Note: This is an archival copy of Security Sun Alert 266908 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1020896.1.
Solaris 10 Operating System
Date of Workaround Release
Date of Resolved Release
A heap-based buffer overflow vulnerability in the MSN protocol handler of libpurple(3):
A heap-based buffer overflow vulnerability in the MSN protocol handler of libpurple(3), the shared library that adds support for various instant messaging networks to the pidgin(1) Instant Messaging client (previously known as Gaim), may allow remote unprivileged users to execute arbitrary code or cause a Denial of Service (DoS) through an application crash.
Additional information on this issue can be found in the following document:
2. Contributing Factors
These issues can occur in the following releases:
Note 2: This issue only affects systems that have the Pidgin IM client installed. All versions of Pidgin, up to and including versions 2.5.8 are affected by this issue.
To determine if Pidgin is installed on the system and to check the version of Pidgin installed, the following command may be used:
$ /usr/bin/pidgin -v || echo "Pidgin IM client not installed"Note 3: OpenSolaris builds prior to snv_68, and Solaris 10 without patches 119548-11 (for SPARC) or 119549-11 (for x86) include the Gaim Instant Messaging client and not Pidgin. Gaim versions 0.79 and later are affected by this issue. The Workaround given in section 4 below applies to Gaim as well.
To determine if Gaim is installed on the system and to check the version of Gaim installed, the following command may be used:
$ /usr/bin/gaim -v || echo "Gaim IM client not installed"Note 4: OpenSolaris distributions may include additional bug fixes above and beyond the build from which it was derived. To determine the base build of OpenSolaris, the following command can be used:
$ uname -v
If the described issue has been exploited to cause a Denial of Service (DoS), Pidgin will crash, potentially leaving a core file depending on the system configuration.
There are no predictable symptoms that would indicate that this issue has been exploited to execute arbitrary code.
To mitigate the impact of the described issue, the privacy settings of MSN accounts in Pidgin may be changed as follows:
This issue is addressed in the following releases:
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
05-Oct-2009: Updated the Contributing Factors and Resolution sections.
15-Dec-2009: Updated Contributing Factors and Resolution sections. Resolved.
This solution has no attachment