Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Pidgin version <2.11.0 contains a vulnerability in X.509 Certificates imports specifically due to improper check of return values from gnutls_x509_crt_init() and gnutls_x509_crt_import() that can result in code execution. This attack appear to be exploitable via custom X.509 certificate from another client. This vulnerability appears to have been fixed in 2.11.0.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Pidgin 安全漏洞
Vulnerability Description
Pidgin是一款跨平台的实时通信客户端,它支持多个常用的实时通信协议,用户可用同一个软件登录不同的实时通信服务。 Pidgin 2.11.0之前版本中X.509凭证的导入存在安全安全漏洞,该漏洞源于程序没有正确的检测‘gnutls_x509_crt_init()’和‘gnutls_x509_crt_import()’函数的返回值。攻击者可利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A