Oval Definition:oval:org.mitre.oval:def:22403
Revision Date:2014-05-26Version:13
Title:ELSA-2008:0584: pidgin security and bug fix update (Important)
Description:Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 and Adium before 1.3 allow remote attackers to execute arbitrary code via a malformed SLP message with a crafted offset value, a different vulnerability than CVE-2008-2955.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2008-2927
ELSA-2008:0584-01
Platform(s):Oracle Linux 5
Product(s):pidgin
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • libpurple is earlier than 0:2.3.1-2.el5_2
  • OR finch is earlier than 0:2.3.1-2.el5_2
  • OR libpurple-perl is earlier than 0:2.3.1-2.el5_2
  • OR pidgin is earlier than 0:2.3.1-2.el5_2
  • OR pidgin-devel is earlier than 0:2.3.1-2.el5_2
  • OR pidgin-perl is earlier than 0:2.3.1-2.el5_2
  • OR libpurple-devel is earlier than 0:2.3.1-2.el5_2
  • OR finch-devel is earlier than 0:2.3.1-2.el5_2
  • OR libpurple-tcl is earlier than 0:2.3.1-2.el5_2
  • BACK