LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora alert FEDORA-2012-8687 (pidgin)



From:
    	      updates@fedoraproject.org 


To:
    	      package-announce@lists.fedoraproject.org 


Subject:
    	      [SECURITY] Fedora 17 Update: pidgin-2.10.4-1.fc17 


Date:
    	      Sun, 03 Jun 2012 00:02:54 +0000


Message-ID:
    	      <20120603000255.0274421113@bastion01.phx2.fedoraproject.org>


Archive-link:
    	      Article, Thread
              


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-8687
2012-06-01 16:17:25
--------------------------------------------------------------------------------

Name        : pidgin
Product     : Fedora 17
Version     : 2.10.4
Release     : 1.fc17
URL         : http://pidgin.im/
Summary     : A Gtk+ based multiprotocol instant messaging client
Description :
Pidgin allows you to talk to anyone using a variety of messaging
protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu,
ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and
Zephyr.  These protocols are implemented using a modular, easy to
use design.  To use a protocol, just add an account using the
account editor.

Pidgin supports many common features of other clients, as well as many
unique features, such as perl scripting, TCL scripting and C plugins.

Pidgin is not affiliated with or endorsed by America Online, Inc.,
Microsoft Corporation, Yahoo! Inc., or ICQ Inc.

--------------------------------------------------------------------------------
Update Information:

Fix for CVE-2012-2214 and CVE-2012-2318.
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 30 2012 Jon Ciesla <limburgher@gmail.com> - 2.10.4-1
- Update to 2.10.4, CVE-2012-2214, CVE-2012-2318, BZ 806839, 819454.
- Port to farstream patch upstreamed.
* Wed May  2 2012 Milan Crha <mcrha@redhat.com> - 2.10.2-2
- Rebuild against newer evolution-data-server
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #806839 - pidgin-2.10.4 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=806839
  [ 2 ] Bug #819454 - CVE-2012-2214 CVE-2012-2318 pidgin various flaws [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=819454
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update pidgin' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-...
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds