Download
| Alert*
|
oval:org.secpod.oval:def:400724
pidgin-otr is installed oval:org.secpod.oval:def:400723 This update for pidgin-otr fixes the following issues: - CVE-2015-8833: A heap based use-after-free issue was fixed in pidgin-otr that could lead to crashes or potential code execution. oval:org.secpod.oval:def:602441 Stefan Sperling discovered that pidgin-otr, a Pidgin plugin implementing Off-The-Record messaging, contained a use-after-free bug. This could be used by a malicious remote user to intentionally crash the application, thus causing a denial-of-service. oval:org.secpod.oval:def:600811 intrigeri discovered a format string error in pidgin-otr, an off-the-record messaging plugin for Pidgin. This could be exploited by a remote attacker to cause arbitrary code to be executed on the user"s machine. The problem is only in pidgin-otr. Other applications which use libotr are not affected. oval:org.secpod.oval:def:601493 pidgin-otr is installed |
