Mangelnde Prüfung von Zertifikaten in Gajim
ID: | FEDORA-2016-c82e5c322c |
Distribution: | Fedora |
Plattformen: | Fedora 23 |
Datum: | Do, 14. Januar 2016, 10:43 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8688 |
Applikationen: | Gajim |
Originalnachricht |
|
Name : gajim Product : Fedora 23 Version : 0.16.5 Release : 1.fc23 URL : http://gajim.org/ Summary : Jabber client written in PyGTK Description : Gajim is a Jabber client written in PyGTK. The goal of Gajim's developers is to provide a full featured and easy to use xmpp client for the GTK+ users. Gajim does not require GNOME to run, even though it exists with it nicely. -------------------------------------------------------------------------------- Update Information: Version 0.16.5 of Gajim has been released. What's new since 0.16.4: * Improve Message Archive Management implementation * Improve security on connexion and for roster management (CVE-2015-8688) Full changelog: http://hg.gajim.org/gajim/file/gajim-0.16.5/ChangeLog List of fixed bugs: https://trac.gajim.org/query?status=closed&milestone=0.16.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1295476 - CVE-2015-8688 gajim: Message interception due to unverified origin of roster push [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1295476 [ 2 ] Bug #1294552 - gajim-0.16.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1294552 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gajim' at the command line. For more information, refer to "Managing Software with yum", available at https://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce |