Pidgin > About > Security > Advisories > cve-2011-4939-00

cve-2011-4939-00

Summary	XMPP remote crash
Date	2011-07-08
CVE Number	CVE-2011-4939
Discovered By	Clemens Huebner in ticket
Fixed In Release	2.10.2

Description

Certain types of nickname changes in XMPP chat rooms can trigger a NULL pointer dereference in Pidgin, which triggers a crash.

Mitigation

Check for NULL before trying to use a struct.

Previous
Remote denial of service from corrupt buddy icons

Next
Pidgin uses clickable links to untrusted executables