Pidgin Security Advisory
| Title | SILC remote crash |
|---|---|
| Date | 2011-09-29 |
| CVE Name | CVE-2011-3594 |
| Discovered By | Diego Bauche Madero from IOActive |
| Description | When receiving various incoming messages, the SILC protocol plugin failed to validate that a piece of text was UTF-8. In some cases invalid UTF-8 data would lead to a crash. |
| Fixed in Revision | 69372ee4f474 |
| Fixed in Version | 2.10.1 |
| Fix | Validate incoming strings as UTF-8 before using them as such. |
