Multiple vulnerabilities has been discovered and corrected in pidgin: A series of specially crafted file transfer requests can cause clients to reference invalid memory. The user must have accepted one of the file transfer requests . Incoming messages with certain characters or character encodings can cause clients to crash . This update provides pidgin 2.10.4, which is not vulnerable to these issues.