Pidgin Security Advisory

TitleMSN Remote DoS
Date2005-05-10
CVE NameCVE-2005-1262
Discovered BySiebe Tolsma
SummaryRemote denial of service when receiving a specially crafted MSN message
DescriptionPotential remote denial of service bug resulting from not checking a pointer for non-NULL before passing it to strncmp, which results in a crash. This can be triggered by a remote client sending an SLP message with an empty body.
Fixed in Version1.3.0
FixCheck for NULL before attempting to use the pointer.

Return to Security Advisory Index