Red Hat Bugzilla – Bug 65263
security issues in gaim 0.57
Last modified: 2008-05-01 11:38:02 EDT
The gaim project has released version 0.58 to fix security problems in 0.57
* Bug-fix for potential buffer overflow in Jabber plugin. (Thanks, rwscott)
* Tempfiles used for secure MSN/HotMail login (added in 0.57) are now
themselves created securely.
See http://gaim.sourceforge.net/ChangeLog for the complete change log.
This should be fixed since versions <=0.57 contained several bugfixes which
would be nice to have in place.
When this is fixed, please also apply the htmlview default patch in Bug 63115 in
order to fix that minor bug.
Just a note that the "Tempfiles used for secure MSN/HotMail login (added in
0.57) are now themselves created securely." issue only affects version 0.57 of
gaim (verified) and therefore does not affect the versions of gaim that we have
shipped in Red Hat Linux releases.
Fixed, 0.59 is in Limbo beta.
Sounds good to me. Thanks, guys.
Waiting for errata.
An errata has been issued which should help the problem described in this bug report.
This report is therefore being closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files, please follow the link below. You may reopen
this bug report if the solution does not work for you.