormsecurity.com/files/93479/Debian-Linux-Security-Advisory-2102-1.html