CVE-2012-1178 (retired)

Priority
Description
The msn_oim_report_to_user function in oim.c in the MSN protocol plugin in
libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial
of service (application crash) via an OIM message that lacks UTF-8
encoding.
Assigned-to
tyhicks
Package
Upstream:released (2.10.2-1)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (1:2.10.2-1ubuntu1)
Patches:
Upstream:http://hg.pidgin.im/pidgin/main/rev/1b1b97b8e942
Upstream:http://hg.pidgin.im/pidgin/main/rev/f9eeb175a5c9
Upstream:http://hg.pidgin.im/pidgin/main/rev/f5fd49c83637
Upstream:http://hg.pidgin.im/pidgin/main/rev/5c02bc93f2c4
Upstream:http://hg.pidgin.im/pidgin/main/rev/85ec889f1675
More Information

Updated: 2019-03-26 12:01:13 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)