Pidgin Security Advisory

TitleMSN overflow parsing SLP messages
Date2009-08-18
CVE NameCVE-2009-2694
Discovered ByCore Security Technologies
SummarySpecially crafted SLP messages can cause a buffer overflow
DescriptionBy sending two consecutive specially crafted SLP messages it is possible to trigger an memcpy to an invalid location in memory. This affects all versions of libpurple and Gaim released in the past few years.
Fixed in Version2.5.9
FixCorrectly destroy outgoing SLP ACK messages after they are sent, and ensure a buffer has been allocated within the SLP data structure before attempting to write to it.

Return to Security Advisory Index