hugo/content/about/security/advisories/cve-2016-2371-00.md

Sun, 10 Nov 2024 00:47:44 -0600

author
Gary Kramlich <grim@reaperworld.com>
date
Sun, 10 Nov 2024 00:47:44 -0600
changeset 544
6532ddaa3587
parent 403
18e12a873563
permissions
-rw-r--r--

Add EionRobb's ChatGPT protocol plugin and update the signal protocol plugins

Testing Done:
Ran `npm run hugo:server` and verified it locally.

Reviewed at https://reviews.imfreedom.org/r/3649/

---
title: cve-2016-2371-00
date: 2016-06-21T00:00:00.000Z
cveNumber: cve-2016-2371
talosReportID: talos-2016-0139
summary: Pidgin MXIT Extended Profiles Code Execution Vulnerability
discoveredBy: Yves Younan of Cisco Talos
fixedInRelease: 2.11.0
type: security
layout: cve
hidden: true
---

### Description

A malicious server or man-in-the-middle could trigger a crash or potentially
arbitrary code execution.

### Mitigation

Check the field count before accessing fields.

mercurial