Ubuntu Update For Pidgin Vulnerabilities USN-1014-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1014-1

Solution

Please Install the Updated Packages.

Insight

Pierre Nogu&#232 s discovered that Pidgin incorrectly handled malformed SLP messages in the MSN protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 8.04 LTS, 9.10 and 10.04 LTS. (CVE-2010-1624) Daniel Atallah discovered that Pidgin incorrectly handled the return code of the Base64 decoding function. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. (CVE-2010-3711)

Affected

pidgin vulnerabilities on Ubuntu 8.04 LTS , Ubuntu 9.10 , Ubuntu 10.04 LTS

Severity

Classification

CVE CVE-2010-1624, CVE-2010-3711

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for bluez-utils vulnerability USN-413-1
Ubuntu Update for curl USN-2097-1
Ubuntu Update for apache2 USN-1368-1
Ubuntu Update for dbus USN-1576-1
Ubuntu Update for bind9 USN-1139-1

Ubuntu Update for pidgin vulnerabilities USN-1014-1

Take action and discover your vulnerabilities