This bug was fixed in the package pidgin - 1:2.5.5-1ubuntu8.4
---------------
pidgin (1:2.5.5-1ubuntu8.4) jaunty-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted MSNSLP packet
(LP: #415863)
- debian/patches/78_security_CVE-2009-2694.patch: properly destroy
slpmsg in libpurple/protocols/{msn,msnp9}/slplink.c.
- CVE-2009-2694
-- Marc Deslauriers <[email protected]> Wed, 19 Aug 2009
12:49:11 -0400
** Changed in: pidgin (Ubuntu)
Status: Confirmed => Fix Released
--
CVE-2009-2694: MSN overflow parsing SLP messages leads to remote vulnerability
https://bugs.launchpad.net/bugs/415863
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
