Mandriva Linux Security Advisory – An integer overflow flaw was found in Pidgin’s MSN protocol handler that could allow for the execution of arbitrary code if a user received a malicious MSN message. In addition, this update provides the ability to use ICQ networks again on Mandriva Linux 2008.0, as in MDVSA-2008:103 (updated pidgin for 2008.1). The updated packages have been patched to correct this issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/68112/MDVSA-2008-143.txt
Source: https://packetstormsecurity.com/files/68112/Mandriva-Linux-Security-Advisory-2008-143.html