Описание
ELSA-2011-1821: pidgin security update (MODERATE)
[2.7.9-3.el6_2.2]
- Add patch for CVE-2011-4602 (RH bug #766452).
[2.7.9-3.el6_2.1]
- Add patch for CVE-2011-4601 (RH bug #766452).
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
finch
2.7.9-3.el6.2
finch-devel
2.7.9-3.el6.2
libpurple
2.7.9-3.el6.2
libpurple-devel
2.7.9-3.el6.2
libpurple-perl
2.7.9-3.el6.2
libpurple-tcl
2.7.9-3.el6.2
pidgin
2.7.9-3.el6.2
pidgin-devel
2.7.9-3.el6.2
pidgin-docs
2.7.9-3.el6.2
pidgin-perl
2.7.9-3.el6.2
Oracle Linux i686
finch
2.7.9-3.el6.2
finch-devel
2.7.9-3.el6.2
libpurple
2.7.9-3.el6.2
libpurple-devel
2.7.9-3.el6.2
libpurple-perl
2.7.9-3.el6.2
libpurple-tcl
2.7.9-3.el6.2
pidgin
2.7.9-3.el6.2
pidgin-devel
2.7.9-3.el6.2
pidgin-docs
2.7.9-3.el6.2
pidgin-perl
2.7.9-3.el6.2
Связанные CVE
Связанные уязвимости
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message.
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message.
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message.
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not ...
family_feedbag.c in the oscar protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service (application crash) via a crafted (1) AIM or (2) ICQ message associated with buddy-list addition.