|Summary||Remote crash parsing malformed MXit emoticon|
|Discovered By||Yves Younan and Richard Johnson of Cisco Talos|
|Fixed In Release||2.10.10|
A malicious server or man-in-the-middle could trigger a crash in libpurple by sending an emoticon with an overly large length value.
Verify that the length value is valid before attempting to read data from the buffer.