Libpurple Yahoo Protocol 'YMSG' NULL Pointer Dereference Denial of Service Vulnerability

Bugtraq ID: 46837
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2011-1091
Remote: Yes
Local: No
Published: Mar 11 2011 12:00AM
Updated: May 07 2015 05:03PM
Credit: Marius Wachtler
Vulnerable: Ubuntu Ubuntu Linux 11.04 powerpc
Ubuntu Ubuntu Linux 11.04 i386
Ubuntu Ubuntu Linux 11.04 ARM
Ubuntu Ubuntu Linux 11.04 amd64
Ubuntu Ubuntu Linux 10.10 powerpc
Ubuntu Ubuntu Linux 10.10 i386
Ubuntu Ubuntu Linux 10.10 ARM
Ubuntu Ubuntu Linux 10.10 amd64
Ubuntu Ubuntu Linux 10.04 sparc
Ubuntu Ubuntu Linux 10.04 powerpc
Ubuntu Ubuntu Linux 10.04 i386
Ubuntu Ubuntu Linux 10.04 ARM
Ubuntu Ubuntu Linux 10.04 amd64
Sun Solaris 10_x86
Sun Solaris 10_sparc
Sun Solaris 10
Redhat Enterprise Linux WS 4
Redhat Enterprise Linux Workstation Optional 6
Redhat Enterprise Linux Workstation 6
Redhat Enterprise Linux Server Optional 6
Redhat Enterprise Linux Optional Productivity Application 5 server
Redhat Enterprise Linux ES 4
Redhat Enterprise Linux Desktop Workstation 5 client
Redhat Enterprise Linux Desktop Optional 6
Redhat Enterprise Linux Desktop 6
Redhat Enterprise Linux Desktop 5 client
Redhat Enterprise Linux AS 4
Redhat Enterprise Linux Desktop version 4
Pidgin Libpurple 2.7.10
Pidgin Libpurple 2.7.9
Pidgin Libpurple 2.7.7
Pidgin Libpurple 2.7.6
Pidgin Libpurple 2.7
Pidgin Libpurple 2.6.5
Pidgin Libpurple 2.6.4
Pidgin Libpurple 2.6.1
Pidgin Libpurple 2.6
Pidgin Libpurple -
Pardus Linux 2009 0
Oracle Enterprise Linux 4
Mandriva Linux Mandrake 2010.1 x86_64
Mandriva Linux Mandrake 2010.1
Mandriva Linux Mandrake 2010.0 x86_64
Mandriva Linux Mandrake 2010.0
Mandriva Linux Mandrake 2009.0 x86_64
Mandriva Linux Mandrake 2009.0
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
Not Vulnerable: Pidgin Libpurple 2.7.11


 

Privacy Statement
Copyright 2010, SecurityFocus