-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2011-17546 2011-12-30 00:12:15 --------------------------------------------------------------------------------
Name : pidgin Product : Fedora 15 Version : 2.10.1 Release : 1.fc15 URL : http://pidgin.im/ Summary : A Gtk+ based multiprotocol instant messaging client Description : Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just add an account using the account editor. Pidgin supports many common features of other clients, as well as many unique features, such as perl scripting, TCL scripting and C plugins. Pidgin is not affiliated with or endorsed by America Online, Inc., Microsoft Corporation, Yahoo! Inc., or ICQ Inc. -------------------------------------------------------------------------------- Update Information: New release 2.10.1 Full Upstream ChangeLog: http://developer.pidgin.im/wiki/ChangeLog -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 29 2011 Stu Tomlinson <[email protected]> 2.10.1-1 - 2.10.1, includes security fixes for CVE-2011-3594, CVE-2011-4601, CVE-2011-4602, CVE-2011-4603 * Mon Nov 28 2011 Milan Crha <[email protected]> 2.10.0-5 - Rebuild against newer evolution-data-server * Sun Oct 30 2011 Bruno Wolff III <[email protected]> 2.10.0-4 - Rebuild against newer evolution-data-server * Tue Aug 30 2011 Milan Crha <[email protected]> 2.10.0-3 - Sync version with f16 branch * Mon Aug 29 2011 Milan Crha <[email protected]> 2.10.0-2 - Rebuild against newer evolution-data-server * Sun Aug 21 2011 Stu Tomlinson <[email protected]> 2.10.0-1 - 2.10.0 - Link against system libgadu instead of using internal copy (#713888) * Tue Aug 16 2011 Milan Crha <[email protected]> 2.9.0-3 - Rebuild against newer evolution-data-server * Thu Jul 21 2011 Petr Sabata <[email protected]> - 2.9.0-2 - Perl mass rebuild * Thu Jun 30 2011 Stu Tomlinson <[email protected]> 2.8.0-3 - 2.9.0, includes security/DoS fix to work around gdk-pixbuf issue CVE-2011-2485 * Mon Jun 20 2011 Milan Crha <[email protected]> 2.8.0-3 - Rebuild against new evolution-data-server * Fri Jun 17 2011 Marcela Mašláňová <[email protected]> - 2.8.0-2 - Perl mass rebuild * Mon Jun 13 2011 Stu Tomlinson <[email protected]> 2.8.0-1 - 2.8.0 * Fri May 20 2011 Kalev Lember <[email protected]> 2.7.11-4 - Rebuilt for libcamel soname bump * Tue Apr 26 2011 Dan Williams <[email protected]> 2.7.11-3 - A few more NetworkManager 0.9 fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #761517 - CVE-2011-4601 pidgin (libpurple): Invalid UTF-8 string handling in OSCAR messages https://bugzilla.redhat.com/show_bug.cgi?id=761517 [ 2 ] Bug #761510 - CVE-2011-4602 pidgin: Multiple NULL pointer deference flaws by processing certain Jingle stanzas in the XMPP protocol plug-in https://bugzilla.redhat.com/show_bug.cgi?id=761510 [ 3 ] Bug #766446 - CVE-2011-4603 pidgin: SILC remote crash on channel messages https://bugzilla.redhat.com/show_bug.cgi?id=766446 [ 4 ] Bug #743481 - CVE-2011-3594 libpurple: invalid UTF-8 string handling in SILC messages https://bugzilla.redhat.com/show_bug.cgi?id=743481 [ 5 ] Bug #742450 - pidgin: Heap-based buffer overflow by processing certain SILC private messages https://bugzilla.redhat.com/show_bug.cgi?id=742450 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update pidgin' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
