CVE-2011-4601

描述

family_feedbag.c in the oscar protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service (application crash) via a crafted (1) AIM or (2) ICQ message associated with buddy-list addition.

受影響套件(1)

• Debian/pidginfrom 0, < 2.10.1-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-4601