13 matches found
CVE-2015-8833
Use-after-free vulnerability in the createsmpdialog function in gtk-dialog.c in the Off-the-Record Messaging OTR pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbitrary code via vectors related to the "Authenticate buddy" menu item...
CVE-2015-8833
Use-after-free vulnerability in the createsmpdialog function in gtk-dialog.c in the Off-the-Record Messaging OTR pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbitrary code via vectors related to the "Authenticate buddy" menu item...
KLA10781 Code execution vulnerability in pidgin-otr plugin.
Use-after-free vulnerability was found in Off-the-Record Messaging OTR pidgin-otr plugin. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via vectors related to the “Authenticate buddy” menu item. Technical details This...
CVE-2015-8833
CVE-2015-8833 is a use-after-free vulnerability in the Off-the-Record Messaging (OTR) pidgin-otr plugin before 4.0.2 for Pidgin. The flaw occurs in the create_smp_dialog function (gtk-dialog.c) and is triggered via the “Authenticate buddy” path, allowing remote attackers to execute arbitrary code...
SUSE SLED12 Security Update : pidgin-otr (SUSE-SU-2016:0912-1)
This update for pidgin-otr fixes the following issues : - CVE-2015-8833: A heap based use-after-free issue was fixed in pidgin-otr that could lead to crashes or potential code execution. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE securi...
Mageia: Security Advisory (MGASA-2016-0125)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2016:0912-1 Security update for pidgin-otr
This update for pidgin-otr fixes the following issues: - CVE-2015-8833: A heap based use-after-free issue was fixed in pidgin-otr that could lead to crashes or potential code execution...
Updated pidgin-otr packages fix security vulnerability
The pidgin-otr plugin before 4.0.2 is vulnerable to a heap use after free error. The bug is triggered when a user tries to authenticate a buddy and happens in the function createsmpdialog CVE-2015-8833...
MGASA-2016-0125 Updated pidgin-otr packages fix security vulnerability
The pidgin-otr plugin before 4.0.2 is vulnerable to a heap use after free error. The bug is triggered when a user tries to authenticate a buddy and happens in the function createsmpdialog CVE-2015-8833...
openSUSE Security Update : pidgin-otr (openSUSE-2016-397)
This update to pidgin-otr 4.0.2 fixes the following issue : - CVE-2015-8833: use-after-free issue during SMP boo970498 It also contains new and updated translations. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
Debian DSA-3528-1 : pidgin-otr - security update
Stefan Sperling discovered that pidgin-otr, a Pidgin plugin implementing Off-The-Record messaging, contained a use-after-free bug. This could be used by a malicious remote user to intentionally crash the application, thus causing a denial-of-service. %NASLMINLEVEL 70300 C Tenable Network Security...
[SECURITY] [DSA 3528-1] pidgin-otr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3528-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 23, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3528-1] pidgin-otr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3528-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 23, 2016 https://www.debian.org/security/faq -...