Slackware Security Advisory - Pidgin Updates

Slackware Security Advisory - Pidgin Updates: Posted Jul 17, 2012; Authored by Slackware Security Team | Site slackware.com; Slackware Security Advisory - New pidgin packages are available for Slackware 12.2, 13.0, 13.1, 13.37, and -current to fix security issues.; tags | advisory; systems | linux, slackware; advisories | CVE-2012-3374; SHA-256 | a88e26046b8bc391e0c4c84f585e2c060fb72db3a90cd34e037858c1ff507966; Download | Favorite | View

Slackware Security Advisory - Pidgin Updates


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security]  pidgin (SSA:2012-195-02)

New pidgin packages are available for Slackware 12.2, 13.0, 13.1, 13.37,
and -current to fix security issues.


Here are the details from the Slackware 13.37 ChangeLog:
+--------------------------+
patches/packages/pidgin-2.10.6-i486-1_slack13.37.txz:  Upgraded.
  Fixes a security issue for users of MXit:  Incorrect handing of inline
  images in incoming instant messages can cause a buffer overflow and in
  some cases can be exploited to execute arbitrary code.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3374
  (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project!  :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 12.2:
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/pidgin-2.10.6-i486-1_slack12.2.tgz

Updated package for Slackware 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/pidgin-2.10.6-i486-1_slack13.0.txz

Updated package for Slackware x86_64 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/pidgin-2.10.6-x86_64-1_slack13.0.txz

Updated package for Slackware 13.1:
ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/pidgin-2.10.6-i486-1_slack13.1.txz

Updated package for Slackware x86_64 13.1:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/pidgin-2.10.6-x86_64-1_slack13.1.txz

Updated package for Slackware 13.37:
ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/pidgin-2.10.6-i486-1_slack13.37.txz

Updated package for Slackware x86_64 13.37:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/pidgin-2.10.6-x86_64-1_slack13.37.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/xap/pidgin-2.10.6-i486-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/xap/pidgin-2.10.6-x86_64-1.txz


MD5 signatures:
+-------------+

Slackware 12.2 package:
995b3debf7bddb5fe74e6190d334ed46  pidgin-2.10.6-i486-1_slack12.2.tgz

Slackware 13.0 package:
9c142e63563a362ee29485b59f03c0e0  pidgin-2.10.6-i486-1_slack13.0.txz

Slackware x86_64 13.0 package:
bdc195e52c60a47f8277cd3247f9de76  pidgin-2.10.6-x86_64-1_slack13.0.txz

Slackware 13.1 package:
d001dbb823b5aa4b47b784529ddba7ee  pidgin-2.10.6-i486-1_slack13.1.txz

Slackware x86_64 13.1 package:
ab4ef5ec851ebede8e355db3f4457f8d  pidgin-2.10.6-x86_64-1_slack13.1.txz

Slackware 13.37 package:
a9faf063cd155473628182a26aaf856e  pidgin-2.10.6-i486-1_slack13.37.txz

Slackware x86_64 13.37 package:
e64729809335bbb2d875f7a2a369e03f  pidgin-2.10.6-x86_64-1_slack13.37.txz

Slackware -current package:
e26f06db9dc0e771a0add32685e9ab5b  xap/pidgin-2.10.6-i486-1.txz

Slackware x86_64 -current package:
fad6b8acf8f8489e48ff1b85b3bd3c0d  xap/pidgin-2.10.6-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg pidgin-2.10.6-i486-1_slack13.37.txz


+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key
security@slackware.com

+------------------------------------------------------------------------+
| To leave the slackware-security mailing list:                          |
+------------------------------------------------------------------------+
| Send an email to majordomo@slackware.com with this text in the body of |
| the email message:                                                     |
|                                                                        |
|   unsubscribe slackware-security                                       |
|                                                                        |
| You will get a confirmation message back containing instructions to    |
| complete the process.  Please do not reply to this email address.      |
+------------------------------------------------------------------------+
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlAA2RMACgkQakRjwEAQIjO5kwCgg+aU6BiUPWktLMimHV6z9lEa
vScAoIitmPX8XnhuqX5k1uWHBFDtTVZh
=1BSo
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 172 files
Ubuntu 47 files
Debian 22 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
tmrswrr 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

Slackware Security Advisory - Pidgin Updates

Slackware Security Advisory - Pidgin Updates

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Slackware Security Advisory - Pidgin Updates

Share This

Slackware Security Advisory - Pidgin Updates

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems