openSUSE-SU-2013:0407-1 -- Suse pidgin
|ID: oval:org.secpod.oval:def:400506||Date: (C)2013-03-22 (M)2017-09-22|
|Class: PATCH||Family: unix|
pidgin was updated to fix security issues: - Fix a crash when receiving UPnP responses with abnormally long values. - Fix a crash in Sametime when a malicious server sends us an abnormally long user ID. - Fix a bug where the MXit server or a man-in-the-middle could potentially send specially crafted data that could overflow a buffer and lead to a crash or remote code execution.