commit 2d1ba75d0bd1fe52ca21b3a3bca539e1bde5be31 Author: Danny Rawlins <monster.romster@gmail.com> Date: Tue Nov 11 08:56:49 2014 +1100 [notify] pidgin: 2.10.9 -> 2.10.10 potential security vulnerabilities discovered, please update Potential information leak from XMPP CVE-2014-3698 Malicious smiley themes could alter arbitrary files CVE-2014-3697 Remote crash parsing malformed Groupwise message CVE-2014-3696 Remote crash parsing malformed MXit emoticon CVE-2014-3695 Insufficient SSL certificate validation CVE-2014-3694 diff --git a/pidgin/.footprint b/pidgin/.footprint index 159174b..113d3a6 100644 --- a/pidgin/.footprint +++ b/pidgin/.footprint @@ -195,12 +195,12 @@ drwxr-xr-x root/root usr/lib/gnt/ lrwxrwxrwx root/root usr/lib/libgnt.so -> libgnt.so.0.8.10 lrwxrwxrwx root/root usr/lib/libgnt.so.0 -> libgnt.so.0.8.10 -rwxr-xr-x root/root usr/lib/libgnt.so.0.8.10 -lrwxrwxrwx root/root usr/lib/libpurple-client.so -> libpurple-client.so.0.10.9 -lrwxrwxrwx root/root usr/lib/libpurple-client.so.0 -> libpurple-client.so.0.10.9 --rwxr-xr-x root/root usr/lib/libpurple-client.so.0.10.9 -lrwxrwxrwx root/root usr/lib/libpurple.so -> libpurple.so.0.10.9 -lrwxrwxrwx root/root usr/lib/libpurple.so.0 -> libpurple.so.0.10.9 --rwxr-xr-x root/root usr/lib/libpurple.so.0.10.9 +lrwxrwxrwx root/root usr/lib/libpurple-client.so -> libpurple-client.so.0.10.10 +lrwxrwxrwx root/root usr/lib/libpurple-client.so.0 -> libpurple-client.so.0.10.10 +-rwxr-xr-x root/root usr/lib/libpurple-client.so.0.10.10 +lrwxrwxrwx root/root usr/lib/libpurple.so -> libpurple.so.0.10.10 +lrwxrwxrwx root/root usr/lib/libpurple.so.0 -> libpurple.so.0.10.10 +-rwxr-xr-x root/root usr/lib/libpurple.so.0.10.10 drwxr-xr-x root/root usr/lib/perl5/ drwxr-xr-x root/root usr/lib/perl5/linux-thread-multi/ -rw-r--r-- root/root usr/lib/perl5/linux-thread-multi/perllocal.pod diff --git a/pidgin/.md5sum b/pidgin/.md5sum index ba04492..c7a1994 100644 --- a/pidgin/.md5sum +++ b/pidgin/.md5sum @@ -1 +1 @@ -10a4a69d077893f6dd3438cd8af94e81 pidgin-2.10.9.tar.bz2 +5030d4750c73b211c7e82bb67ea3d016 pidgin-2.10.10.tar.bz2 diff --git a/pidgin/Pkgfile b/pidgin/Pkgfile index ae4d46a..0c2f477 100644 --- a/pidgin/Pkgfile +++ b/pidgin/Pkgfile @@ -1,12 +1,12 @@ # Description: multi-protocol instant messaging client. # URL: http://pidgin.im/ -# Maintainer: Danny Rawlins, crux at romster dot me +# Maintainer: Danny Rawlins, monster dot romster at gmail dot com # Packager: Simone Rota, sip at crux dot nu # Depends on: dbus-glib farstream gtkspell startup-notification xorg-libxscrnsaver nss name=pidgin -version=2.10.9 -release=3 +version=2.10.10 +release=1 source=(http://downloads.sourceforge.net/project/$name/Pidgin/$version/$name-$versio...) build() {