The readRequest method in org/gcaldaemon/core/http/HTTPListener.java in GCALDaemon 1.0-beta13 allows remote attackers to cause a denial of service via a large integer value in the Content-Length HTTP header, which triggers a fatal Java OutOfMemoryError.
https://exchange.xforce.ibmcloud.com/vulnerabilities/36670
http://www.securityfocus.com/bid/25704
http://www.securityfocus.com/archive/1/479816/100/0/threaded