Red Hat Bugzilla – Bug 803296
CVE-2011-4939 pidgin: NULL pointer dereference in the XMPP protocol plug-in by renaming user name
Last modified: 2016-03-04 07:30:35 EST
A NULL pointer dereference flaw was found in the way XMPP protocol plug-in of Pidgin, a Gtk+ based multiprotocol instant messaging client, performed change of user name for particular buddy. If a remote Pidgin user, present on the buddy list of the victim, changed their Pidgin nickname to specially-crafted value it would lead to Pidgin client crash.
Upstream bug report:
Upstream security page entry:
Created pidgin tracking bugs for this issue
Affects: fedora-all [bug 803299]
This was assigned the name CVE-2011-4939:
Not Vulnerable. This issue does not affect the version of pidgin as shipped with Red Hat Enterprise Linux 5 and 6.