Summary Pidgin MXIT g_snprintf Multiple Buffer Overflow Vulnerabilities
Date 2016-06-21
CVE Number CVE-2016-2368
Talos Report ID TALOS-2016-0136
Discovered By Yves Younan of Cisco Talos
Fixed In Release 2.11.0


Data is copied without verifying that it was copied successfully.


Separate the handling of HTTP headers and body. Check the return value from g_vsnprintf().

Looking to reach us via XMPP? Check out the new PidginChat service!