[SECURITY] Fedora 14 Update: pidgin-2.7.9-1.fc14

updates at fedoraproject.org updates at fedoraproject.org
Wed Jan 5 21:22:52 UTC 2011

Fedora Update Notification
2010-12-30 19:54:18

Name        : pidgin
Product     : Fedora 14
Version     : 2.7.9
Release     : 1.fc14
URL         : http://pidgin.im/
Summary     : A Gtk+ based multiprotocol instant messaging client
Description :
Pidgin allows you to talk to anyone using a variety of messaging
protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu,
ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and
Zephyr.  These protocols are implemented using a modular, easy to
use design.  To use a protocol, just add an account using the
account editor.

Pidgin supports many common features of other clients, as well as many
unique features, such as perl scripting, TCL scripting and C plugins.

Pidgin is not affiliated with or endorsed by America Online, Inc.,
Microsoft Corporation, Yahoo! Inc., or ICQ Inc.

Update Information:

New release 2.7.9

Upstream ChangeLog:


* Mon Dec 27 2010 Stu Tomlinson <stu at nosnilmot.com> 2.7.9-1
- 2.7.9, includes security/DoS fix in the MSN protocol (#665856)
* Mon Nov 29 2010 Stu Tomlinson <stu at nosnilmot.com> 2.7.7-1
- 2.7.7
- Disable MSNP16 due to regressions interacting with official client
* Fri Nov 19 2010 Stu Tomlinson <stu at nosnilmot.com> 2.7.5-2
- Add additional intermediate CA certificates to fix MSN
* Mon Nov  1 2010 Stu Tomlinson <stu at nosnilmot.com> 2.7.5-1
- 2.7.5
* Fri Oct 22 2010 Stu Tomlinson <stu at nosnilmot.com> 2.7.4-1
- 2.7.4, includes security fix for CVE-2010-3711
* Tue Oct 12 2010 Milan Crha <mcrha at redhat.com> - 2.7.3-6
- Rebuild against newer evolution-data-server
* Wed Sep 29 2010 jkeating - 2.7.3-5
- Rebuilt for gcc bug 634757

  [ 1 ] Bug #665421 - Pidgin: MSN DirectConnect DoS (crash) after receiving a short P2P message

This update can be installed with the "yum" update program.  Use 
su -c 'yum update pidgin' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at

More information about the package-announce mailing list