Debian Pidgin vulnerabilities

CVE-2013-0274 [LOW] CVE-2013-0274: pidgin - upnp.c in libpurple in Pidgin before 2.10.7 does not properly terminate long str... upnp.c in libpurple in Pidgin before 2.10.7 does not properly terminate long strings in UPnP responses, which allows remote attackers to cause a denial of service (application crash) by leveraging access to the local network. Scope: local bookworm: resolved (fixed in 2.10.6-3) bullseye: resolved (fixed in 2.10.6-3) forky: resolved (fixed in 2.10.6-3) sid: resolved (fixe

CVE-2012-3374 [HIGH] CVE-2012-3374: pidgin - Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin b... Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.5 allows remote attackers to execute arbitrary code via a crafted inline image in a message. Scope: local bookworm: resolved (fixed in 2.10.6-1) bullseye: resolved (fixed in 2.10.6-1) forky: resolved (fixed in 2.10.6-1) sid: resolved (fixed in 2.10.6-1) trixie: resolved (fixed in

CVE-2012-2318 [MEDIUM] CVE-2012-2318: pidgin - msg.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.4 does not p... msg.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.4 does not properly handle crafted characters, which allows remote servers to cause a denial of service (application crash) by placing these characters in a text/plain message. Scope: local bookworm: resolved (fixed in 2.10.4-1) bullseye: resolved (fixed in 2.10.4-1) forky: resolved (fixed in 2.10.4-

CVE-2012-6152 [MEDIUM] CVE-2012-6152: pidgin - The Yahoo! protocol plugin in libpurple in Pidgin before 2.10.8 does not properl... The Yahoo! protocol plugin in libpurple in Pidgin before 2.10.8 does not properly validate UTF-8 data, which allows remote attackers to cause a denial of service (application crash) via crafted byte sequences. Scope: local bookworm: resolved (fixed in 2.10.8-1) bullseye: resolved (fixed in 2.10.8-1) forky: resolved (fixed in 2.10.8-1) sid: resolved (fixed in 2.10.8-1

CVE-2012-2214 [LOW] CVE-2012-2214: pidgin - proxy.c in libpurple in Pidgin before 2.10.4 does not properly handle canceled S... proxy.c in libpurple in Pidgin before 2.10.4 does not properly handle canceled SOCKS5 connection attempts, which allows user-assisted remote authenticated users to cause a denial of service (application crash) via a sequence of XMPP file-transfer requests. Scope: local bookworm: resolved (fixed in 2.10.4-1) bullseye: resolved (fixed in 2.10.4-1) forky: resolved (fixed i

CVE-2012-1178 [MEDIUM] CVE-2012-1178: pidgin - The msn_oim_report_to_user function in oim.c in the MSN protocol plugin in libpu... The msn_oim_report_to_user function in oim.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial of service (application crash) via an OIM message that lacks UTF-8 encoding. Scope: local bookworm: resolved (fixed in 2.10.2-1) bullseye: resolved (fixed in 2.10.2-1) forky: resolved (fixed in 2.10.2-1) sid: resolved (f

CVE-2012-1257 [MEDIUM] CVE-2012-1257: pidgin - Pidgin 2.10.0 uses DBUS for certain cleartext communication, which allows local ... Pidgin 2.10.0 uses DBUS for certain cleartext communication, which allows local users to obtain sensitive information via a dbus session monitor. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2011-2943 [MEDIUM] CVE-2011-2943: pidgin - The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0... The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0 through 2.9.0 in Pidgin before 2.10.0 does not properly validate characters in nicknames, which allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted nickname that is not properly handled in a WHO response. Scope

CVE-2011-4939 [MEDIUM] CVE-2011-4939: pidgin - The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin before 2.10.2 a... The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin before 2.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by changing a nickname while in an XMPP chat room. Scope: local bookworm: resolved (fixed in 2.10.2-1) bullseye: resolved (fixed in 2.10.2-1) forky: resolved (fixed in 2.10.2-1) sid: resol

