Oracle Solaris Third-Party Patch Update : pidgin (cve_2012_3374_buffer_overflow)

The remote Solaris system is missing necessary patches to address security updates : - Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.5 allows remote attackers to execute arbitrary code via a crafted inline image in a message. CVE-2012-3374 %NASLMINLEVE...

Oracle Linux 6 : pidgin (ELSA-2012-1102)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-1102 advisory. - Add patch for CVE-2011-2485 RH bug 837561. - Add patch for CVE-2012-1178 RH bug 837560. - Add patch for CVE-2012-2318 RH bug 837560. - Add patch for...

SuSE 11.1 Security Update : pidgin, finch and libpurple (SAT Patch Number 6534)

This update of pidgin fixes a stack-based buffer overflow in the MXit protocol which could have potentially been exploited by remote attackers to execute arbitrary code in the context of the user running pidgin. CVE-2012-3374 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

Security fix for the ALT Linux 6 package pidgin version 2.10.6-alt1.M60P.1

Oct. 25, 2012 Gleb Fotengauer-Malinovskiy 2.10.6-alt1.M60P.1 - 2.10.6 - p6 security update fix CVE-2012-3374...

Slackware Advisory SSA:2012-195-02 pidgin

The remote host is missing an update as announced via advisory SSA:2012-195-02. OpenVAS Vulnerability Test $Id: esoftslkssa201219502.nasl 6581 2017-07-06 13:58:51Z cfischer $ Description: Auto-generated from advisory SSA:2012-195-02 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Slackware: Security Advisory (SSA:2012-195-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for pidgin FEDORA-2012-10287

Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2012-10287 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

CentOS Update for finch CESA-2012:1102 centos5

Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2012:1102 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS Update for finch CESA-2012:1102 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for finch CESA-2012:1102 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

RHEL 5 / 6 : pidgin (RHSA-2012:1102)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1102 advisory. - pidgin: Client abort in the MSN protocol plug-in by attempt to display certain, not UTF-8 encoded text CVE-2012-1178 - pidgin: Imprope...

pidgin security update

2.7.9-5.el6.2 - Add patch for CVE-2011-2485 RH bug 837561. 2.7.9-5.el6.1 - Add patch for CVE-2012-1178 RH bug 837560. - Add patch for CVE-2012-2318 RH bug 837560. - Add patch for CVE-2012-3374 RH bug 837560. 2.7.9-5.el6 - Add patch for CVE-2011-4602 RH bug 766453. 2.7.9-4.el6 - Add patch for...

SuSE 10 Security Update : pidgin, finch and libpurple (ZYPP Patch Number 8220)

This update of pidgin fixes a stack-based buffer overflow in the MXit protocol which could have potentially been exploited by remote attackers to execute arbitrary code in the context of the user running pidgin. CVE-2012-3374 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text descripti...

Mandriva Update for pidgin MDVSA-2012:105 (pidgin)

Check for the Version of pidgin OpenVAS Vulnerability Test Mandriva Update for pidgin MDVSA-2012:105 pidgin Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Fedora Update for pidgin FEDORA-2012-10294

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Update for pidgin MDVSA-2012:105 (pidgin)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

[SECURITY] [DSA 2509-1] pidgin security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2509-1 [email protected] http://www.debian.org/security/ Luciano Bello July 08, 2012 http://www.debian.org/security/faq -...

Fedora 17 : pidgin-2.10.5-1.fc17 (2012-10287)

New release 2.10.5 Full Upstream ChangeLog : http://developer.pidgin.im/wiki/ChangeLog Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible withou...

Pidgin 'mxit_show_message()'基于栈的缓冲区溢出漏洞

Bugtraq ID:54322 CVE ID:CVE-2012-3374 Pidgin是一款多协议即时通信软件 如果进入的消息包含内联图像，"mxitshowmessage"函数libpurple/protocols/mxit/markup.c解析时存在一个边界错误，允许攻击者构建特制的RX消息触发基于栈的缓冲区溢出，成功利用漏洞可以以应用程序上下文执行任意代码 0 Pidgin 2.x 厂商解决方案 Pidgin 2.10.5已经修复此漏洞，建议用户下载使用： http://www.pidgin.im/news/security/index.php?id=64...

[SECURITY] [DSA 2509-1] pidgin security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2509-1 [email protected] http://www.debian.org/security/ Luciano Bello July 08, 2012 http://www.debian.org/security/faq -...