Pidgin 2.10.2 Fixes Two DoS Vulnerabilities
Versions up to and including 2.10.1 are affected.
Version 2.10.2 of the Pidgin instant messaging application was recently released.
"According to its developers, the maintenance and security update brings a number of changes and addresses two denial-of-service (DoS) vulnerabilities that could be exploited by an attacker to cause the application to be terminated," The H Security reports.
"These remote crashes are caused when the MSN server sends messages that are not UTF-8 encoded and also when some types of nickname changes occur in chat rooms using the XMPP protocol," the article states. "Versions up to and including 2.10.1 are affected."
Go to "Pidgin IM client 2.10.2 closes DoS holes" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.