39 matches found
SuSE 11.1 Security Update : pidgin, libpurple and finch (SAT Patch Number 5389)
This update fixes the following security issues : - 604225: MSN emoticon DoS. CVE-2010-1624 - 648273: multiple NULL pointer dereference weaknesses. CVE-2010-3711 - 722199: vulnerability in SILC protocol handling CVE-2011-3594 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...
Mandriva Update for pidgin MDVSA-2011:183 (pidgin)
Check for the Version of pidgin OpenVAS Vulnerability Test Mandriva Update for pidgin MDVSA-2011:183 pidgin Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Mandriva Linux Security Advisory : pidgin (MDVSA-2011:183)
Multiple vulnerabilities has been discovered and corrected in pidgin : When receiving various stanzas related to voice and video chat, the XMPP protocol plugin failed to ensure that the incoming message contained all required fields, and would crash if certain fields were missing. When receiving...
USN-1273-1: Pidgin vulnerabilities
Marius Wachtler discovered that Pidgin incorrectly handled malformed YMSG messages in the Yahoo! protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. CVE-2011-1091...
CentOS Update for finch CESA-2011:1371 centos4 i386
Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2011:1371 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
CVE-2011-3594
The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...
DEBIAN-CVE-2011-3594
The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...
Out-of-bounds
The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...
CVE-2011-3594
CVE-2011-3594 affects the Pidgin/libpurple SILC protocol plug-in (libpurple 2.10.0 and earlier). The issue: remote sending of certain SILC messages with invalid UTF-8 sequences can trigger use-after-free/invalid-pointer and out-of-bounds reads, crashing Pidgin. Public advisories show downstream p...
CVE-2011-3594
The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...
libpurple: invalid UTF-8 string handling in SILC messages
The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...
Debian DSA-1879-1 : silc-client/silc-toolkit - several vulnerabilities
Several vulnerabilities have been discovered in the software suite for the SILC protocol, a network protocol designed to provide end-to-end security for conferencing services. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-7159 An incorrect format...
[Backports-security-announce] Security update for silc-client/silc-toolkit
Jérémy Bobbio uploaded new packages for silc-client/silc-toolkit which fixed the following security problems: DSA 1879-1 Several vulnerabilities have been discovered in the software suite for the SILC protocol, a network protocol designed to provide end-to-end security for conferencing services...
Debian: Security Advisory (DSA-1879-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 1879-1] New silc-client/silc-toolkit packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA-1879-1 [email protected] http://www.debian.org/security/ Nico Golde September 4th, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1879-1] New silc-client/silc-toolkit packages fix arbitrary code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1879-1 [email protected] http://www.debian.org/security/ Nico Golde September 4th, 2009 http://www.debian.org/security/faq -...
DSA-1879-1 silc-client silc-toolkit - arbitrary code execution
Bulletin has no description...
RedHat Update for pidgin RHSA-2008:1023-01
Check for the Version of pidgin OpenVAS Vulnerability Test RedHat Update for pidgin RHSA-2008:1023-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
CentOS 4 / 5 : pidgin (CESA-2008:1023)
Updated Pidgin packages that fix several security issues and bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is a multi-protocol Internet Messaging client. A denial-of-service...