CVE Vulnerabilities

CVE-2011-4939

Published: Mar 15, 2012 | Modified: Jan 18, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin before 2.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by changing a nickname while in an XMPP chat room.

Affected Software

Name Vendor Start Version End Version
Pidgin Pidgin 2.5.9 2.5.9
Pidgin Pidgin 2.5.8 2.5.8
Pidgin Pidgin 2.7.9 2.7.9
Pidgin Pidgin 2.7.5 2.7.5
Pidgin Pidgin 2.1.0 2.1.0
Pidgin Pidgin 2.7.4 2.7.4
Pidgin Pidgin 2.6.0 2.6.0
Pidgin Pidgin 2.5.2 2.5.2
Pidgin Pidgin 2.5.1 2.5.1
Pidgin Pidgin 2.6.3 2.6.3
Pidgin Pidgin 2.7.6 2.7.6
Pidgin Pidgin 2.7.11 2.7.11
Pidgin Pidgin 2.5.6 2.5.6
Pidgin Pidgin 2.7.10 2.7.10
Pidgin Pidgin 2.5.7 2.5.7
Pidgin Pidgin 2.0.1 2.0.1
Pidgin Pidgin 2.4.2 2.4.2
Pidgin Pidgin 2.7.3 2.7.3
Pidgin Pidgin 2.5.4 2.5.4
Pidgin Pidgin 2.5.5 2.5.5
Pidgin Pidgin 2.6.5 2.6.5
Pidgin Pidgin 2.2.2 2.2.2
Pidgin Pidgin 2.1.1 2.1.1
Pidgin Pidgin 2.3.1 2.3.1
Pidgin Pidgin 2.4.3 2.4.3
Pidgin Pidgin 2.6.6 2.6.6
Pidgin Pidgin 2.8.0 2.8.0
Pidgin Pidgin 2.0.0 2.0.0
Pidgin Pidgin 2.0.2 2.0.2
Pidgin Pidgin 2.3.0 2.3.0
Pidgin Pidgin 2.4.1 2.4.1
Pidgin Pidgin 2.4.0 2.4.0
Pidgin Pidgin 2.6.2 2.6.2
Pidgin Pidgin 2.5.0 2.5.0
Pidgin Pidgin 2.9.0 2.9.0
Pidgin Pidgin 2.2.0 2.2.0
Pidgin Pidgin 2.2.1 2.2.1
Pidgin Pidgin 2.7.8 2.7.8
Pidgin Pidgin 2.10.0 2.10.0
Pidgin Pidgin 2.7.7 2.7.7
Pidgin Pidgin 2.5.3 2.5.3
Pidgin Pidgin 2.6.1 2.6.1
Pidgin Pidgin 2.6.4 2.6.4
Pidgin Pidgin 2.7.2 2.7.2
Pidgin Pidgin 2.7.1 2.7.1
Pidgin Pidgin * 2.10.1

References