Описание
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:2.10.2-1ubuntu1 |
| hardy | ignored | end of life |
| lucid | released | 1:2.6.6-1ubuntu4.5 |
| maverick | ignored | end of life |
| natty | released | 1:2.7.11-1ubuntu2.2 |
| oneiric | released | 1:2.10.0-0ubuntu2.1 |
| precise | not-affected | 1:2.10.2-1ubuntu1 |
| upstream | needs-triage |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message.
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message.
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not ...
The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message.
EPSS
5 Medium
CVSS2