Detections
Analytics

Fedora 16 : pidgin-2.10.2-1.fc16 (2012-4595)

medium Nessus Plugin ID 58470

Language:

Synopsis

The remote Fedora host is missing a security update.

Description

version 2.10.2 (03/14/2012)

View all closed tickets for this release.

General: Fix compilation when using binutils 2.22 and new GDK pixbuf.
(#14799) Fix compilation of the MXit protocol plugin with GLib 2.31.
(#14773)

Pidgin: Add support for the GNOME3 Network dialog. (#13882) Fix rare crash. (#14392) Add support for the GNOME3 Default Application dialog for configuring the Browser.

libpurple: Support new connection states and signals for NetworkManager 0.9+. (Dan Williams) (#13859)

AIM and ICQ: Fix a possible crash when receiving an unexpected message from the server. (Thijs Alkemade) (#14983) Allow signing on with usernames containing periods and underscores. (#13500) Allow adding buddies containing periods and underscores. (#13500) Don't try to format ICQ usernames entered as email addresses. Gets rid of an 'Unable to format username' error at login. (#13883)

MSN: Fix possible crashes caused by not validating incoming messages as UTF-8. (Thijs Alkemade) (#14884) Support new protocol version MSNP18. (#14753) Fix messages to offline contacts. (#14302)

Windows-Specific Changes: Fix the installer downloading of spell-checking dictionaries (#14612) Fix compilation of the Bonjour protocol plugin. (#14802)

Plugins: The autoaccept plugin will no longer reset the preference for unknown buddies to 'Auto Reject' in certain cases. (#14964)

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected pidgin package.

See Also

https://bugzilla.redhat.com/show_bug.cgi?id=803293

https://bugzilla.redhat.com/show_bug.cgi?id=803299

http://www.nessus.org/u?c8b1d828

Plugin Details

Severity: Medium

ID: 58470

File Name: fedora_2012-4595.nasl

Version: 1.11

Type: local

Agent: unix

Published: 3/26/2012

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:pidgin, cpe:/o:fedoraproject:fedora:16

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 3/24/2012

Reference Information

BID: 52475, 52476

FEDORA: 2012-4595