CVE-2013-6490

Published: 05 February 2014

The SIMPLE protocol functionality in Pidgin before 2.10.8 allows remote attackers to have an unspecified impact via a negative Content-Length header, which triggers a buffer overflow.

Priority

Medium

Status

Package Release Status
pidgin
Launchpad, Ubuntu, Debian
Upstream
Released (2.10.8)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (1:2.10.9-0ubuntu1)
Patches:
Upstream: http://hg.pidgin.im/pidgin/main/rev/6bd2dd10e5da