Loading
The Yahoo! protocol plugin in libpurple in Pidgin before 2.10.8 does not properly validate UTF-8 data, which allows remote attackers to cause a denial of service (application crash) via crafted byte sequences.
Cite this page
CVE-2012-6152. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2012-6152
Use CWE-20, Pidgin vendor hub and Pidgin product page to widen CVE-2012-6152 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2016-1000030, CVE-2016-2378 and CVE-2016-2377 for nearby disclosures in the same product family.