CVE-2014-3698

EPSS 1.3%

Published: 10/29/2014Modified: 4/28/2026

Also known as:DEBIAN-CVE-2014-3698

Description

The jabber_idn_validate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message.

Affected packages (1)

Debian/pidginfrom 0, < 2.10.10-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-3698