Ubuntu
pidgin package

hardy-backports pidgin security update?

Asked by richardh

Hi,

Has the pidgin package in hardy-backports (http://packages.ubuntu.com/hardy-backports/pidgin) been updated to deal with this vulnerability: http://lwn.net/Articles/347871/ ?

Also, this should be something I could tell for myself. How should I have been able to find this information... I'm quite new to this.

If it hasn't, will it be?

Thanks,

Richard.

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu pidgin Edit question
Assignee:
No assignee Edit question
Solved by:
actionparsnip
Solved:
Last query:
Last reply:
Revision history for this message
Best actionparsnip (andrew-woodhead666) said : 		#1

You can chaeck the changelog for pidgin to see what is new / fixed in the newer versions to see if the vulnerability has been attended.

You can download Pidgin 2.6.1 from:

http://www.getdeb.net/app/pidgin

Here is the changelog too:
http://developer.pidgin.im/wiki/ChangeLog

Revision history for this message
Tom (tom6) said : 		#2

HI :)

Note this "vulnerability" says "and possibly execute arbitrary code with
user privileges". The key here is that an external attacker can only get normal user privileges, not SuperUser/Root - so there's a huge limit on the attacker being able to do anything much. Still it's more access than you want them to have so AP's advice is well worth taking. You might also be interested in
https://help.ubuntu.com/community/RootSudo

https://help.ubuntu.com/community/Antivirus
http://librenix.com/?inode=21

and if you are new to linux then this guide might be useful for dipping into for odd bits & bobs occasionally
https://help.ubuntu.com/community/SwitchingToUbuntu/FromWindows

Good luck and regards from
Tom :)

Revision history for this message
actionparsnip (andrew-woodhead666) said : 		#3

Good point.

Revision history for this message
richardh (r-hayden) said : 		#4

Thanks actionparsnip, that solved my question.

Revision history for this message
richardh (r-hayden) said : 		#5

OK, thanks guys!

Revision history for this message
Tom (tom6) said : 		#6

Nicely done :)
Welcome to linux-land, especially the Ubuntu corner of it ;)
Regards from
Tom :)