Fedora Core 2: 2005-171 Critical: Gaim HTML Parsing DoS Fix

Gaim allows you to talk to anyone using a variety of messaging

protocols, including AIM (Oscar and TOC), ICQ, IRC, Yahoo!,

MSN Messenger, Jabber, Gadu-Gadu, Napster, and Zephyr. These

protocols are implemented using a modular, easy to use design.

To use a protocol, just add an account using the account editor.

Gaim supports many common features of other clients, as well as many

unique features, such as perl scripting and C plugins.

Gaim is NOT affiliated with or endorsed by America Online, Inc.,

Microsoft Corporation, or Yahoo! Inc. or other messaging service

providers.

This update resolves another DoS issue in parsing malformed HTML,

and a MSN related crash that folks were hitting often.

- FC2

* Thu Feb 24 2005 Warren Togami 1:1.1.4-1

- 1.1.4 with MSN crash fix, g_stat() crash workaround

CAN-2005-0208 Gaim HTML parsing DoS (another one)

* Tue Feb 22 2005 Warren Togami 1:1.1.3-4

- Test fixes for #149190 and #149304

6214fefe3f0d1963fe8a18d4bb0d1728 SRPMS/gaim-1.1.4-0.FC2.src.rpm

6d46e456110af368feb2671666be4576 x86_64/gaim-1.1.4-0.FC2.x86_64.rpm

d7fbdffb081e6bf463d8e09e027d8f02

x86_64/debug/gaim-debuginfo-1.1.4-0.FC2.x86_64.rpm

5440e0ef5ff96f16fa13a0580c1842aa i386/gaim-1.1.4-0.FC2.i386.rpm

6fccc876878f0566bffdc16d4ec2c1e5

i386/debug/gaim-debuginfo-1.1.4-0.FC2.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

fedora-announce-list@redhat.com