Pidgin Security Advisory

TitleXMPP remote crash
CVE NameCVE-2012-2214
Discovered ByJosé Valentín Gutiérrez
DescriptionA series of specially crafted file transfer requests can cause clients to reference invalid memory. The user must have accepted one of the file transfer requests.
Fixed in Revision5f9d676cefdb
Fixed in Version2.10.4
FixCorrectly cancel and free a SOCKS5 connection attempt so that it does not trigger an attempt to access invalid memory later.

Return to Security Advisory Index