Fedora 10: 2009-2285 Critical DoS Patch: Psi Instant Messaging Update

Psi is the premiere Instant Messaging application designed for Microsoft

Windows, Apple Mac OS X and GNU/Linux. Built upon an open protocol named

Jabber, Psi is a fast and lightweight messaging client that utilises the best

in open source technologies. Psi contains all the features necessary to chat,

with no bloated extras that slow your computer down. The Jabber protocol

provides gateways to other protocols as AIM, ICQ, MSN and Yahoo!.

If you want SSL support, install the qca-tls package.

This is a bugfix-only update to version 0.12.1 New in 0.12.1 - Bugfix for

DOS vulnerability in the file transfer code. Thanks to Jesus Olmos

(jolmos@isecauditors.com)

* Tue Mar 3 2009 Sven Lankes 0.12.1-1

- version 0.12.1

[ 1 ] Bug #488299 - CVE-2008-6393 psi: remote DoS vulnerability [F10]

https://bugzilla.redhat.com/show_bug.cgi?id=488299

su -c 'yum update psi' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/