CVE-2010-4528

描述

directconn.c in the MSN protocol plugin in libpurple 2.7.6 through 2.7.8 in Pidgin before 2.7.9 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a short p2pv2 packet in a DirectConnect (aka direct connection) session.

受影響套件(1)

• Debian/pidginfrom 0, < 2.7.9-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-4528