Oval Definition:	oval:org.mitre.oval:def:23420
Revision Date: 2014-05-26 Version: 24 Title: ELSA-2011:1820: pidgin security update (Moderate) Description: The silc_channel_message function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service (application crash) via a crafted message, a different vulnerability than CVE-2011-3594. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2011-4601 CVE-2011-4602 CVE-2011-4603 ELSA-2011:1820-01 Platform(s): Oracle Linux 5 Product(s): pidgin Definition Synopsis Oracle Linux 5.x AND rpm test finch-devel is earlier than 0:2.6.6-5.el5_7.4 OR libpurple is earlier than 0:2.6.6-5.el5_7.4 OR libpurple-perl is earlier than 0:2.6.6-5.el5_7.4 OR pidgin is earlier than 0:2.6.6-5.el5_7.4 OR pidgin-perl is earlier than 0:2.6.6-5.el5_7.4 OR finch is earlier than 0:2.6.6-5.el5_7.4 OR libpurple-devel is earlier than 0:2.6.6-5.el5_7.4 OR pidgin-devel is earlier than 0:2.6.6-5.el5_7.4 OR libpurple-tcl is earlier than 0:2.6.6-5.el5_7.4
BACK