Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-3084HistorySep 08, 2009 - 6:30 p.m.
CVE-2009-3084
2009-09-0818:30:00
Debian Security Bug Tracker
security-tracker.debian.org
8
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.031 Low
EPSS
Percentile
91.0%
The msn_slp_process_msg function in libpurple/protocols/msn/slpcall.c in the MSN protocol plugin in libpurple 2.6.0 and 2.6.1, as used in Pidgin before 2.6.2, allows remote attackers to cause a denial of service (application crash) via a handwritten (aka Ink) message, related to an uninitialized variable and the incorrect “UTF16-LE” charset name.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | pidgin | < 2.6.2-1 | pidgin_2.6.2-1_all.deb |
| Debian | 11 | all | pidgin | < 2.6.2-1 | pidgin_2.6.2-1_all.deb |
| Debian | 10 | all | pidgin | < 2.6.2-1 | pidgin_2.6.2-1_all.deb |
| Debian | 999 | all | pidgin | < 2.6.2-1 | pidgin_2.6.2-1_all.deb |
| Debian | 13 | all | pidgin | < 2.6.2-1 | pidgin_2.6.2-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2009-3084
2009-09-08 00:00:00
cve
cve
CVE-2009-3084
2009-09-08 18:30:00
prion
prion
Code injection
2009-09-08 18:30:00
redhatcve
redhatcve
CVE-2009-3084
2015-10-30 10:10:40
securityvulns
securityvulns
Libpurple / Pidgin memory corruption
2009-08-19 00:00:00
[ MDVSA-2009:230 ] pidgin
2009-09-14 00:00:00
openvas
openvas
Pidgin < 2.6.2 Multiple DoS Vulnerabilities - Linux
2009-09-15 00:00:00
Pidgin Multiple Denial Of Service Vulnerabilities (Windows)
2009-09-15 00:00:00
Pidgin < 2.6.2 Multiple DoS Vulnerabilities - Windows
2009-09-15 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: pidgin-2.6.3-2.fc11
2009-10-21 00:50:54
[SECURITY] Fedora 10 Update: pidgin-2.6.3-2.fc10
2009-10-21 00:56:06
[SECURITY] Fedora 11 Update: pidgin-2.6.5-1.fc11
2010-01-12 20:51:38
nessus
nessus
SuSE 10 Security Update : pidgin (ZYPP Patch Number 6710)
2011-01-27 00:00:00
openSUSE Security Update : finch (finch-1625)
2009-12-08 00:00:00
openSUSE Security Update : finch (finch-1625)
2009-12-08 00:00:00
oraclelinux
oraclelinux
pidgin security update
2009-09-21 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.031 Low
EPSS
Percentile
91.0%
Related for DEBIANCVE:CVE-2009-3084