This is an old revision of the document!
Slackware-13.0 ChangeLog (2010-05-18)
Tue May 18 18:30:53 UTC 2010
Packages
Upgraded
- patches/packages/pidgin-2.7.0-i486-1_slack13.0.txz
Upgraded to pidgin-2.7.0 and pidgin-encryption-3.1.
The msn_emoticon_msg function in slp.c in the MSN protocol plugin in
libpurple in Pidgin before 2.7.0 allows remote attackers to cause
a denial of service (application crash) via a custom emoticon in a
malformed SLP message.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1624
(* Security fix *)