A NULL pointer dereference flaw was found in the way IRC protocol plug-in of the Pidgin multiprotocol instant messaging client processed certain nick names, when list set of users (/who command) was issued upon user session startup and connecting user has had certain encoding configuration setup. A remote attacker could use a specially-crafted string as their nickname to cause the Pidgin client on the side of the victim (connecting user) to crash.
Upstream bug report:
Red Hat would like to thank the Pidgin project for reporting this issue.
This issue did NOT affect the versions of the pidgin package, as shipped with
Red Hat Enterprise Linux 4, 5, or 6.
This issue affects the versions of the pidgin package, as shipped with Fedora release of 14 and 15.
Not vulnerable. This issue did not affect the versions of pidgin as
shipped with Red Hat Enterprise Linux 4, 5, or 6 as they contained a version of pidgin that did not support /who IRC protocol command.
Created pidgin tracking bugs for this issue
Affects: fedora-all [bug 732410]