# HG changeset patch
# User Mark Doliner <mark@kingant.net>
# Date 1307434439 0
# Node ID d732689006eddd50bc02090f44a617a1aaa3080b
# Parent  de3ee7b6f0800a70e33b95cb24cb810eebfdd084
Fix a potential null pointer dereference in the MSN protocol, discovered
by Marius Wachtler and reported to security@pidgin.im on March 22nd.

This one is kinda rare, and requires someone to perform a man-in-the-middle
attack in order to cause the crash.  So we're not going to go through the
CVE process for it (at least... probably not).

diff -r de3ee7b6f080 -r d732689006ed libpurple/protocols/msn/httpconn.c
--- a/libpurple/protocols/msn/httpconn.c	Tue Jun 07 07:42:56 2011 +0000
+++ b/libpurple/protocols/msn/httpconn.c	Tue Jun 07 08:13:59 2011 +0000
@@ -217,7 +217,7 @@
 
 		g_free(tmp);
 
-		t = strchr(full_session_id, '.');
+		t = full_session_id ? strchr(full_session_id, '.') : NULL;
 		if (t != NULL)
 			session_id = g_strndup(full_session_id, t - full_session_id);
 		else {