Denial of Service Vulnerability in Pidgin and Related Products
CVE-2011-3594

Currently unrated

Key Information:

Vendor

Pidgin

Status
Libpurple
Pidgin
Vendor
CVE Published:
4 November 2011

What is CVE-2011-3594?

A vulnerability exists in the g_markup_escape_text function within the SILC protocol plug-in of libpurple. This flaw allows remote attackers to trigger a denial of service by sending invalid UTF-8 sequences. These sequences can lead to the use of invalid pointers and result in out-of-bounds reads, potentially crashing the application. The issue is particularly related to its interaction with certain versions of glib2.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
http://developer.pidgin.im/viewmtn/revision/diff/be5e66ab...
x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=743481
x_refsource_MISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.