Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

finch-2.13.0-lp152.7.3.1 RPM for aarch64

From OpenSuSE Ports Leap 15.2 updates for aarch64

Name: finch Distribution: openSUSE Leap 15.2
Version: 2.13.0 Vendor: openSUSE
Release: lp152.7.3.1 Build date: Mon Sep 13 12:14:05 2021
Group: Productivity/Networking/Instant Messenger Build host: obs-arm-11
Size: 1158510 Source RPM: pidgin-2.13.0-lp152.7.3.1.src.rpm
Summary: Text-Based User Interface for Pidgin Instant Messaging Client
A text-based user interface to use with libpurple. This can be run
from a standard text console or from a graphical terminal emulator.
It uses ncurses and our homegrown gnt library for drawing windows
and text.






* Thu Jun 24 2021 Alynx Zhou <>
  - Add pidgin-add-no_proxy-support.patch: add support of no_proxy
    environment variable. (jsc#SLE-17111,
* Tue Oct 22 2019 Felix Zhang <>
  - Add pidgin-Leaky-deprecation-clean-ups.patch: Fix warnings of
    deprecation of GParameter that result in build failures of
    plugins that build with -Werror (
* Tue Apr 17 2018
  - Drop pkgconfig(NetworkManager) BuildRequires and Requires: this
    legacy symbol is no longer maintained and pidgin is not yet
    ready to move to libnm. As a side-effect, we no longer depend on
    NM for all situations, even if the system were to run wicked.
  - Replace --enable-nm configure parameter with --disable-nm.
* Thu Apr 12 2018
  - Add pidgin-enable-sni-gnutls.patch: Enable SNI for gnutls to
    avoid SSL handshake failure, patch written by Tiago Herrmann
    ( (bsc#1086439,
* Thu Mar 15 2018
  - Instead of removing the, symlinks, move
    them to the devel package.
* Fri Mar 09 2018
  - Update to version 2.13.0:
    + libpurple:
    * Unified string comparison.
    * Properlly shell escape URI's when opening them.
    * Fix a one byte buffer overread in function
    * Fix an issue were utf8 was incorrectly truncated which could
      lead to crashes as we were potentially feeding garbage into
    + libgnt:
    * Partially fix building against curses 6.0 with opaque
      structs set (
    * Fix a crash when resizing the window (
    + General:
    * Fix a bashism in autotools (
    + XMPP:
    * Show XEP-0066 OOB URLs in any message, not just headlines.
    * Fix a user after free (
    * Remove pipelining from BOSH connections (
    * Don't try to TLS already secured BOSH connections
    + IRC:
    * Fix "Registration timeout" on SASL auth with InspIRCd
      servers (and possibly others not based on
    * Fix issues with plugins that modify outgoing messages (such
      as the custom PART/QUIT feature of the IRC More plugin).
    * Fix IRC buffer handling (
    * Properly handle AUTHENTICATE as a normal command with server
    * Fix a crash caused by a use after free of the MOTD.
    * Fix an out of bounds read in irc_nick_skip_mode.
    * Fix a write of a single byte before the start of a buffer in
    + Pidgin:
    * Better support for dark themes (
    * Fix IPv6 links by not escaping []'s. (
    * Only write buddy icons to the cache if they're not already
    * Rejoin persistent chats after reconnect (
    * Make the WIN32 Transparency plugin work on all platforms
    * Ensure search results buttons are labelled.
    * Fix matching unicode emoticons (
    * Correctly update mute/unmute status when the remote side
      mutes/unmutes us (
    * Rework the status icon blinking to not use deprecated API
    * Do not allow adding a buddy to protocols that don't have an
      add_buddy callback.
    + Finch:
    * Fix handling of search results (
    + Voice & Video:
    * Port backend-fs to newer api for farstream relay-info
      property (
  - Rebase pidgin-ncurses-6.0-accessors.patch.
  - Remove pidgin-2.10.11-purple-remote-python3.patch: fixed
* Tue Mar 06 2018
  - Add pidgin-2.10.11-purple-remote-python3.patch: port
    purple-remote to python 3 (bsc#1084147).
  - Export PYTHON=python3 in %build.
  - Adjust scripts to invoke python3, not python2.
* Tue Mar 06 2018
  - Drop support for SLE 11 and openSUSE older than 42.x.
  - Remove pidgin-gnome-keyring.patch: was only useful for SLE 11.
* Tue Mar 06 2018
  - Update pidgin-ncurses-6.0-accessors.patch to cope with ncurses
    enabling opaque-panels. Pidgin should not access internal
    structures of ncurses.
* Fri Dec 29 2017
  - Remove pidgin-crash-missing-gst-registry.patch: is useless now
    and is potentially harmful.
  - Merge pidgin-nonblock-common2.patch to
* Tue Nov 21 2017
  - Add purple-import-empathy Recommends for SLE15 (FATE#322984).
* Tue Nov 07 2017
  - Correct the licence to GPL-2.0.
* Thu Nov 02 2017
  - Explicitly require python2
* Sat Jul 22 2017
  - Drop dependency over silc-toolkit-devel as we want to remove
    it from the distribution
* Fri Mar 10 2017
  - Update to version 2.12.0 (FATE#323136):
    + libpurple:
    - Fix an out of bounds memory read in
      purple_markup_unescape_entity (CVE-2017-2640, bsc#1028835).
    - Fix the use of uninitialised memory if running
      non-debug-enabled versions of glib.
    - Update AIM dev and dist ID's to new ones that were assigned
      by AOL.
    - TLS certificate verification now uses SHA-256 checksums.
    - Fix the SASL external auth for Freenode (boo#1009974).
    - Remove the MSN protocol plugin. It has been unusable and
      dormant for some time.
    - Remove the Mxit protocol plugin. The service was closed at
      the end ofSeptember 2016.
    - Remove the MySpaceIM protocol plugin. The service has been
      defunct for a long time (
    - Remove the Yahoo! protocol plugin. Yahoo has completely
      reimplemented their protocol, so this version is no longer
      operable as of August 5th, 2016.
    - Remove the Facebook (XMPP) account option. According to the XMPP Chat API
      service ended April 30th, 2015.
    - Fix gnutls certificate validation errors that mainly
      affected Google.
    + General:
    - Replace instances of with and
      update the urls to use https (
    + IRC:
    - Fix an issue of messages being silently cut off at 500
      characters. Large messages are now split into parts and sent
      one by one (
  - Rebase pidgin-nonblock-common.patch.
  - Remove pidgin-sasl-skip-external.patch.
  - Remove pidgin-NLD-smiley-theme.tar.bz2, deprecated.
  - Remove pidgin-Tango-smiley-theme.tar.bz2, deprecated
* Thu Dec 08 2016
  - Make libpurple require libpurple-branding.
  - Correctly remove *.so files for plugins
    (fixes devel-file-in-non-devel-package).
  - Rename libpurple-meanwhile to libpurple-plugin-sametime.
  - Remove generation of a plugin list to package, simply add it all
    in %files with exclusions.
* Wed Dec 07 2016
  - Build with GStreamer 1.x on SLE 12 SP2.
  - Apply pidgin-use-default-alsa.patch for SLE 12+ only properly.
  - Provide libpurple-branding-upstream for SLE 11 as well.
* Tue Nov 22 2016
  - Add pidgin-sasl-skip-external.patch:
    Backport upstream commit 6106566. Makes Freenode and other
    servers that prefer SASL EXTERNAL fingerprint authentication
    work again (bsc#1009974).
* Fri Jul 22 2016
  - Drop additional pkgconfig require (already implicitly detected),
    but explicitly buildrequire it for /usr/lib/rpm/
* Mon Jul 04 2016
  - Update to GNOME 3.20.2  Fate#318572
    + Drop pidgin-CVE-2014-3695 (bsc#902409): fixed upstream.
    + Drop pidgin-CVE-2014-3696 (bsc#902410): fixed upstream.
    + Drop pidgin-CVE-2014-3698 (bsc#902408): fixed upstream.
* Tue Jun 21 2016
  - Update to version 2.11.0:
    + General:
    - 2.10.12 was accidentally released with new additions to the
      API and should have been released as 2.11.0. Unfortunately,
      we did not catch the mistake until after 2.10.12 was released,
      but we're fixing it now.
      See ChangeLog.API for more information.
    - Include the Mozilla certificate bundle. This fixes connecting
      to servers with certificates from Let's Encrypt.
    - Remove all 1024-bit CAs.
