Pidgin Security Advisories

This page lists all potential security vulnerabilities discovered since August 1st, 2004 in Pidgin (or Gaim), Finch, libpurple, or any official plugins included with those programs.

Title	CVE Name	Date	Fixed In
Remote Yahoo! crash	CVE-2005-1269	2005-06-10	1.3.1
MSN Remote DoS	CVE-2005-1262	2005-05-10	1.3.0
Remote crash on some protocols	CVE-2005-1261	2005-05-10	1.3.0
Jabber remote crash	CVE-2005-0967	2005-04-04	1.2.1
Remote DoS on receiving certain messages over IRC	CVE-2005-0966	2005-04-02	1.2.1
Remote DoS on receiving malformed HTML	CVE-2005-0965	2005-04-02	1.2.1
Remote DoS on receiving malformed HTML	CVE-2005-0208	2005-02-24	1.1.4
Remote DoS on receiving malformed HTML	CVE-2005-0473	2005-02-17	1.1.3
AIM/ICQ remote denial of service	CVE-2005-0472	2005-02-17	1.1.3
MSN SLP buffer overflow	CVE-2004-0891	2004-10-19	1.0.2
MSN SLP DOS (malloc error)	N/A	2004-10-19	1.0.2
MSN File transfer DOS (malloc error)	N/A	2004-10-19	1.0.2
Content-length DOS (malloc error)	N/A	2004-08-26	0.82
RTF message buffer overflow	CVE-2004-0785	2004-08-26	0.82
Local hostname resolution buffer overflow	CVE-2004-0785	2004-08-26	0.82
URL decode buffer overflow	CVE-2004-0785	2004-08-26	0.82
Groupware message receive integer overflow	CVE-2004-0754	2004-08-26	0.82
Smiley theme installation lack of escaping	CVE-2004-0784	2004-08-22	0.82
MSN strncpy buffer overflow	CVE-2004-0500	2004-08-22	0.82

Newer