Описание
The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.7.0 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a custom emoticon in a malformed SLP message.
Отчет
The Red Hat Security Response Team has rated this issue as having low security impact, a future pidgin package update may address this flaw in Red Hat Enterprise Linux 3, 4, and 5.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 3 | pidgin | Affected | ||
| Red Hat Enterprise Linux 6 | pidgin | Affected | ||
| Red Hat Enterprise Linux 4 | pidgin | Fixed | RHSA-2010:0788 | 21.10.2010 |
| Red Hat Enterprise Linux 5 | pidgin | Fixed | RHSA-2010:0788 | 21.10.2010 |
Показывать по
Дополнительная информация
Статус:
3.5 Low
CVSS2
Связанные уязвимости
The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.7.0 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a custom emoticon in a malformed SLP message.
The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.7.0 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a custom emoticon in a malformed SLP message.
The msn_emoticon_msg function in slp.c in the MSN protocol plugin in l ...
The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.7.0 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a custom emoticon in a malformed SLP message.
3.5 Low
CVSS2