Pidgin Security Advisory

TitleMSN malformed SLP message overflow
CVE NameCVE-2009-1376
Discovered ByLoc VALBON (via TippingPoint's Zero Day Initiative)
SummaryMalformed SLP messages can cause a buffer overflow
DescriptionThe previous fix to CVE-2008-2927 was deemed incomplete. The size check improperly cast an uint64 to size_t which can cause an integer overflow, rendering the check useless.
Fixed in Version2.5.6
FixThe proper variable type is now used when doing size comparison. Additionally, the malformed message is now properly discarded.

Return to Security Advisory Index