Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=b2b1da26f48e8ec653bd8d8d73e3bcd0b25e3c35
commit b2b1da26f48e8ec653bd8d8d73e3bcd0b25e3c35 Author: voroskoi <[EMAIL PROTECTED]> Date: Wed Jan 2 15:50:40 2008 +0100 FSA331-pidgin diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml index 9416aa8..3728bba 100644 --- a/frugalware/xml/security.xml +++ b/frugalware/xml/security.xml @@ -27,6 +27,18 @@ <fsas> <fsa> + <id>331</id> + <date>2008-01-02</date> + <author>voroskoi</author> + <package>pidgin</package> + <vulnerable>2.2.1-1</vulnerable> + <unaffected>2.2.1-2sayshell1</unaffected> + <bts>http://bugs.frugalware.org/task/2539</bts> + <cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4999</cve> + <desc>A weakness has been reported in Pidgin, which can be exploited by malicious people to cause a DoS (Denial of Service). + The weakness is caused due to a NULL-pointer dereference error when processing messages with invalid HTML code and can be exploited to cause libpurple to crash. Successful exploitation may require that HTML logging is used.</desc> + </fsa> + <fsa> <id>330</id> <date>2007-12-02</date> <author>voroskoi</author> _______________________________________________ Frugalware-git mailing list [email protected] http://frugalware.org/mailman/listinfo/frugalware-git
