Oval Definition:oval:org.mitre.oval:def:29222
Revision Date:2015-08-17Version:9
Title:RHSA-2009:1218 -- pidgin security update (Critical)
Description:Updated pidgin packages that fix a security issue are now available for RedHat Enterprise Linux 3, 4, and 5.This update has been rated as having critical security impact by the RedHat Security Response Team.Pidgin is an instant messaging program which can log in to multipleaccounts on multiple instant messaging networks simultaneously.Federico Muttis of Core Security Technologies discovered a flaw in Pidgin'sMSN protocol handler. If a user received a malicious MSN message, it waspossible to execute arbitrary code with the permissions of the user runningPidgin. (CVE-2009-2694)
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2009:1218-CentOS 3
CESA-2009:1218-CentOS 5
CVE-2009-2694
RHSA-2009:1218
Platform(s):CentOS Linux 3
CentOS Linux 5
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
Product(s):pidgin
Definition Synopsis
  • Red Hat Enterprise Linux 5 and CentOS Linux 5 release section
  • Operation system section
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages match section
  • finch-devel is earlier than 0:2.5.9-1.el5
  • OR libpurple-devel is earlier than 0:2.5.9-1.el5
  • OR pidgin-devel is earlier than 0:2.5.9-1.el5
  • OR finch is earlier than 0:2.5.9-1.el5
  • OR libpurple is earlier than 0:2.5.9-1.el5
  • OR libpurple-perl is earlier than 0:2.5.9-1.el5
  • OR libpurple-tcl is earlier than 0:2.5.9-1.el5
  • OR pidgin is earlier than 0:2.5.9-1.el5
  • OR pidgin-perl is earlier than 0:2.5.9-1.el5
  • Red Hat Enterprise Linux 3 release section
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • AND pidgin is earlier than 0:1.5.1-4.el3
  • Red Hat Enterprise Linux 4 release section
  • The operating system installed on the system is Red Hat Enterprise Linux 4
  • AND Packages match section
  • finch is earlier than 0:2.5.9-1.el4
  • OR finch-devel is earlier than 0:2.5.9-1.el4
  • OR libpurple is earlier than 0:2.5.9-1.el4
  • OR libpurple-devel is earlier than 0:2.5.9-1.el4
  • OR libpurple-perl is earlier than 0:2.5.9-1.el4
  • OR libpurple-tcl is earlier than 0:2.5.9-1.el4
  • OR pidgin is earlier than 0:2.5.9-1.el4
  • OR pidgin-devel is earlier than 0:2.5.9-1.el4
  • OR pidgin-perl is earlier than 0:2.5.9-1.el4
    • BACK