CVE-2014-3698

描述

The jabber_idn_validate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message.

受影響套件(1)

• Debian/pidginfrom 0, < 2.10.10-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-3698