Release date: 2011-10-20
Updated on: 2011-12-15
Affected Systems:
RedHat Enterprise Linux
Pidgin 2.x
Unaffected system:
Pidgin 2.10.1
Description:
--------------------------------------------------------------------------------
Bugtraq id: 51010
Cve id: CVE-2011-4601
Pidgin is a multi-in-One world mainstream instant messaging software integration tool.
Pidgin has a denial of service vulnerability in the implementation of the oscar protocol plug-in validation UTF-8 text message request, which can cause the affected application to crash after successful exploitation.
<* Source: Evgeny Boger
Link: http://www.pidgin.im/news/security? Id = 57
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Pidgin
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://pidgin.im/pidgin/home/