Pidgin Security Advisory

TitleMSN Remote DoS
CVE NameCVE-2005-1934
Discovered ByHugo de Bokkenrijder
SummaryCertain malformed MSN messages can cause gaim to crash
DescriptionRemote attackers can cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error.
Fixed in Version1.3.1
FixAdded a check for the invalid message.

Return to Security Advisory Index