Pidgin Security Advisory

TitleMSN File transfer DOS (malloc error)
Date2004-10-19
CVE NameN/A
Discovered ByGaim
SummaryCrash when accepting a large file transfer that exceeds the amount of available memory.
DescriptionRemote crash. After accepting a file transfer request, Gaim will attempt to allocate a buffer of a size equal to the entire filesize, this allocation attempt will cause Gaim to crash if the size exceeds the amount of available memory.
Fixed in Version1.0.2
FixDon't allocate a buffer for file transfers.

Return to Security Advisory Index