Debian Pidgin vulnerabilities

CVE-2010-3711 [MEDIUM] CVE-2010-3711: pidgin - libpurple in Pidgin before 2.7.4 does not properly validate the return value of ... libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purple_base64_decode function, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a crafted message, related to the plugins for MSN, MySpaceIM, XMPP, and Yahoo! and the NTLM authentication support. Scope: local boo

CVE-2010-0277 [HIGH] CVE-2010-0277: pidgin - slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, including ... slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, including 2.6.4, and Adium 1.3.8 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed MSNSLP INVITE request in an SLP message, a different issue than CVE-2010-0013. Scope: local bookworm: resolved (fix

CVE-2010-0420 [MEDIUM] CVE-2010-0420: pidgin - libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat (MUC) ro... libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat (MUC) room is used, does not properly parse nicknames containing sequences, which allows remote attackers to cause a denial of service (application crash) via a crafted nickname. Scope: local bookworm: resolved (fixed in 2.6.6-1) bullseye: resolved (fixed in 2.6.6-1) forky: resolved (fixed in 2.6

CVE-2010-1624 [MEDIUM] CVE-2010-1624: pidgin - The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple i... The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.7.0 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a custom emoticon in a malformed SLP message. Scope: local bookworm: resolved (fixed in 2.7.0-1) bullseye: resolved (fixed in 2.7.0-1) forky: resolved

CVE-2010-0423 [MEDIUM] CVE-2010-0423: pidgin - gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of ... gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2) chat. Scope: local bookworm: resolved (fixed in 2.6.6-1) bullseye: resolved (fixed in 2.6.6-1) forky: resolved (fixed in 2.6.6-1) sid: resolved (fixed in 2.6.6-1) trixie: resolved (fixed in 2.6.6-1)

CVE-2009-1373 [HIGH] CVE-2009-1373: pidgin - Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin (formerly Gaim) b... Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin (formerly Gaim) before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information. Scope: local bookworm: resolved (fixed in 2.5.6-1) bullseye: resolved (fixed in 2.5.6-1) forky

CVE-2009-2694 [CRITICAL] CVE-2009-2694: pidgin - The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in lib... The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin (formerly Gaim) before 2.5.9 and Adium 1.3.5 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by sending multiple crafted SLP (aka MSNSLP) messages to trigger an overwrite of a

CVE-2009-3615 [MEDIUM] CVE-2009-3615: pidgin - The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and Adium before 1... The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and Adium before 1.3.7 allows remote attackers to cause a denial of service (application crash) via crafted contact-list data for (1) ICQ and possibly (2) AIM, as demonstrated by the SIM IM client. Scope: local bookworm: resolved (fixed in 2.6.3-1) bullseye: resolved (fixed in 2.6.3-1) forky: resolved (fix

CVE-2009-1374 [MEDIUM] CVE-2009-1374: pidgin - Buffer overflow in the decrypt_out function in Pidgin (formerly Gaim) before 2.5... Buffer overflow in the decrypt_out function in Pidgin (formerly Gaim) before 2.5.6 allows remote attackers to cause a denial of service (application crash) via a QQ packet. Scope: local bookworm: resolved (fixed in 2.5.6-1) bullseye: resolved (fixed in 2.5.6-1) forky: resolved (fixed in 2.5.6-1) sid: resolved (fixed in 2.5.6-1) trixie: resolved (fixed in 2.5.6-1)

CVE-2009-1376 [MEDIUM] CVE-2009-1376: pidgin - Multiple integer overflows in the msn_slplink_process_msg functions in the MSN p... Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin (formerly Gaim) before 2.5.6 on 32-bit platforms allow remote attackers to execute arbitrary code via a malformed SLP message with a crafted offset value, leading to buffer overf

CVE-2009-1375 [MEDIUM] CVE-2009-1375: pidgin - The PurpleCircBuffer implementation in Pidgin (formerly Gaim) before 2.5.6 does ... The PurpleCircBuffer implementation in Pidgin (formerly Gaim) before 2.5.6 does not properly maintain a certain buffer, which allows remote attackers to cause a denial of service (memory corruption and application crash) via vectors involving the (1) XMPP or (2) Sametime protocol. Scope: local bookworm: resolved (fixed in 2.5.6-1) bullseye: resolved (fixed in 2.5.6-1

CVE-2009-3085 [MEDIUM] CVE-2009-3085: pidgin - The XMPP protocol plugin in libpurple in Pidgin before 2.6.2 does not properly h... The XMPP protocol plugin in libpurple in Pidgin before 2.6.2 does not properly handle an error IQ stanza during an attempted fetch of a custom smiley, which allows remote attackers to cause a denial of service (application crash) via XHTML-IM content with cid: images. Scope: local bookworm: resolved (fixed in 2.6.2-1) bullseye: resolved (fixed in 2.6.2-1) forky: reso

CVE-2009-3083 [MEDIUM] CVE-2009-3083: pidgin - The msn_slp_sip_recv function in libpurple/protocols/msn/slp.c in the MSN protoc... The msn_slp_sip_recv function in libpurple/protocols/msn/slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an SLP invite message that lacks certain required fields, as demonstrated by a malformed message from a KMess client. Scope: local bookwo

CVE-2009-2703 [MEDIUM] CVE-2009-2703: pidgin - libpurple/protocols/irc/msgs.c in the IRC protocol plugin in libpurple in Pidgin... libpurple/protocols/irc/msgs.c in the IRC protocol plugin in libpurple in Pidgin before 2.6.2 allows remote IRC servers to cause a denial of service (NULL pointer dereference and application crash) via a TOPIC message that lacks a topic string. Scope: local bookworm: resolved (fixed in 2.6.2) bullseye: resolved (fixed in 2.6.2) forky: resolved (fixed in 2.6.2) sid: r

CVE-2009-1889 [MEDIUM] CVE-2009-1889: pidgin - The OSCAR protocol implementation in Pidgin before 2.5.8 misinterprets the ICQWe... The OSCAR protocol implementation in Pidgin before 2.5.8 misinterprets the ICQWebMessage message type as the ICQSMS message type, which allows remote attackers to cause a denial of service (application crash) via a crafted ICQ web message that triggers allocation of a large amount of memory. Scope: local bookworm: resolved (fixed in 2.5.8-1) bullseye: resolved (fixed

CVE-2009-3025 [MEDIUM] CVE-2009-3025: pidgin - Unspecified vulnerability in Pidgin 2.6.0 allows remote attackers to cause a den... Unspecified vulnerability in Pidgin 2.6.0 allows remote attackers to cause a denial of service (crash) via a link in a Yahoo IM. Scope: local bookworm: resolved (fixed in 2.6.1-1) bullseye: resolved (fixed in 2.6.1-1) forky: resolved (fixed in 2.6.1-1) sid: resolved (fixed in 2.6.1-1) trixie: resolved (fixed in 2.6.1-1)

CVE-2009-3084 [MEDIUM] CVE-2009-3084: pidgin - The msn_slp_process_msg function in libpurple/protocols/msn/slpcall.c in the MSN... The msn_slp_process_msg function in libpurple/protocols/msn/slpcall.c in the MSN protocol plugin in libpurple 2.6.0 and 2.6.1, as used in Pidgin before 2.6.2, allows remote attackers to cause a denial of service (application crash) via a handwritten (aka Ink) message, related to an uninitialized variable and the incorrect "UTF16-LE" charset name. Scope: local bookwor

CVE-2009-3026 [MEDIUM] CVE-2009-3026: pidgin - protocols/jabber/auth.c in libpurple in Pidgin 2.6.0, and possibly other version... protocols/jabber/auth.c in libpurple in Pidgin 2.6.0, and possibly other versions, does not follow the "require TLS/SSL" preference when connecting to older Jabber servers that do not follow the XMPP specification, which causes libpurple to connect to the server without the expected encryption and allows remote attackers to sniff sessions. Scope: local bookworm: reso

CVE-2008-3532 [MEDIUM] CVE-2008-3532: pidgin - The NSS plugin in libpurple in Pidgin 2.4.3 does not verify SSL certificates, wh... The NSS plugin in libpurple in Pidgin 2.4.3 does not verify SSL certificates, which makes it easier for remote attackers to trick a user into accepting an invalid server certificate for a spoofed service. Scope: local bookworm: resolved (fixed in 2.4.3-2) bullseye: resolved (fixed in 2.4.3-2) forky: resolved (fixed in 2.4.3-2) sid: resolved (fixed in 2.4.3-2) trixie:

CVE-2008-2927 [MEDIUM] CVE-2008-2927: pidgin - Multiple integer overflows in the msn_slplink_process_msg functions in the MSN p... Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 and Adium before 1.3 allow remote attackers to execute arbitrary code via a malformed SLP message with a crafted offset value, a different vulnerability than CVE-200