pidgin: various security flaws (CVE-2013-0271,CVE-2013-0272,CVE-2013-0273,CVE-2013-0274)
Details: http://pidgin.im/news/security/
- CVE-2013-0274 - Crash when receiving a UPnP response with abnormally long values
- CVE-2013-0273 - Sametime crash with long user IDs
- CVE-2013-0272 - MXit buffer overflow reading data from network
- CVE-2013-0271 - Remote MXit user could specify local file path
All are fixed in pidgin-2.10.7
(from redmine: issue id 1610, created on 2013-02-14, closed on 2013-02-15)
- Relations:
- child #1611 (closed)
- child #1612 (closed)
- child #1613 (closed)
- child #1614 (closed)
- child #1615 (closed)