CVE Vulnerabilities

CVE-2013-6477

Published: Feb 06, 2014 | Modified: Mar 16, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service (application crash) via a crafted timestamp value in an XMPP message.

Affected Software

Name Vendor Start Version End Version
Pidgin Pidgin 2.5.9 2.5.9
Pidgin Pidgin 2.5.8 2.5.8
Pidgin Pidgin 2.7.9 2.7.9
Pidgin Pidgin 2.7.5 2.7.5
Pidgin Pidgin 2.7.0 2.7.0
Pidgin Pidgin 2.10.1 2.10.1
Pidgin Pidgin 2.1.0 2.1.0
Pidgin Pidgin 2.7.4 2.7.4
Pidgin Pidgin 2.6.0 2.6.0
Pidgin Pidgin 2.5.2 2.5.2
Pidgin Pidgin 2.5.1 2.5.1
Pidgin Pidgin 2.6.3 2.6.3
Pidgin Pidgin 2.7.6 2.7.6
Pidgin Pidgin 2.7.11 2.7.11
Pidgin Pidgin 2.5.6 2.5.6
Pidgin Pidgin 2.7.10 2.7.10
Pidgin Pidgin 2.5.7 2.5.7
Pidgin Pidgin 2.0.1 2.0.1
Pidgin Pidgin 2.4.2 2.4.2
Pidgin Pidgin 2.7.3 2.7.3
Pidgin Pidgin 2.5.4 2.5.4
Pidgin Pidgin 2.10.2 2.10.2
Pidgin Pidgin 2.5.5 2.5.5
Pidgin Pidgin 2.6.5 2.6.5
Pidgin Pidgin 2.2.2 2.2.2
Pidgin Pidgin 2.1.1 2.1.1
Pidgin Pidgin 2.3.1 2.3.1
Pidgin Pidgin 2.4.3 2.4.3
Pidgin Pidgin 2.6.6 2.6.6
Pidgin Pidgin 2.8.0 2.8.0
Pidgin Pidgin 2.0.0 2.0.0
Pidgin Pidgin 2.10.5 2.10.5
Pidgin Pidgin 2.0.2 2.0.2
Pidgin Pidgin 2.3.0 2.3.0
Pidgin Pidgin 2.4.1 2.4.1
Pidgin Pidgin 2.4.0 2.4.0
Pidgin Pidgin 2.6.2 2.6.2
Pidgin Pidgin 2.5.0 2.5.0
Pidgin Pidgin 2.10.4 2.10.4
Pidgin Pidgin 2.9.0 2.9.0
Pidgin Pidgin 2.2.0 2.2.0
Pidgin Pidgin 2.2.1 2.2.1
Pidgin Pidgin 2.7.8 2.7.8
Pidgin Pidgin 2.10.0 2.10.0
Pidgin Pidgin 2.7.7 2.7.7
Pidgin Pidgin 2.10.6 2.10.6
Pidgin Pidgin 2.5.3 2.5.3
Pidgin Pidgin 2.6.1 2.6.1
Pidgin Pidgin 2.6.4 2.6.4
Pidgin Pidgin 2.7.2 2.7.2
Pidgin Pidgin 2.10.3 2.10.3
Pidgin Pidgin * 2.10.7
Pidgin Pidgin 2.7.1 2.7.1

References