Pidgin Security Advisory
| Title | XMPP file transfer buffer overflow |
|---|---|
| Date | 2009-05-02 |
| CVE Name | CVE-2009-1373 |
| Discovered By | Veracode |
| Summary | Buffer overflow is possible when initiating file transfer to a malicious buddy over XMPP |
| Description | The XMPP SOCKS5 bytestream server was not correctly checking the bounds of a buffer when initiating an outgoing file transfer. |
| Fixed in Version | 2.5.6 |
| Fix | The affected function has been patched to fix the vulnerability. |
