Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-2528HistoryJul 30, 2010 - 1:26 p.m.
CVE-2010-2528
2010-07-3013:26:15
Debian Security Bug Tracker
security-tracker.debian.org
4
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.014 Low
EPSS
Percentile
86.4%
The clientautoresp function in family_icbm.c in the oscar protocol plugin in libpurple in Pidgin before 2.7.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via an X-Status message that lacks the expected end tag for a (1) desc or (2) title element.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | pidgin | < 2.7.2-1 | pidgin_2.7.2-1_all.deb |
| Debian | 11 | all | pidgin | < 2.7.2-1 | pidgin_2.7.2-1_all.deb |
| Debian | 999 | all | pidgin | < 2.7.2-1 | pidgin_2.7.2-1_all.deb |
| Debian | 13 | all | pidgin | < 2.7.2-1 | pidgin_2.7.2-1_all.deb |
Related
altlinux
altlinux
Security fix for the ALT Linux 6 package pidgin version 2.7.3-alt1
2010-08-11 00:00:00
Security fix for the ALT Linux 5 package pidgin version 2.7.3-alt1
2010-08-11 00:00:00
Security fix for the ALT Linux 5 package pidgin-mini version 2.7.2-alt1
2010-07-24 00:00:00
cve
cve
CVE-2010-2528
2010-07-30 13:26:15
openvas
openvas
Mandriva Update for pidgin MDVSA-2010:148 (pidgin)
2010-08-13 00:00:00
Slackware Advisory SSA:2010-240-05 pidgin
2012-09-11 00:00:00
Slackware: Security Advisory (SSA:2010-240-05)
2012-09-10 00:00:00
ubuntucve
ubuntucve
CVE-2010-2528
2010-07-30 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:148 ] pidgin
2010-08-14 00:00:00
libpurple library / Pidgin DoS
2010-08-14 00:00:00
prion
prion
Null pointer dereference
2010-07-30 13:26:00
nessus
nessus
Pidgin X-Status NULL Pointer Denial of Service
2010-07-22 00:00:00
Mandriva Linux Security Advisory : pidgin (MDVSA-2010:148)
2010-08-13 00:00:00
Fedora 13 : pidgin-2.7.2-1.fc13 (2010-11321)
2010-07-27 00:00:00
slackware
slackware
[slackware-security] pidgin
2010-08-28 16:53:14
nvd
nvd
CVE-2010-2528
2010-07-30 13:26:15
cvelist
cvelist
CVE-2010-2528
2010-07-29 18:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: pidgin-2.7.2-1.fc13
2010-07-27 02:36:28
[SECURITY] Fedora 13 Update: pidgin-2.7.9-1.fc13
2011-01-07 20:01:11
[SECURITY] Fedora 13 Update: pidgin-2.7.4-1.fc13
2010-11-01 21:00:14
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.014 Low
EPSS
Percentile
86.4%
Related for DEBIANCVE:CVE-2010-2528