Oval Definition:oval:org.mitre.oval:def:22854
Revision Date:2014-05-26Version:28
Title:ELSA-2009:1453: pidgin security update (Moderate)
Description:The XMPP protocol plugin in libpurple in Pidgin before 2.6.2 does not properly handle an error IQ stanza during an attempted fetch of a custom smiley, which allows remote attackers to cause a denial of service (application crash) via XHTML-IM content with cid: images.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-2703
CVE-2009-3026
CVE-2009-3083
CVE-2009-3085
ELSA-2009:1453-01
Platform(s):Oracle Linux 5
Product(s):pidgin
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • libpurple is earlier than 0:2.6.2-2.el5
  • OR libpurple-perl is earlier than 0:2.6.2-2.el5
  • OR finch is earlier than 0:2.6.2-2.el5
  • OR pidgin is earlier than 0:2.6.2-2.el5
  • OR libpurple-devel is earlier than 0:2.6.2-2.el5
  • OR pidgin-devel is earlier than 0:2.6.2-2.el5
  • OR pidgin-perl is earlier than 0:2.6.2-2.el5
  • OR finch-devel is earlier than 0:2.6.2-2.el5
  • OR libpurple-tcl is earlier than 0:2.6.2-2.el5
    • BACK