22 matches found
Linux Distros Unpatched Vulnerability : CVE-2013-0274
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - upnp.c in libpurple in Pidgin before 2.10.7 does not properly terminate long strings in UPnP responses, which allows remote attackers to cause a denial of servi...
Slackware: Security Advisory (SSA:2013-044-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : pidgin (openSUSE-SU-2013:0405-1)
pidgin was updated to fix security issues : - Fix a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274 - Fix a crash in Sametime when a malicious server sends us an abnormally long user ID. CVE-2013-0273 - Fix a bug where the MXit server or a man-in-the-middle could...
openSUSE Security Update : pidgin (openSUSE-SU-2013:0511-1)
Pidgin was updated to 2.10.7 to fix various security issues and the bug that IRC did not work at all in 12.3. Changes : - Add pidgin-irc-sasl.patch: link irc module to SASL. Allows the IRC module to be loaded bnc806975. - Update to version 2.10.7 bnc804742 : + Alien hatchery : - No changes +...
openSUSE: Security Advisory for pidgin (openSUSE-SU-2013:0511-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 5 / 6 : pidgin (ELSA-2013-0646)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0646 advisory. - Add patch for CVE-2013-0274 RH bug 910653. - Add patch for CVE-2013-0273 RH bug 910653. - Add patch for CVE-2013-0272 RH bug 910653. - Add patch...
CentOS Update for finch CESA-2013:0646 centos5
Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2013:0646 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
RedHat Update for pidgin RHSA-2013:0646-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CentOS Update for finch CESA-2013:0646 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
RHEL 5 / 6 : pidgin (RHSA-2013:0646)
Updated pidgin packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...
CentOS 5 / 6 : pidgin (CESA-2013:0646)
Updated pidgin packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...
openSUSE: Security Advisory for pidgin (openSUSE-SU-2013:0405-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE: Security Advisory for pidgin (openSUSE-SU-2013:0407-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
FreeBSD : libpurple -- multiple vulnerabilities (549787c1-8916-11e2-8549-68b599b52a02)
Pidgin reports : libpurple Fix a crash when receiving UPnP responses with abnormally long values. MXit Fix two bugs where a remote MXit user could possibly specify a local file path to be written to. Fix a bug where the MXit server or a man-in-the-middle could potentially send specially crafted...
SuSE 11.2 Security Update : pidgin (SAT Patch Number 7429)
pidgin was updated to fix 4 security issues : - Fixed a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274, bnc804742 - Fixed a crash in Sametime protocol when a malicious server sends us an abnormally long user ID. CVE-2013-0273, bnc804742 - Fixed a bug where the MXit...
SuSE 10 Security Update : pidgin (ZYPP Patch Number 8475)
pidgin was updated to fix 4 security issues : - Fixed a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274, bnc804742 - Fixed a crash in Sametime protocol when a malicious server sends us an abnormally long user ID. CVE-2013-0273, bnc804742 - Fixed a bug where the MXit...
Ubuntu: Security Advisory (USN-1746-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : pidgin vulnerabilities (USN-1746-1)
Chris Wysopal discovered that Pidgin incorrectly handled file transfers in the MXit protocol handler. A remote attacker could use this issue to create or overwrite arbitrary files. This issue only affected Ubuntu 11.10, Ubuntu 12.04 LTS and Ubuntu 12.10. CVE-2013-0271 It was discovered that Pidgi...
CVE-2013-0274
upnp.c in libpurple in Pidgin before 2.10.7 does not properly terminate long strings in UPnP responses, which allows remote attackers to cause a denial of service application crash by leveraging access to the local network...
CVE-2013-0274
Pidgin (libpurple) upnp.c vulnerability CVE-2013-0274 arises from failure to terminate long strings in UPnP responses, affecting the Pidgin/libpurple component prior to version 2.10.7. This allows a remote attacker on the local network to trigger an application crash (DoS). The issue is specific ...