[SECURITY] Fedora 35 Update: pidgin-2.14.6-3.fc35

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-4759ca6476 2022-05-19 01:22:04.455631 -------------------------------------------------------------------------------- Name : pidgin Product : Fedora 35 Version : 2.14.6 Release : 3.fc35 URL : http://pidgin.im/ Summary : A Gtk+ based multiprotocol instant messaging client Description : Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just add an account using the account editor. Pidgin supports many common features of other clients, as well as many unique features, such as perl scripting, TCL scripting and C plugins. Pidgin is not affiliated with or endorsed by America Online, Inc., Microsoft Corporation, Yahoo! Inc., or ICQ Inc. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2022-26491. -------------------------------------------------------------------------------- ChangeLog: * Tue May 10 2022 Jaroslav ��karvada <jskarvad(a)redhat.com&gt; - 2.14.6-3 - Avoided MITM attack on non-DNSSEC XMPP connections Resolves: CVE-2022-26491 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2081227 - CVE-2022-26491 pidgin: MITM attack possible on non-DNSSEC XMPP connections https://bugzilla.redhat.com/show_bug.cgi?id=2081227 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-4759ca6476' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------