CVE-2011-4922 [LOW] CVE-2011-4922: pidgin - cipher.c in the Cipher API in libpurple in Pidgin before 2.7.10 retains encrypti... cipher.c in the Cipher API in libpurple in Pidgin before 2.7.10 retains encryption-key data in process memory, which might allow local users to obtain sensitive information by reading a core file or other representation of memory contents. Scope: local bookworm: resolved (fixed in 2.7.11-1) bullseye: resolved (fixed in 2.7.11-1) forky: resolved (fixed in 2.7.11-1) sid:

CVE-2011-1091 [MEDIUM] CVE-2011-1091: pidgin - libymsg.c in the Yahoo! protocol plugin in libpurple in Pidgin 2.6.0 through 2.7... libymsg.c in the Yahoo! protocol plugin in libpurple in Pidgin 2.6.0 through 2.7.10 allows (1) remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a malformed YMSG notification packet, and allows (2) remote Yahoo! servers to cause a denial of service (NULL pointer dereference and application crash) via a malfor

CVE-2011-4602 [MEDIUM] CVE-2011-4602: pidgin - The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly ... The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message. Scope: local bookworm: resolved (fixed in 2.10.1-1) bullseye: resolved (fixed in 2.10.1-1) forky: resolved (fixed in 2.

CVE-2011-3184 [MEDIUM] CVE-2011-3184: pidgin - The msn_httpconn_parse_data function in httpconn.c in the MSN protocol plugin in... The msn_httpconn_parse_data function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service (incorrect memory access and application crash) via vectors involving a crafted server message. Scope: local bookworm: resolved (fixed in 2.10.0-1) bu

CVE-2011-4603 [MEDIUM] CVE-2011-4603: pidgin - The silc_channel_message function in ops.c in the SILC protocol plugin in libpur... The silc_channel_message function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service (application crash) via a crafted message, a different vulnerability than CVE-2011-3594. Scope: local bookworm: resolved (fixed in 2.10.1-

CVE-2011-3185 [CRITICAL] CVE-2011-3185: pidgin - gtkutils.c in Pidgin before 2.10.0 on Windows allows user-assisted remote attack... gtkutils.c in Pidgin before 2.10.0 on Windows allows user-assisted remote attackers to execute arbitrary programs via a file: URL in a message. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2011-4601 [MEDIUM] CVE-2011-4601: pidgin - family_feedbag.c in the oscar protocol plugin in libpurple in Pidgin before 2.10... family_feedbag.c in the oscar protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service (application crash) via a crafted (1) AIM or (2) ICQ message associated with buddy-list addition. Scope: local bookworm: resolved (fixed in 2.10.1-1) bullseye: res

CVE-2011-3594 [MEDIUM] CVE-2011-3594: pidgin - The g_markup_escape_text function in the SILC protocol plug-in in libpurple 2.10... The g_markup_escape_text function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service (crash) via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, related to interactions with certain versions of glib2. Scope: local book

CVE-2010-4528 [MEDIUM] CVE-2010-4528: pidgin - directconn.c in the MSN protocol plugin in libpurple 2.7.6 through 2.7.8 in Pidg... directconn.c in the MSN protocol plugin in libpurple 2.7.6 through 2.7.8 in Pidgin before 2.7.9 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a short p2pv2 packet in a DirectConnect (aka direct connection) session. Scope: local bookworm: resolved (fixed in 2.7.9-1) bullseye: resolved (fixed in 2.7.

CVE-2010-2528 [MEDIUM] CVE-2010-2528: pidgin - The clientautoresp function in family_icbm.c in the oscar protocol plugin in lib... The clientautoresp function in family_icbm.c in the oscar protocol plugin in libpurple in Pidgin before 2.7.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via an X-Status message that lacks the expected end tag for a (1) desc or (2) title element. Scope: local bookworm: resolved (fixed in 2.7.2-1) bul

CVE-2010-0013 [MEDIUM] CVE-2010-0013: pidgin - Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurp... Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. (dot dot) in an application/x-msnmsgrp2p MSN emoticon (aka custom smiley) request, a related issue to CVE-2004-0122. NOTE: it could be argued that this is resultant from a vulnerability in which an