359 matches found
MGASA-2016-0236 Updated pidgin packages fix security vulnerability
A buffer overflows vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in arbitrary code execution. A malicious server or an attacker who intercepts the network traffic can send an invalid size for a packet...
Debian DLA-542-1 : pidgin security update
Numerous security issues have been identified and fixed in Pidgin in Debian/Wheezy. CVE-2016-2365 MXIT Markup Command Denial of Service Vulnerability CVE-2016-2366 MXIT Table Command Denial of Service Vulnerability CVE-2016-2367 MXIT Avatar Length Memory Disclosure Vulnerability CVE-2016-2368 MXI...
[SECURITY] [DLA 542-1] pidgin security update
Package : pidgin Version : 2.10.10-1deb7u2 CVE ID : CVE-2016-2365 CVE-2016-2366 CVE-2016-2367 CVE-2016-2368 CVE-2016-2369 CVE-2016-2370 CVE-2016-2371 CVE-2016-2372 CVE-2016-2373 CVE-2016-2374 CVE-2016-2375 CVE-2016-2376 CVE-2016-2377 CVE-2016-2378 CVE-2016-2380 CVE-2016-4323 Numerous security...
Pidgin MXIT Protocol Denial of Service Vulnerability (CNVD-2016-04337)
Pidgin is a cross-platform real-time communication client. A denial-of-service vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service read across boundaries by sending invalid data...
Pidgin MXIT Protocol Buffer Overflow Vulnerability (CNVD-2016-04339)
Pidgin is a cross-platform real-time communication client. A buffer overflow vulnerability exists in the MXIT protocol processing of Pidgin version 2.10.11, which can be exploited by an attacker to cause an out-of-bounds read with the help of specially crafted MXIT data...
Pidgin MXIT Protocol Denial of Service Vulnerability (CNVD-2016-04334)
Pidgin is a cross-platform real-time communication client. A denial of service vulnerability exists in the MXIT protocol processing of Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service null pointer reverse reference by sending invalid data...
Pidgin MXIT Protocol Memory Corruption Vulnerability (CNVD-2016-04341)
Pidgin is a cross-platform real-time communication client. A security vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause out-of-bounds writes and memory corruption, or execute arbitrary code by sending specially crafted...
Pidgin MXIT Protocol Directory Traversal Vulnerability
Pidgin is a cross-platform real-time communication client. A directory traversal vulnerability exists in the MXIT protocol handling of Pidgin version 2.10.11, which can be exploited by an attacker to overwrite a file by providing an invalid boot image name...
Pidgin MXIT Protocol Denial of Service Vulnerability (CNVD-2016-04335)
Pidgin is a cross-platform real-time communication client. A denial-of-service vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service read across boundaries by sending invalid data...
Pidgin MXIT Protocol Denial of Service Vulnerability (CNVD-2016-04336)
Pidgin is a cross-platform real-time communication client. A denial of service vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service null pointer backreference by sending packets starting with a null byte...
Pidgin MXIT Protocol Buffer Overflow Vulnerability (CNVD-2016-04340)
Pidgin is a cross-platform real-time communication client. A buffer overflow vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a buffer overflow and memory corruption with the help of a negative length value...
Pidgin MXIT Protocol Information Disclosure Vulnerability (CNVD-2016-04331)
Pidgin is a cross-platform real-time communication client. An information disclosure vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service read across boundaries or copy memory to a file with the help of ...
Pidgin MXIT Protocol Memory Corruption Vulnerability (CNVD-2016-04333)
Pidgin is a cross-platform real-time communication client. A memory corruption vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a buffer overflow, execute arbitrary code, or cause a memory leak by sending specially...
Pidgin MXIT Protocol Buffer Overflow Vulnerability (CNVD-2016-04347)
Pidgin is a cross-platform real-time communication client that supports several popular real-time communication protocols. A buffer overflow vulnerability exists in Pidgin's MXIT protocol processing, which allows remote attackers to exploit the vulnerability to send a negative-length HTTP respons...
libpurple: multiple issues
CVE-2016-2365 denial of service Specially crafted MXIT data sent via the server could potentially result in a null pointer dereference. - CVE-2016-2366 denial of service Specially crafted MXIT data sent via the server could potentially result in an out-of-bounds read. - CVE-2016-2367 information...
Pidgin MXIT Protocol Memory Corruption Vulnerability
Pidgin is a cross-platform real-time communication client that supports several commonly used real-time communication protocols and allows users to log into different real-time communication services with the same software. A memory corruption vulnerability exists in the MXIT protocol processing ...
Pidgin MXIT Protocol Denial of Service Vulnerability
Pidgin is a cross-platform real-time communication client that supports several commonly used real-time communication protocols and allows users to log into different real-time communication services with the same software. A denial of service vulnerability exists in the MXIT protocol processing ...
PT-2016-3142 · Pidgin +2 · Pidgin +2
Name of the Vulnerable Software and Affected Versions: Pidgin affected versions not specified Description: The issue is related to multiple memory corruption vulnerabilities in the handling of the MXIT protocol. These vulnerabilities can be exploited by sending specially crafted MXIT data via the...
PT-2016-5138 · Pidgin +2 · Pidgin +2
Name of the Vulnerable Software and Affected Versions: Pidgin affected versions not specified Description: A NULL pointer dereference issue exists in the handling of the MXIT protocol. Specially crafted MXIT data sent via the server could result in a denial of service. A malicious server can send...
PT-2016-5142 · Pidgin +3 · Pidgin +3
Name of the Vulnerable Software and Affected Versions: Pidgin affected versions not specified Description: A denial of service issue exists in the handling of the MXIT protocol. Specially crafted MXIT data sent via the server could result in an out-of-bounds read. A malicious server or user can...