Pidgin Security Advisory

TitleSmiley denial of service
Date2010-02-18
CVE NameCVE-2010-0423
Discovered ByAntti Hayrynen
SummaryPidgin can become unresponse when displaying large numbers of smileys
DescriptionoCERT notified us about a problem in Pidgin, where a large amount of processing time will be used when inserting many smileys into an IM or chat window. This should not cause a crash, but Pidgin can become unusably slow.
Fixed in Revisiona783b23a05da
Fixed in Version2.6.6
FixA limit was added for the maximum number of smileys allowed in a conversation.

Return to Security Advisory Index