This page lists all potential security vulnerabilities discovered since August 1st, 2004 in Pidgin (or Gaim), Finch, libpurple, or any official plugins included with those programs.

2017-03-09

Out-of-bounds write when stripping xml

• CVE-2017-2640

2016-06-21

Pidgin MXIT Suggested Contacts Memory Disclosure Vulnerability

• CVE-2016-2375
• TALOS-2016-0143

2004-10-19

MSN SLP buffer overflow

MSN SLP DOS (malloc error)

MSN File transfer DOS (malloc error)

2004-08-26

Content-length DOS (malloc error)

RTF message buffer overflow

• CVE-2004-0785

Local hostname resolution buffer overflow

• CVE-2004-0785

URL decode buffer overflow

• CVE-2004-0785

Groupware message receive integer overflow

• CVE-2004-0754

2004-08-22

Smiley theme installation lack of escaping

• CVE-2004-0784

MSN strncpy buffer overflow

• CVE-2004-0500