User: Password:
|
|
Subscribe / Log in / New account

Fedora alert FEDORA-2010-16629 (pidgin)

From:  updates@fedoraproject.org
To:  package-announce@lists.fedoraproject.org
Subject:  [SECURITY] Fedora 13 Update: pidgin-2.7.4-1.fc13
Date:  Mon, 01 Nov 2010 21:00:14 +0000
Message-ID:  <20101101210014.803A5111130@bastion02.phx2.fedoraproject.org>
Archive-link:  Article, Thread

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-16629 2010-10-27 21:11:58 -------------------------------------------------------------------------------- Name : pidgin Product : Fedora 13 Version : 2.7.4 Release : 1.fc13 URL : http://pidgin.im/ Summary : A Gtk+ based multiprotocol instant messaging client Description : Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just add an account using the account editor. Pidgin supports many common features of other clients, as well as many unique features, such as perl scripting, TCL scripting and C plugins. Pidgin is not affiliated with or endorsed by America Online, Inc., Microsoft Corporation, Yahoo! Inc., or ICQ Inc. -------------------------------------------------------------------------------- Update Information: New release 2.7.4 Full Upstream ChangeLog: http://developer.pidgin.im/wiki/ChangeLog -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 22 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.4-1 - 2.7.4, includes security fix for CVE-2010-3711 * Tue Oct 12 2010 Milan Crha <mcrha@redhat.com> - 2.7.3-6 - Rebuild against newer evolution-data-server * Wed Sep 29 2010 jkeating - 2.7.3-5 - Rebuilt for gcc bug 634757 * Thu Sep 16 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.3-4 - Rebuild against newer libedataserver * Mon Sep 13 2010 Dan HorĂ¡k <dan[at]danny.cz> 2.7.3-3 - drop the s390(x) ifarchs * Mon Aug 23 2010 Tom "spot" Callaway <tcallawa@redhat.com> 2.7.3-2 - use _isa in explicit Requires on libpurple to prevent yum from trying to jump architectures to resolve dependency * Wed Aug 11 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.3-1 - 2.7.3 * Wed Jul 21 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.2-1 - 2.7.2 with a security fix (CVE-2010-2528) and a couple of bug fixes (#601650) * Thu Jul 15 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.1-5 - Rebuild against newer libedataserver - spec file cleanup: replace %define with %global replace tabs with spaces for consistency mark prefs.xml as a config file * Wed Jul 7 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.1-4 - Include license in libpurple subpackage * Tue Jun 1 2010 Marcela Maslanova <mmaslano@redhat.com> - 2.7.1-3 - Mass rebuild with perl-5.12.0 * Sun May 30 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.1-2 - Add Obsoletes to pull in pidgin-evolution during update * Sun May 30 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.1-1 - 2.7.1 - Adds Direct Connection support for MSN - Numerous bug fixes - Evolution support moved to pidgin-evolution for F13+ (#581144) * Thu May 20 2010 Stu Tomlinson <stu@nosnilmot.com> 2.7.0-2 - Upstream backports: 3c30f64efedafc379b6536852bbb3b6ef5f1f6c9 - fix for receiving HTML on ICQ 13fbe0815f84d5b3c001947559f5818c10275f4c - prevent null deref on disconnecting account (#592750) c4a874926d07b8597db4b78a181a89cf720a8418 - fix blinking tray icon on new message (#592691) cfe0e649dda34d9252d40d8f67e445336a247998 - prevent race condition on Yahoo! login e3dd36706068f3b8eabd630ff71d270c145cce42 - fix crash in Oscar (#548128) 13fbe0815f84d5b3c001947559f5818c10275f4c - fix crash during network disconnect (#592750) * Thu May 13 2010 Stu Tomlinson <stu@nosnilmot.com> - 2.7.0-1 - 2.7.0 with features, bug fixes and a security fix: CVE-2010-1624 (#591806) - Use System SSL Certificates (#576721) - Add additional dependencies for Voice + Video (#581343) - Upstream backport: 87ada76abf90c44e615679efc5f8128bb941bba1 Reduce MSN traffic -------------------------------------------------------------------------------- References: [ 1 ] Bug #641921 - CVE-2010-3711 Pidgin (libpurple): Multiple DoS (crash) flaws by processing of unsanitized Base64 decoder values https://bugzilla.redhat.com/show_bug.cgi?id=641921 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update pidgin' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds