Security update for pidgin
This update for pidgin fixes the following issues:
Feature update:
- Update to GNOME 3.20.2 (fate#318572).
Security issues fixed:
- CVE-2017-2640: Fix an out of bounds memory read in purple_markup_unescape_entity. (boo#1028835)
Bugfixes
- Correctly remove *.so files for plugins (fixes devel-file-in-non-devel-package).
- Remove generation of a plugin list to package, simply add it all in %files with exclusions.
- Fix SASL EXTERNAL fingerprint authentication (boo#1009974).
-
Submitted by
Alexei Sorokin (XRevan86)
Fixed bugs
bnc#1028835
VUL-0: CVE-2017-2640: pidgin: Out-of-bounds write in purple_markup_unescape_entity triggered by invalid XML
bnc#1009974
Pidgin cannot connect to Freenode using SASL
