FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
77e0b631-e6cf-11e5-85be-14dae9d210b8pidgin-otr -- use after free

Hanno Bock reports:

The pidgin-otr plugin version 4.0.2 fixes a heap use after free error. The bug is triggered when a user tries to authenticate a buddy and happens in the function create_smp_dialog.


Discovery 2015-04-04
Entry 2016-03-10
pidgin-otr
< 4.0.2

http://seclists.org/oss-sec/2016/q1/572
https://bugs.otr.im/issues/88
https://bugs.otr.im/issues/128
CVE-2015-8833
aa71daaa-9f8c-11e1-bd0a-0082a0c18826pidgin-otr -- format string vulnerability

The authors report:

Versions 3.2.0 and earlier of the pidgin-otr plugin contain a format string security flaw. This flaw could potentially be exploited by a remote attacker to cause arbitrary code to be executed on the user's machine.

The flaw is in pidgin-otr, not in libotr. Other applications that use libotr are not affected.


Discovery 2012-05-16
Entry 2012-05-16
pidgin-otr
< 3.2.1

CVE-2012-2369
http://www.cypherpunks.ca/otr/