Stay Secure with the Latest Linux Advisories

security advisorycritical issueFedora

Fedora 11 Critical Advisory: FEDORA-2009-8804 Input Issue GUPnP-IGD

pidgin upgrade to 2.6.0 for the CVE-2009-2694, insufficient input validation in msn_slplink_process_msg(). 2.6.0 has Voice and Video support via farsight2 (Fedora 11+ only) and numerous other bug fixes. farsight2, libnice and gupnp- igd are version upgrades to make voice and video actually work on Fedora 11.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-8804 2009-08-20 20:33:46 -------------------------------------------------------------------------------- Name : gupnp-igd Product : Fedora 11 Version : 0.1.3 Release : 3.fc11 URL : https://wiki.gnome.org/Projects/GUPnP Summary : Library to handle UPnP IGD port mapping Description : gupnp-igd is a library to handle UPnP IGD port mapping. -------------------------------------------------------------------------------- Update Information: pidgin upgrade to 2.6.0 for the CVE-2009-2694, insufficient input validation in msn_slplink_process_msg(). 2.6.0 has Voice and Video support via farsight2 (Fedora 11+ only) and numerous other bug fixes. farsight2, libnice and gupnp- igd are version upgrades to make voice and video actually work on Fedora 11. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 6 2009 Warren Togami - 0.1.3-3 - Fix macros that were there for no good reason. * Fri Jul 24 2009 Fedora Release Engineering - 0.1.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Wed Jun 10 2009 Brian Pepple - 0.1.3-1 - Update to 0.1.3. * Sat May 16 2009 Brian Pepple - 0.1.2-1 - Update to 0.1.2. -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gupnp-igd' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the FedoraProject can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The latest Fedora 11 release improves gupnp-igd by implementing essential input validation enhancements, alongside new functionalities for audio/video streaming.. GUPnP-IGD, Fedora 11 Update, Pidgin Upgrade, Input Validation. . Severity: Critical. LinuxSecurity.com Team

Aug 20, 2009 •Critical Fedora