Dx

**Name of the Vulnerable Software and Affected Versions** bitlbee-libpurple versions prior to 3.5.1 **Description** The issue allows remote attackers to cause a denial of service, resulting in a crash due to a NULL pointer dereference, and possibly execute arbitrary code. This can be achieved via a file transfer request for a contact that is not in the contact list. **Recommendations** For versions prior to 3.5.1, update to version 3.5.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** bitlbee-libpurple versions prior to 3.5 **Description** The issue is related to a use-after-free vulnerability that can be triggered by remote servers, potentially leading to a denial of service (crash) or possibly the execution of arbitrary code. This can occur when a file transfer connection expires. **Recommendations** For versions prior to 3.5, update to version 3.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** BitlBee versions prior to 3.5 **Description** The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and crash, and possibly execute arbitrary code. This can be achieved via a file transfer request for a contact that is not in the contact list. **Recommendations** For versions prior to 3.5, update to version 3.5 or later to resolve the issue.