CVE-2012-2318 (retired)

Priority
Description
msg.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.4 does
not properly handle crafted characters, which allows remote servers to
cause a denial of service (application crash) by placing these characters
in a text/plain message.
Notes
 jdstrand> claimed to be fixed in 2.10.4
Assigned-to
tyhicks
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (1:2.10.4-0ubuntu1)
Patches:
Upstream:http://hg.pidgin.im/pidgin/main/rev/4d6bcb4f4ea4
More Information

Updated: 2019-03-26 12:01:56 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)