date: 2005-04-02T00:00:00.000Z
summary: Remote DoS on receiving malformed HTML
discoveredBy: Jean-Yves Lefort
The
`gaim_markup_strip_html` function in Gaim 1.2.0, and possibly earlier
versions, allows remote attackers to cause a denial of service (application
crash) via a string that contains malformed HTML, which causes an out-of-bounds
The function was changed to not allow the out-of-bounds read.