CVE-2014-3698

Synopsis Moderate: pidgin security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for pidgin is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Syst ...

Several security issues were fixed in Pidgin ...

Multiple vulnerabilities have been discovered in Pidgin, a multi-protocol instant messaging client: CVE-2014-3694 It was discovered that the SSL/TLS plugins failed to validate the basic constraints extension in intermediate CA certificates CVE-2014-3695 Yves Younan and Richard Johnson discovered that emoticons with overly large le ...

An information disclosure flaw was discovered in the way Pidgin parsed XMPP messages A malicious remote server or a man-in-the-middle attacker could potentially use this flaw to disclose a portion of memory belonging to the Pidgin process by sending a specially crafted XMPP message ...