CVE-2008-2956
Published: 1 July 2008
** DISPUTED ** Memory leak in Pidgin 2.0.0, and possibly other versions, allows remote attackers to cause a denial of service (memory consumption) via malformed XML documents. NOTE: this issue has been disputed by the upstream vendor, who states: "I was never able to identify a scenario under which a problem occurred and the original reporter wasn't able to supply any sort of reproduction details."
Notes
| Author | Note |
|---|---|
| mdeslaur | as of 2008-11-20, has not been fixed by upstream AFAICT as of 2009-07-03, has not been fixed by upstream AFAICT upstream is ignoring this. let's ignore it too. |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
gaim Launchpad, Ubuntu, Debian |
dapper |
Ignored
|
| gutsy |
Does not exist
|
|
| hardy |
Does not exist
|
|
| intrepid |
Does not exist
|
|
| jaunty |
Does not exist
|
|
| upstream |
Ignored
|
|
|
pidgin Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| feisty |
Does not exist
|
|
| hardy |
Ignored
|
|
| intrepid |
Ignored
|
|
| jaunty |
Ignored
|
|
| upstream |
Ignored
|