Pidgin < 2.9.0 gdk_pixbuf__gif_image_load() Denial of Service
Medium Nessus Plugin ID 55436
SynopsisAn instant messaging client installed on the remote Windows host is affected by a denial of service vulnerability.
DescriptionThe version of Pidgin installed on the remote host is earlier than 2.9.0. As such, it is potentially affected by a denial of service vulnerability.
The function 'gdk_pixbuf__gif_image_load' contains an error that allows a crafted GIF image file, when used as a buddy image, to cause memory exhaustion and finally process termination.
SolutionUpgrade to Pidgin 2.9.0 or later.