FreeBSD : libpurple -- multiple vulnerabilities (549787c1-8916-11e2-8549-68b599b52a02)
Medium Nessus Plugin ID 65184
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionPidgin reports :
Fix a crash when receiving UPnP responses with abnormally long values.
Fix two bugs where a remote MXit user could possibly specify a local file path to be written to.
Fix a bug where the MXit server or a man-in-the-middle could potentially send specially crafted data that could overflow a buffer and lead to a crash or remote code execution.
Fix a crash in Sametime when a malicious server sends us an abnormally long user ID.
SolutionUpdate the affected package.