NuytsTech Security

CVE-2011-4922

by ·

cipher.c in the Cipher API in libpurple in Pidgin before 2.7.10 retains encryption-key data in process memory, which might allow local users to obtain sensitive information by reading a core file or other representation of memory contents.

Date published : 2012-08-08

http://hg.pidgin.im/pidgin/main/rev/8c850977cb42

http://www.pidgin.im/news/security/?id=50

Tags: