A NULL pointer dereference vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in a denial of service vulnerability. A malicious server can send a packet starting with a NULL byte triggering the vulnerability.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "finch" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "finch-dbgsym" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "finch-dev" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "libpurple-bin" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "libpurple-dev" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "libpurple0" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "libpurple0-dbgsym" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "pidgin" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "pidgin-data" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "pidgin-dbg" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "pidgin-dbgsym" }, { "binary_version": "1:2.10.9-0ubuntu3.3", "binary_name": "pidgin-dev" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "finch" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "finch-dbgsym" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "finch-dev" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "libpurple-bin" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "libpurple-dev" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "libpurple-dev-dbgsym" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "libpurple0" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "libpurple0-dbgsym" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "pidgin" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "pidgin-data" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "pidgin-dbg" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "pidgin-dbgsym" }, { "binary_version": "1:2.10.12-0ubuntu5.1", "binary_name": "pidgin-dev" } ] }