Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2011-3594
HistoryNov 04, 2011 - 12:00 a.m.

CVE-2011-3594

2011-11-0400:00:00
ubuntu.com
ubuntu.com
10

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.058 Low

EPSS

Percentile

93.3%

JSON

The g_markup_escape_text function in the SILC protocol plug-in in libpurple
2.10.0 and earlier, as used in Pidgin and possibly other products, allows
remote attackers to cause a denial of service (crash) via invalid UTF-8
sequences that trigger use of invalid pointers and an out-of-bounds read,
related to interactions with certain versions of glib2.

Bugs

Notes

Author Note
mdeslaur Oneiric+ isn’t built with SILC support
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchpidgin< 1:2.6.6-1ubuntu4.4UNKNOWN
ubuntu10.10noarchpidgin< 1:2.7.3-1ubuntu3.3UNKNOWN
ubuntu11.04noarchpidgin< 1:2.7.11-1ubuntu2.1UNKNOWN

Related

nessus 17
veracode 1
debiancve 2
cve 2
prion 2
seebug 1
centos 1
redhat 1
openvas 30
ubuntucve 1
securityvulns 3
oraclelinux 1
gentoo 1
ubuntu 1
fedora 7
altlinux 4
nessus
nessus
openSUSE Security Update : pidgin (openSUSE-2011-35)
2014-06-13 00:00:00
openSUSE Security Update : finch (openSUSE-SU-2011:1291-1)
2014-06-13 00:00:00
openSUSE Security Update : finch (openSUSE-SU-2011:1291-1)
2014-06-13 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:03:46
debiancve
debiancve
CVE-2011-3594
2011-11-04 21:55:00
CVE-2011-4603
2011-12-17 03:54:00
cve
cve
CVE-2011-3594
2011-11-04 21:55:00
CVE-2011-4603
2011-12-17 03:54:00
prion
prion
Out-of-bounds
2011-11-04 21:55:00
Design/Logic Flaw
2011-12-17 03:54:00
seebug
seebug
Pidgin &quot;silc_private_message()&quot;拒绝服务漏洞
2011-11-22 00:00:00
centos
centos
finch, libpurple, pidgin security update
2011-10-14 18:48:12
redhat
redhat
(RHSA-2011:1371) Moderate: pidgin security update
2011-10-13 00:00:00
openvas
openvas
RedHat Update for pidgin RHSA-2011:1371-01
2011-10-14 00:00:00
Mandriva Update for pidgin MDVSA-2011:183 (pidgin)
2011-12-12 00:00:00
CentOS Update for finch CESA-2011:1371 centos5 i386
2011-10-18 00:00:00
ubuntucve
ubuntucve
CVE-2011-4603
2011-12-16 00:00:00
securityvulns
securityvulns
[ MDVSA-2011:183 ] pidgin
2011-12-19 00:00:00
libpurple / Pidgin DoS
2011-12-19 00:00:00
[USN-1273-1] Pidgin vulnerabilities
2011-11-27 00:00:00
oraclelinux
oraclelinux
pidgin security update
2011-10-14 00:00:00
gentoo
gentoo
Pidgin: Multiple vulnerabilities
2012-06-21 00:00:00
ubuntu
ubuntu
Pidgin vulnerabilities
2011-11-21 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: pidgin-2.10.2-1.fc16
2012-03-24 23:21:18
[SECURITY] Fedora 16 Update: pidgin-2.10.1-1.fc16
2012-01-05 20:55:17
[SECURITY] Fedora 15 Update: pidgin-2.10.1-1.fc15
2012-01-07 22:59:32
altlinux
altlinux
Security fix for the ALT Linux 5 package pidgin version 2.10.1-alt1
2012-01-10 00:00:00
Security fix for the ALT Linux 5 package pidgin version 2.10.1-alt0.M50P.1
2012-03-13 00:00:00
Security fix for the ALT Linux 6 package pidgin version 2.10.1-alt1
2012-01-10 00:00:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.058 Low

EPSS

Percentile

93.3%

JSON
Related for UB:CVE-2011-3594
nessus17veracode1debiancve2cve2prion2seebug1centos1redhat1openvas30ubuntucve1securityvulns3oraclelinux1gentoo1ubuntu1fedora7altlinux4