Author Topic: Pidgin 2.7.0, a very important security upgrade!  (Read 2218 times)

prince

  • Vectorite
  • ***
  • Posts: 188
Pidgin 2.7.0, a very important security upgrade!
« on: May 25, 2010, 06:19:26 pm »
Hopefully this get gets uploaded to repository ASAP!

The msn_emoticon_msg function in slp.c in the MSN protocol plugin in
       libpurple in Pidgin before 2.7.0 allows remote attackers to cause
       a denial of service (application crash) via a custom emoticon in a
       malformed SLP message.

It is strongly suggested that users drop Pidgin's 2.6 ... and upgrade!
« Last Edit: May 25, 2010, 06:31:11 pm by prince »

nightflier

  • Administrator
  • Vectorian
  • *****
  • Posts: 4460
Re: Pidgin 2.7.0, a very important security upgrade!
« Reply #1 on: May 25, 2010, 06:42:39 pm »
It is already in the testing repository: http://forum.vectorlinux.com/index.php?topic=11809.0

prince

  • Vectorite
  • ***
  • Posts: 188
Re: Pidgin 2.7.0, a very important security upgrade!
« Reply #2 on: May 25, 2010, 06:58:16 pm »
Thanks.