Important Security Bug #
Pidgin Security Advisory
Title MSN Remote "Nudge" DoS
Date 27 September 2007
CVE Name CVE-2007-4996
Discovered By Evan Schoenberg
Summary MSN nudges sent from unknown buddies can cause libpurple to crash
Description A remote MSN user that is not on the buddy list can cause a
denial of service (crash) by sending a nudge message. The protocol plugin
attempts to look up the buddy's information and accesses an invalid memory
location if the user is not on the buddy list.
Fixed in Version 2.2.1
Fix The nudge functionality in the MSN protocol has been rewritten to avoid
an unnecessary lookup of buddy information.
Return to Security Advisory Index
New Pidgin version 2.2.1 fixes that:
Release notes:
Release Name: 2.2.1
Notes:
2.2.1 (9/28/2007):
Richard: We have some new code in the pipeline, but it's not quite
ready for a general release. Instead, this is basically a bug fix
release.
Luke: Unfortunately the necessity of this bug fix release means
some of the tickets that have been closed as part of the 2.2.1
milestone are not actually fixed yet. We have grabbed as many
of the changes as we could while avoiding those that are as
yet unstable though, and this should still be a marked
improvement over 2.2.0. We have spent a lot of time since the
last release looking at the tickets that have been submitted
and many of them have been closed.
Stu: I haven't NEWS'd in a while. I haven't actually done much for
too long also, maybe I'll find some time soon. This release is
basically what 2.2.0 should have been - it actually compiles this
time.
Changes:
Version 2.2.1 (09/29/2007):
http://developer.pidgin.im/query?status=closed&milestone=2.2.1
NOTE: Due to the backporting that happened for the actual
release, it is possible bugs marked as fixed in 2.2.1
will not be fixed until 2.2.2.
libpurple:
* A few build issues on Solaris were fixed.
* Cancelling the password prompt for an account will no longer leave
it in an ambiguous state. (It will be disabled.)
* Fixed an erroneous size display for MSN file transfers. (galt)
* Fixed multiple memory leaks, particularly in XMPP and MySpace
protocols
* Fixed remembering proxy preferences and status scores
* Gmail notifications are better tracked
Pidgin:
* Fixed keyboard tab reordering to move tabs one step instead of two.
* You should no longer lose proxy settings when Pidgin is restarted.
* Fixed detection of X11 when compiling
Finch:
* Pressing 'Insert' in the buddylist will bring up the 'Add Buddy'
dialog.
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-4996
--
Pidgin 2.2.0 in Gutsy
https://bugs.launchpad.net/bugs/139686
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
