Pidgin Security Advisory

TitlePidgin MXIT MultiMX Message Code Execution Vulnerability
CVE NameCVE 2016-2374
Discovered ByYves Younan of Cisco Talos
DescriptionA malicious server or man-in-the-middle could trigger a crash or potentially arbitrary code execution. (TALOS-CAN-0142)
Fixed in Revisionf6c08d962618
Fixed in Version2.11.0
FixValidate the incoming message format.

Return to Security Advisory Index