Subject: | |
From: | |
Reply To: | |
Date: | Tue, 18 Aug 2009 17:04:30 -0500 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
Synopsis: Critical: pidgin security update
Issue date: 2009-08-18
CVE Names: CVE-2009-2694
CVE-2009-2694 pidgin: insufficient input validation in
msn_slplink_process_msg()
Federico Muttis of Core Security Technologies discovered a flaw in
Pidgin's MSN protocol handler. If a user received a malicious MSN
message, it was possible to execute arbitrary code with the permissions
of the user running Pidgin. (CVE-2009-2694)
Pidgin must be restarted for this update to take effect.
SL 3.0.x
SRPMS:
pidgin-1.5.1-4.el3.src.rpm
i386:
pidgin-1.5.1-4.el3.i386.rpm
x86_64:
pidgin-1.5.1-4.el3.x86_64.rpm
SL 4.x
SRPMS:
pidgin-2.5.9-1.el4.src.rpm
i386:
finch-2.5.9-1.el4.i386.rpm
finch-devel-2.5.9-1.el4.i386.rpm
libpurple-2.5.9-1.el4.i386.rpm
libpurple-devel-2.5.9-1.el4.i386.rpm
libpurple-perl-2.5.9-1.el4.i386.rpm
libpurple-tcl-2.5.9-1.el4.i386.rpm
pidgin-2.5.9-1.el4.i386.rpm
pidgin-devel-2.5.9-1.el4.i386.rpm
pidgin-perl-2.5.9-1.el4.i386.rpm
x86_64:
finch-2.5.9-1.el4.x86_64.rpm
finch-devel-2.5.9-1.el4.x86_64.rpm
libpurple-2.5.9-1.el4.x86_64.rpm
libpurple-devel-2.5.9-1.el4.x86_64.rpm
libpurple-perl-2.5.9-1.el4.x86_64.rpm
libpurple-tcl-2.5.9-1.el4.x86_64.rpm
pidgin-2.5.9-1.el4.x86_64.rpm
pidgin-devel-2.5.9-1.el4.x86_64.rpm
pidgin-perl-2.5.9-1.el4.x86_64.rpm
SL 5.x
SRPMS:
pidgin-2.5.9-1.el5.src.rpm
i386:
finch-2.5.9-1.el5.i386.rpm
finch-devel-2.5.9-1.el5.i386.rpm
libpurple-2.5.9-1.el5.i386.rpm
libpurple-devel-2.5.9-1.el5.i386.rpm
libpurple-perl-2.5.9-1.el5.i386.rpm
libpurple-tcl-2.5.9-1.el5.i386.rpm
pidgin-2.5.9-1.el5.i386.rpm
pidgin-devel-2.5.9-1.el5.i386.rpm
pidgin-perl-2.5.9-1.el5.i386.rpm
x86_64:
finch-2.5.9-1.el5.i386.rpm
finch-2.5.9-1.el5.x86_64.rpm
finch-devel-2.5.9-1.el5.i386.rpm
finch-devel-2.5.9-1.el5.x86_64.rpm
libpurple-2.5.9-1.el5.i386.rpm
libpurple-2.5.9-1.el5.x86_64.rpm
libpurple-devel-2.5.9-1.el5.i386.rpm
libpurple-devel-2.5.9-1.el5.x86_64.rpm
libpurple-perl-2.5.9-1.el5.x86_64.rpm
libpurple-tcl-2.5.9-1.el5.x86_64.rpm
pidgin-2.5.9-1.el5.i386.rpm
pidgin-2.5.9-1.el5.x86_64.rpm
pidgin-devel-2.5.9-1.el5.i386.rpm
pidgin-devel-2.5.9-1.el5.x86_64.rpm
pidgin-perl-2.5.9-1.el5.x86_64.rpm
-Connie Sieh
-Troy Dawson
|
|
|