Denial Of Service (DoS)

pidgin is vulnerable to denial of service DoS. The vulnerability exists in Pidgin's QQ protocol decryption handler. When the QQ protocol decrypts packet information, heap data can be overwritten, possibly causing Pidgin to crash...

Oracle Linux 4 : pidgin (ELSA-2009-1060)

From Red Hat Security Advisory 2009:1060 : Updated pidgin packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program...

Scientific Linux Security Update : pidgin on SL3.x, SL4.x, SL5.x i386/x86_64

A buffer overflow flaw was found in the way Pidgin initiates file transfers when using the Extensible Messaging and Presence Protocol XMPP. If a Pidgin client initiates a file transfer, and the remote target sends a malformed response, it could cause Pidgin to crash or, potentially, execute...

SuSE 10 Security Update : pidgin (ZYPP Patch Number 6709)

This update of pidgin fixes the following issues : - Allowed to send confidential data unencrypted even if SSL was chosen by user. CVE-2009-3026: CVSS v2 Base Score: 5.0 - Remote denial of service in yahoo IM plug-in. CVE-2009-3025: CVSS v2 Base Score: 4.3 - Remote denial of service in MSN plug-i...

openSUSE Security Update : finch (finch-1625)

This update of pidgin fixes the following issues : - CVE-2009-3026: CVSS v2 Base Score: 5.0 Allowed to send confidential data unencrypted even if SSL was chosen by user. - CVE-2009-3025: CVSS v2 Base Score: 4.3 Remote denial of service in yahoo IM plug-in. - CVE-2009-3083: CVSS v2 Base Score: 5.0...

openSUSE Security Update : finch (finch-1625)

This update of pidgin fixes the following issues : - CVE-2009-3026: CVSS v2 Base Score: 5.0 Allowed to send confidential data unencrypted even if SSL was chosen by user. - CVE-2009-3025: CVSS v2 Base Score: 4.3 Remote denial of service in yahoo IM plug-in. - CVE-2009-3083: CVSS v2 Base Score: 5.0...

Ubuntu USN-781-1 (pidgin)

The remote host is missing an update to pidgin announced via advisory USN-781-1. OpenVAS Vulnerability Test $Id: ubuntu7811.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7811.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-781-1 pidgin Authors: Thomas Rein...

Pidgin memory corruption

Memory corruption on malcrafted filename in MSN protocol. Buffer overflow on Jabber file transfer. Buffer overflow in QQ protocol...

Pidgin: Multiple vulnerabilities

Background Pidgin formerly Gaim is an instant messaging client for a variety of instant messaging protocols. Description Multiple vulnerabilities have been discovered in Pidgin: Veracode reported a boundary error in the "XMPP SOCKS5 bytestream server" when initiating an outgoing file transfer...

finch, libpurple, pidgin security update

CentOS Errata and Security Advisory CESA-2009:1060 Updated pidgin packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Pidgin is an instant messaging...

Important: Red Hat Security Advisory: pidgin security update

Updated pidgin packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on...