Pidgin Security Advisory

TitleRemote crash parsing HTTP responses
Date2014-01-28
CVE NameCVE-2013-6479
Discovered ByJacob Appelbaum of the Tor Project
DescriptionA malicious server or man-in-the-middle could send a malformed HTTP response that could lead to a crash.
Fixed in Revisioncd529e1158d3
Fixed in Version2.10.8
FixValidate response before using it.

Return to Security Advisory Index