CVE-2016-2375

Опубликовано: 21 июн. 2016

Источник: redhat

CVSS3: 4.8

CVSS2: 4

Описание

An exploitable out-of-bounds read exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT contact information sent from the server can result in memory disclosure.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	pidgin	Will not fix
Red Hat Enterprise Linux 6	pidgin	Will not fix
Red Hat Enterprise Linux 7	pidgin	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1348880pidgin: MXIT Suggested Contacts Memory Disclosure Vulnerability

4.8 Medium

CVSS3

4 Medium

CVSS2

Связанные уязвимости

CVE-2016-2375

CVSS3: 5.3

ubuntu

около 9 лет назад

An exploitable out-of-bounds read exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT contact information sent from the server can result in memory disclosure.

CVE-2016-2375

CVSS3: 5.3

nvd

около 9 лет назад

An exploitable out-of-bounds read exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT contact information sent from the server can result in memory disclosure.

CVE-2016-2375

CVSS3: 5.3

debian

около 9 лет назад

An exploitable out-of-bounds read exists in the handling of the MXIT p ...

GHSA-p9cc-rrr9-3869

CVSS3: 5.3

github

больше 3 лет назад

An exploitable out-of-bounds read exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT contact information sent from the server can result in memory disclosure.

4.8 Medium

CVSS3

4 Medium

CVSS2