New Search

RHSA-2009:1218 -- pidgin security update (Critical)

oval:org.mitre.oval:def:29222

Updated pidgin packages that fix a security issue are now available for Red Hat Enterprise Linux 3 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on multiple instant messaging networks simultaneously. Federico Muttis of Core Security Technologies discovered a flaw in Pidgin's MSN protocol handler. If a user received a malicious MSN message it was possible to execute arbitrary code with the permissions of the user running Pidgin. (CVE-2009-2694)

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 5
  • CentOS Linux 5
  • Red Hat Enterprise Linux 4
  • CentOS Linux 3
  • Red Hat Enterprise Linux 3
Class:
patch
Reference(s):
  • RHSA-2009:1218
  • CESA-2009:1218-CentOS 5
  • CESA-2009:1218-CentOS 3
  • CVE-2009-2694
Product(s):
  • pidgin