Pidgin Security Advisory
| Title | MSN overflow parsing SLP messages |
|---|
| Date | 2009-08-18 |
|---|
| CVE Name | CVE-2009-2694 |
|---|
| Discovered By | Core Security Technologies |
|---|
| Summary | Specially crafted SLP messages can cause a buffer overflow |
|---|
| Description | By sending two consecutive specially crafted SLP messages it is possible to trigger an memcpy to an invalid location in memory. This affects all versions of libpurple and Gaim released in the past few years. |
|---|
| Fixed in Version | 2.5.9 |
|---|
| Fix | Correctly destroy outgoing SLP ACK messages after they are sent, and ensure a buffer has been allocated within the SLP data structure before attempting to write to it. |
|---|
Return to Security Advisory Index
