CVE-2016-10188

Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service (crash) or possibly execute arbitrary code by causing a file transfer connection to expire.

References

Affected packages

Git / github.com/bitlbee/bitlbee

Affected ranges

Type: GIT
Repo: https://github.com/bitlbee/bitlbee
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

14f912d4c1e818d39234c874036e4fe60227d1dc

Affected versions

0.*

0.99

1.*

1.0

1.1.1

1.2

1.2-1

1.2-2

1.2-3

1.2-4

1.2-5

1.2.1

1.2.1-1

1.2.1-1.1

1.2.1-2

1.2.1-3

1.2.2

1.2.2-1

1.2.3

1.2.3-1

1.2.3-2

1.2.4

1.2.4-1

1.2.4-2

1.2.5

1.2.5-1

1.2.6

1.2.6a

1.2.6a-1

1.2.7

1.2.8

1.2.8-1

1.3dev

3.*

3.0

3.0.1

3.0.2

3.0.3

3.0.4

3.0.4-1

3.0.5

3.0.5-1

3.0.6

3.0.6-1

3.2

3.2-1

3.2.1

3.2.1+otr4-1

3.2.1-1

3.2.2

3.2.2-1

3.4

3.4.1

3.4.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-10188.json"