Pidgin Security Advisory

TitleAIM/ICQ non-UTF-8 filename crash
Date2005-08-11
CVE NameCVE-2005-2102
Discovered ByUnknown
SummaryInvalid filenames can cause a crash on some systems
DescriptionA remote user could cause Gaim to crash on some systems by sending the Gaim user a file whose filename contains certain invalid characters. It is unknown what combination of systems are affected, but it is suspected that Windows users and systems with older versions of GTK+ are especially susceptible.
Fixed in Version1.5.0
FixThe filename is validated as UTF-8 before Gaim attemps to display it.

Return to Security Advisory Index