oss-sec mailing list archives

Re: CVE Request pidgin

From: "Steven M. Christey" <coley () linus mitre org>
Date: Mon, 31 Aug 2009 15:45:38 -0400 (EDT)


On Wed, 19 Aug 2009, Josh Bressers wrote:

Can you give us an ID for pidgin. Their 2.6.1 release fixes a DoS in
only 2.6.0.


======================================================
Name: CVE-2009-3025
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3025
Reference: MLIST:[oss-security] 20090819 CVE Request pidgin
Reference: URL:http://www.openwall.com/lists/oss-security/2009/08/19/2
Reference: CONFIRM:http://developer.pidgin.im/wiki/ChangeLog

Unspecified vulnerability in Pidgin 2.6.0 allows remote attackers to
cause a denial of service (crash) via a link in a Yahoo IM.

Current thread:

CVE Request pidgin Josh Bressers (Aug 19)
- Re: CVE Request pidgin Steven M. Christey (Aug 31)