[OTR-users] Format string security flaw in pidgin-otr: UPGRADE TO 3.2.1!
Paul Wouters
paul at cypherpunks.ca
Wed May 16 15:07:40 EDT 2012
On Wed, 16 May 2012, Jacob Appelbaum wrote:
> On 05/16/2012 05:10 AM, Ian Goldberg wrote:
>>
>> Off-the-Record Messaging (OTR) Security Advisory 2012-01
>
> Hooray for intrigeri and the OTR team for getting the fix out so quickly.
>
> These are the relevant bugs for Debian and Ubuntu users:
>
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673154
> https://bugs.launchpad.net/ubuntu/+source/pidgin-otr/+bug/1000363
> https://bugs.launchpad.net/ubuntu/+source/pidgin-otr/+bug/1000392
The Fedora/RHEL ones are on their way to the update repositories, but
can be retrieved directly from here for those who wish to instantly
update:
https://admin.fedoraproject.org/updates/pidgin-otr-3.2.1-1.fc16
https://admin.fedoraproject.org/updates/pidgin-otr-3.2.1-1.fc17
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5898/pidgin-otr-3.2.1-1.el6
Paul
More information about the OTR-users
mailing list