A NULL pointer dereference vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in a denial of service vulnerability. A malicious server can send a packet starting with a NULL byte triggering the vulnerability.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "finch", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "finch-dbgsym", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "finch-dev", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "libpurple-bin", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "libpurple-dev", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "libpurple0", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "libpurple0-dbgsym", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "pidgin", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "pidgin-data", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "pidgin-dbg", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "pidgin-dbgsym", "binary_version": "1:2.10.9-0ubuntu3.3" }, { "binary_name": "pidgin-dev", "binary_version": "1:2.10.9-0ubuntu3.3" } ], "ubuntu_priority": "low" }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "finch", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "finch-dbgsym", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "finch-dev", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "libpurple-bin", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "libpurple-dev", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "libpurple-dev-dbgsym", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "libpurple0", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "libpurple0-dbgsym", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "pidgin", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "pidgin-data", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "pidgin-dbg", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "pidgin-dbgsym", "binary_version": "1:2.10.12-0ubuntu5.1" }, { "binary_name": "pidgin-dev", "binary_version": "1:2.10.12-0ubuntu5.1" } ], "ubuntu_priority": "low" }