Alerts This Week
Warning Icon 1 914
Alerts This Week
Warning Icon 1 914

Slackware: 2010-138-01 High: Pidgin Denial Of Service Issue

slackware
Calendar Grey May 18, 2010
Dist Slackware Esm H88
Latest Pidgin updates released for Slackware aim to address a denial of service vulnerability found in the application.
New pidgin packages are available for Slackware 12.0, 12.1, 12.2, 13.0, and -current to fix a security issue

Summary

Here are the details from the Slackware 13.0 ChangeLog: patches/packages/pidgin-2.7.0-i486-1_slack13.0.txz: Upgraded. Upgraded to pidgin-2.7.0 and pidgin-encryption-3.1. The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.7.0 allows remote attackers to cause a denial of service (application crash) via a custom emoticon in a malformed SLP message. For more information, see: https://www.cve.org/CVERecord?id=CVE-2010-1624 (* Security fix *)

Topics%20covered

Topics Covered

security advisory denial of service high severity Slackware pidgin

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 12.0:
Updated package for Slackware 12.1:
Updated package for Slackware 12.2:
Updated package for Slackware 13.0:
Updated package for Slackware x86_64 13.0:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 12.0 package: b988b50b9eacdb945e23f87d727cd9ea pidgin-2.7.0-i486-1_slack12.0.tgz
Slackware 12.1 package: 18d32120919d0042d370813ab90a7d1d pidgin-2.7.0-i486-1_slack12.1.tgz
Slackware 12.2 package: d3686755cf78d1f1b1c0e61663325c5f pidgin-2.7.0-i486-1_slack12.2.tgz
Slackware 13.0 package: 80002e97f1979c926b2a5c72ef7e4847 pidgin-2.7.0-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: 03ac23f92b3884911718a9e4fce8d3b3 pidgin-2.7.0-x86_64-1_slack13.0.txz
Slackware -current package: 2573c594996ef632e013a0ffcb95fe75 pidgin-2.7.0-i486-1.txz
Slackware x86_64 -current package: b65ac72c257d0fa7b82728030a79bb36 pidgin-2.7.0-x86_64-1.txz

Topics%20covered

Topics Covered

security advisory denial of service high severity Slackware pidgin

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg pidgin-2.7.0-i486-1_slack13.0.txz

Your message here