The jabber_idn_validate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message.
Advisories
Source ID Title
Debian DSA Debian DSA DSA-3055-1 pidgin security update
EUVD EUVD EUVD-2014-3644 The jabber_idn_validate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message.
Ubuntu USN Ubuntu USN USN-2390-1 Pidgin vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-06T10:50:18.329Z

Reserved: 2014-05-14T00:00:00

Link: CVE-2014-3698

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2014-10-29T10:55:04.493

Modified: 2025-04-12T10:46:40.837

Link: CVE-2014-3698

cve-icon Redhat

Severity : Moderate

Publid Date: 2014-10-22T00:00:00Z

Links: CVE-2014-3698 - Bugzilla

cve-icon OpenCVE Enrichment

No data.