The host is installed with Pidgin before 2.14.0 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle the g_markup_escape_text function. Successful exploitation allows remote attackers to cause a denial of service (crash) via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, related to interactions with certain versions of glib2.