FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libpurple -- Invalid memory dereference in the XMPP protocol plug-in by processing serie of specially-crafted file transfer requests

Affected packages
libpurple < 2.10.4

Details

VuXML ID 64f8b72d-9c4e-11e1-9c94-000bcdf0a03b
Discovery 2012-05-06
Entry 2012-05-12

Pidgin reports:

A series of specially crafted file transfer requests can cause clients to reference invalid memory. The user must have accepted one of the file transfer requests.

References

CVE Name CVE-2012-2214