High severity7.5NVD Advisory· Published Jul 27, 2018· Updated Jun 17, 2026
CVE-2017-2640
CVE-2017-2640
Description
An out-of-bounds write flaw was found in the way Pidgin before 2.12.0 processed XML content. A malicious remote server could potentially use this flaw to crash Pidgin or execute arbitrary code in the context of the pidgin process.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- osv-coords2 versionspkg:rpm/opensuse/pidgin&distro=openSUSE%20Tumbleweedpkg:rpm/suse/pidgin&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4
< 2.14.7-1.1+ 1 more
- (no CPE)range: < 2.14.7-1.1
- (no CPE)range: < 2.6.6-0.30.3.1
- Range: 2.12.0
Patches
Vulnerability mechanics
References
5- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
- www.securityfocus.com/bid/96775nvdThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2017:1854nvdThird Party Advisory
- security.gentoo.org/glsa/201706-10nvdThird Party Advisory
- www.debian.org/security/2017/dsa-3806nvdThird Party Advisory
News mentions
0No linked articles in our index yet.