Unrated severityNVD Advisory· Published May 14, 2010· Updated Apr 29, 2026
CVE-2010-1624
CVE-2010-1624
Description
The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.7.0 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a custom emoticon in a malformed SLP message.
Affected products
5cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
- secunia.com/advisories/39801nvdNot ApplicableVendor Advisory
- www.redhat.com/support/errata/RHSA-2010-0788.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/40138nvdBroken LinkThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/USN-1014-1nvdThird Party Advisory
- www.vupen.com/english/advisories/2010/1141nvdPermissions RequiredVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/58559nvdThird Party AdvisoryVDB Entry
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18547nvdThird Party Advisory
- developer.pidgin.im/viewmtn/revision/diff/884d44222e8c81ecec51c25e07d005e002a5479b/with/894460d22c434e73d60b71ec031611988e687c8b/libpurple/protocols/msn/slp.cnvdBroken Link
- developer.pidgin.im/viewmtn/revision/info/894460d22c434e73d60b71ec031611988e687c8bnvdBroken Link
- secunia.com/advisories/41899nvdNot Applicable
- www.mandriva.com/security/advisoriesnvdBroken Link
- www.pidgin.im/news/security/index.phpnvdBroken Link
- www.vupen.com/english/advisories/2010/2755nvdPermissions Required
News mentions
0No linked articles in our index yet.