Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-6483HistoryFeb 06, 2014 - 4:10 p.m.
CVE-2013-6483
2014-02-0616:10:58
Debian Security Bug Tracker
security-tracker.debian.org
10
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
EPSS
0.019
Percentile
88.7%
The XMPP protocol plugin in libpurple in Pidgin before 2.10.8 does not properly determine whether the from address in an iq reply is consistent with the to address in an iq request, which allows remote attackers to spoof iq traffic or cause a denial of service (NULL pointer dereference and application crash) via a crafted reply.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | pidgin | < 2.10.8-1 | pidgin_2.10.8-1_all.deb |
| Debian | 11 | all | pidgin | < 2.10.8-1 | pidgin_2.10.8-1_all.deb |
| Debian | 999 | all | pidgin | < 2.10.8-1 | pidgin_2.10.8-1_all.deb |
| Debian | 13 | all | pidgin | < 2.10.8-1 | pidgin_2.10.8-1_all.deb |
Related
prion
prion
Null pointer dereference
2014-02-06 16:10:00
nvd
nvd
CVE-2013-6483
2014-02-06 16:10:58
cvelist
cvelist
CVE-2013-6483
2014-02-06 15:00:00
ubuntucve
ubuntucve
CVE-2013-6483
2014-02-05 00:00:00
cve
cve
CVE-2013-6483
2014-02-06 16:10:58
openvas
openvas
Debian Security Advisory DSA 2859-1 (pidgin - several vulnerabilities)
2014-02-10 00:00:00
Debian: Security Advisory (DSA-2859-2)
2014-02-09 00:00:00
Fedora Update for pidgin FEDORA-2014-1999
2014-02-17 00:00:00
osv
osv
pidgin - security update
2014-02-10 00:00:00
pidgin - several
2014-02-10 00:00:00
debian
debian
[BSA-092] Security Update for pidgin
2014-02-22 11:36:11
[SECURITY] [DSA 2859-1] pidgin security update
2014-02-10 17:30:06
nessus
nessus
openSUSE Security Update : pidgin / pidgin-branding-openSUSE (openSUSE-SU-2014:0239-1)
2014-06-13 00:00:00
Debian DSA-2859-1 : pidgin - several vulnerabilities
2014-02-12 00:00:00
Ubuntu 12.04 LTS / 12.10 / 13.10 : pidgin vulnerabilities (USN-2100-1)
2014-02-07 00:00:00
kaspersky
kaspersky
KLA10433 Multiple vulnerabilities in Pidgin
2014-06-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:01:12
Denial Of Service (DoS)
2019-05-02 05:01:11
Out-Of-Bounds Write
2019-05-02 05:01:11
redhat
redhat
(RHSA-2014:0139) Moderate: pidgin security update
2014-02-05 00:00:00
ubuntu
ubuntu
Pidgin vulnerabilities
2014-02-06 00:00:00
mageia
mageia
Updated pidgin package fixes security vulnerabilities
2014-02-05 19:31:44
fedora
fedora
[SECURITY] Fedora 20 Update: pidgin-2.10.9-1.fc20
2014-02-06 03:50:31
[SECURITY] Fedora 19 Update: pidgin-2.10.9-1.fc19
2014-02-14 08:00:10
oraclelinux
oraclelinux
pidgin security update
2014-02-05 00:00:00
securityvulns
securityvulns
libgadu / libpurple / Pidgin multiple security vulnerabilities
2014-02-10 00:00:00
centos
centos
finch, libpurple, pidgin security update
2014-02-05 19:41:13
slackware
slackware
pidgin
2014-02-03 13:58:20
gentoo
gentoo
Pidgin: Multiple vulnerabilities
2014-05-18 00:00:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
EPSS
0.019
Percentile
88.7%
Related for DEBIANCVE:CVE-2013-6483