Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 194278
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: ChazeFroy <chazefroy@gmail.com>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 194278 depends on: Show dependency tree
Bug 194278 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2007-09-30 13:23 0000 
http://www.pidgin.im/news/security/?id=23

"A remote MSN user that is not on the buddy list can cause a denial of service
(crash) by sending a nudge message. The protocol plugin attempts to look up the
buddy's information and accesses an invalid memory location if the user is not
on the buddy list."

Reproducible: Always

Steps to Reproduce:

------- Comment #1 From Robert Buchholz 2007-09-30 14:12:21 0000 ------- 
Chaze, thanks for the report.

net-im, please advise.

------- Comment #2 From Olivier Crete 2007-09-30 16:15:10 0000 ------- 
Fix version 2.2.1 is in the tree.
Arch teams: please stabilize this version

------- Comment #3 From Olivier Crete 2007-09-30 16:16:11 0000 ------- 
I'd also like to suggest that this is probably A3 since MSN is popular enough
to be considered a default situation...

------- Comment #4 From Ferris McCormick 2007-09-30 19:24:20 0000 ------- 
Sparc stable; looks good.

------- Comment #5 From Pierre-Yves Rofes 2007-09-30 19:35:15 0000 ------- 
(In reply to comment #3)
> I'd also like to suggest that this is probably A3 since MSN is popular enough
> to be considered a default situation...
> 

Probably, but AFAICT this is a simple client DoS, hardly a security issue...
I'll keep it B3 so we'll vote later for glsa need.

------- Comment #6 From Raúl Porcel 2007-10-01 12:37:59 0000 ------- 
alpha/ia64/x86 stable

------- Comment #7 From Jeroen Roovers 2007-10-01 15:17:29 0000 ------- 
Stable for HPPA.

------- Comment #8 From Tobias Scherbaum 2007-10-03 20:11:11 0000 ------- 
ppc stable

------- Comment #9 From Steve Dibb 2007-10-04 14:27:07 0000 ------- 
amd64 stable

------- Comment #10 From Olivier Crete 2007-10-04 14:40:30 0000 ------- 
I removed all vulnerable versions from the tree. Its your turn now.

------- Comment #11 From Robert Buchholz 2007-10-04 15:07:12 0000 ------- 
(In reply to comment #5)
> Probably, but AFAICT this is a simple client DoS, hardly a security issue...
> I'll keep it B3 so we'll vote later for glsa need.

Since this can be triggered remotely and by anyone, I'd say this is more than a
"simple DoS" (as in "I start my application on this file and it crashes").

------- Comment #12 From Pierre-Yves Rofes 2007-10-06 13:27:19 0000 ------- 
(In reply to comment #11)
> (In reply to comment #5)
> > Probably, but AFAICT this is a simple client DoS, hardly a security issue...
> > I'll keep it B3 so we'll vote later for glsa need.
> 
> Since this can be triggered remotely and by anyone, I'd say this is more than a
> "simple DoS" (as in "I start my application on this file and it crashes").
> 

true, I missed that. I tend to vote YES then.

------- Comment #13 From Matt Drew 2007-10-11 21:31:20 0000 ------- 
As a general rule we don't GLSA client-side DoS.  I don't see anything here
that makes it more than that.

------- Comment #14 From Sune Kloppenborg Jeppesen 2007-10-17 18:47:57 0000 ------- 
I vote NO -> closing with NO GLSA (2 no votes - ½? yes).
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug