Pidgin Security Advisory

TitleLocal hostname resolution buffer overflow
CVE NameCVE-2004-0785
Discovered BySean ("infamous42md")
SummaryPossible buffer overflow when resolving the hostname of the local computer.
DescriptionBuffer overflow. If the local computers host name is not in /etc/hosts, and the computer performs a DNS query to obtain it's hostname when signing on to zephyr, it could receive a reply with a hostname greater than MAXHOSTNAMELEN (generally 64 bytes). If gethostbyname() does not ensure the size of hostent->h_name is less than MAXHOSTNAMELEN, this value would be copied to a buffer that is not large enough.
Fixed in Version0.82
FixThe calls to copy the hostname were replaced with calls that check the length of the destination buffer.

Return to Security Advisory Index