Here is a description from the Red Hat bug: "An integer overflow in Pidgin's MSN protocol handler could allow malformed SLP message to cause an integer overflow, which could result in arbitrary code execution.
This flaw is only exploitable by individuals who can message a user, which is controlled by the Pidgin privacy setting. The default setting is to only allow messages from users in the buddy list." https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-2927 ** Also affects: pidgin (Fedora) via https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-2927 Importance: Unknown Status: Unknown -- [CVE-2008-2927] MSN integer overflow in Pidgin https://bugs.launchpad.net/bugs/245770 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs