Pidgin Security Advisory

TitleMSN SLP buffer overflow
CVE NameCVE-2004-0891
Discovered ByGaim
SummaryBuffer overflow when receiving unexpected sequence of MSN SLP messages
DescriptionBuffer overflow. memcpy was used without checking the size of the buffer before copying to it. Additionally, a logic flaw was causing the wrong buffer to be used as the destination for the copy under certain circumstances.
Fixed in Version1.0.2
FixCorrect the logic to select the correct buffer, and add bounds checking to prevent malformed messages causing a buffer overflow.

Return to Security Advisory Index