SuSE 10 Security Update : pidgin (ZYPP Patch Number 6342)
High Nessus Plugin ID 51723
The remote SuSE 10 host is missing a security-related patch.
Several bugfixes were done for the Instant Messenger Pidgin : - Malformed responses to file transfers could cause a buffer overflow in pidgin (CVE-2009-1373) and specially crafted packets could crash it. (CVE-2009-1375) - The fix against integer overflows in the msn protocol handling was incomplete. (CVE-2009-1376) - Fixed misparsing ICQ message as SMS DoS (CVE-2009-1889, Pidgin#9483). Also the Yahoo IM protocol was made to work again.