Pidgin Security Advisory
| Title | Crash handling bad XMPP timestamp |
|---|---|
| Date | 2014-01-28 |
| CVE Name | CVE-2013-6477 |
| Discovered By | Jaime Breva Ribes |
| Description | A remote XMPP user can trigger a crash on some systems by sending a message with a timestamp in the distant future. |
| Fixed in Revision | 852014ae74a0 |
| Fixed in Version | 2.10.8 |
| Fix | Avoid passing negative timestamps to localtime(). |
