Pidgin Security Advisory

TitlePidgin MXIT g_snprintf Multiple Buffer Overflow Vulnerabilities
Date2016-06-21
CVE NameCVE 2016-2368
Discovered ByYves Younan of Cisco Talos
DescriptionData is copied without verifying that it was copied successfully. (TALOS-CAN-0136)
Fixed in Revision60f95045db42
f6efc254e947
Fixed in Version2.11.0
FixSeparate the handling of HTTP headers and body. Check the return value from g_vsnprintf().

Return to Security Advisory Index