Denial of Service Vulnerabilities

Daniel Atallah daniel.atallah at gmail.com
Sat Mar 16 14:31:05 EDT 2013


On Sat, Mar 2, 2013 at 1:19 PM, Daniel Atallah <daniel.atallah at gmail.com> wrote:
> On Mon, Feb 25, 2013 at 9:14 AM, Fabian Yamaguchi
> <fabian.yamaguchi at cs.uni-goettingen.de> wrote:
>> Hi Pidgin Security Team,
>>
>> we would like to report some denial of service vulnerabilities we
>> found during our research on automatically identifying missing checks
>> in source code. Two of these crashes can be triggered by another user.
>
> <SNIP>
>
> I've attached patches to address the MSN issues (1, 3, 4).
> I did notice and correct some additional similar issues in
> msn_fault_handling.patch.

These patches have been pushed to the private repo as 23cbfff68a0c,
ef836278304b and 68d6df7dc69c.

-D


More information about the security mailing list