CVE-2011-1091
14.03.2011, 19:55
libymsg.c in the Yahoo! protocol plugin in libpurple in Pidgin 2.6.0 through 2.7.10 allows (1) remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a malformed YMSG notification packet, and allows (2) remote Yahoo! servers to cause a denial of service (NULL pointer dereference and application crash) via a malformed YMSG SMS message.Enginsight
Vendor | Product | Version |
---|---|---|
pidgin | pidgin | 2.6.0 |
pidgin | pidgin | 2.6.1 |
pidgin | pidgin | 2.6.2 |
pidgin | pidgin | 2.6.4 |
pidgin | pidgin | 2.6.5 |
pidgin | pidgin | 2.6.6 |
pidgin | pidgin | 2.7.0 |
pidgin | pidgin | 2.7.1 |
pidgin | pidgin | 2.7.2 |
pidgin | pidgin | 2.7.3 |
pidgin | pidgin | 2.7.4 |
pidgin | pidgin | 2.7.5 |
pidgin | pidgin | 2.7.6 |
pidgin | pidgin | 2.7.7 |
pidgin | pidgin | 2.7.8 |
pidgin | pidgin | 2.7.9 |
pidgin | pidgin | 2.7.10 |
𝑥
= Vulnerable software versions

Debian Releases

Ubuntu Releases
References