Oval Definition:oval:org.mitre.oval:def:22271
Revision Date:2014-02-24Version:35
Title:RHSA-2010:0788: pidgin security update (Moderate)
Description:libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purple_base64_decode function, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a crafted message, related to the plugins for MSN, MySpaceIM, XMPP, and Yahoo! and the NTLM authentication support.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2010:0788
CVE-2010-1624
CVE-2010-3711
RHSA-2010:0788-01
Platform(s):CentOS Linux 5
Red Hat Enterprise Linux 5
Product(s):pidgin
Definition Synopsis
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • libpurple-perl is earlier than 0:2.6.6-5.el5_5
  • OR finch is earlier than 0:2.6.6-5.el5_5
  • OR libpurple is earlier than 0:2.6.6-5.el5_5
  • OR pidgin is earlier than 0:2.6.6-5.el5_5
  • OR pidgin-perl is earlier than 0:2.6.6-5.el5_5
  • OR libpurple-devel is earlier than 0:2.6.6-5.el5_5
  • OR pidgin-devel is earlier than 0:2.6.6-5.el5_5
  • OR finch-devel is earlier than 0:2.6.6-5.el5_5
  • OR libpurple-tcl is earlier than 0:2.6.6-5.el5_5
    • BACK