    + libpurple:
    - media: Fix an issue with ximagesink displaying only a corner
      cut-out of a larger webcam video.
    - mediamanager: Update output window destruction so that it
      reflects recent changes in the media pipeline structure.
    - Ported Instantbird's CommandUiOps to libpurple.
    + Pidgin:
    - Fix
    - Fix alignment of incoming right-to-left messages in protocols
      that don't support rich text.
    - Fix a potential crash while exiting Pidgin.
    + AIM: Add support for the newer kerberos-based authentication of
      AIM 8.x.
    + ICQ: Stop truncating passwords to 8 characters like old ICQ
      clients did (
      If you actually needed this, truncate your password manually by
      pressing backspace a few times.
    + IRC: Base64-decode SASL messages before passing to libsasl
    + MXit:
    - Fix a buffer overflow (TALOS-CAN-0120).
    - Fix a remote out-of-bounds read (TALOS-CAN-0123, TALOS-CAN-0140).
    - Fix a remote out-of-band read (TALOS-CAN-0138, TALOS-CAN-0135).
    - Fix an invalid read (TALOS-CAN-0118).
    - Fix a remote buffer overflow vulnerability (TALOS-CAN-0119).
    - Fix a directory traversal issue (TALOS-CAN-0128).
    - Fix a remote denial of service vulnerability that could result
      in a null pointer dereference (TALOS-CAN-0133).
    - Fix a remote denial of service that could result in an
      out-of-bounds read (TALOS-CAN-0134).
    - Fix multiple remote buffer overflows (TALOS-CAN-0136).
    - Fix a remote null pointer dereference (TALOS-CAN-0137).
    - Fix a remote code execution issue discovered (TALOS-CAN-0142).
    - Fix a remote denial of service vulnerability in contact mood
      handling (TALOS-CAN-0141).
    - Fix a remote out-of-bounds write vulnerability
    - Fix a remote out-of-bounds read (TALOS-CAN-0143).
  - Clean pidgin-gnome-keyring.patch up a bit.
* Sat Jan 02 2016
  - Update to 2.10.12:
    + General:
    - purple-url-handler now works with Python 3.x.
    - Fix an issue where transient startup statuses could be
      deleted (
    + Pidgin: The shout smile now matches the default theme.
    + Gadu-Gadu: Update internal libgadu to version 1.12.1.
  - Use tarball signing.
  - Rebase pidgin-gnome-keyring.patch.
  - Remove pidgin-2.10.11-add-dtmf-support.patch,
    pidgin-2.10.11-private-media.patch and
    pidgin-port-to-gst-1.0.patch: added upstream.
* Wed Sep 09 2015
  - Add pidgin-ncurses-6.0-accessors.patch: Fix build with NCurses
    6.0 with WINDOW_OPAQUE set to 1 (
* Fri Aug 28 2015
  - Add pidgin-2.10.11-fix-sound-play-fd-leak.patch: fix a file
    desriptor leak while playing sound files
    (, boo#942818).
  - Remove GConf schemas generation: GConf is considered obsolete.
  - Make perl dependency less strict.
* Mon Aug 17 2015
  - Fix build with earlier openSUSE.
* Tue Aug 11 2015
  - Add a Recommends: gstreamer-plugins-good, this plugin provides
    wav support that pidgin needs.
* Tue Jun 30 2015
  - Re-attempt port to GStreamer 1.0 (based on work by David):
    + Add patches, from upstream:
    - pidgin-port-to-gst-1.0.patch
    - pidgin-2.10.11-gst-references.patch
    - pidgin-2.10.11-add-dtmf-support.patch
    - pidgin-2.10.11-application-media.patch
    - pidgin-2.10.11-init-media-optional.patch
    - pidgin-2.10.11-send-video-enum.patch
    - pidgin-2.10.11-private-media.patch
    + Replace gstreamer-0_10-devel and
      gstreamer-0_10-plugins-base-devel BuildRequires with
      pkgconfig(gstreamer-1.0), pkgconfig(gstreamer-video-1.0) and
    + Switch --disable-vv configure paramter to --enable-vv.
    + Pass --with-gstreamer=1.0 to configure.
* Tue Jan 20 2015
  - Remove pidgin-ssl-cache.patch: testing with the usual suspects in
    irc land suggests this workaround is no longer necessary
* Fri Nov 28 2014
  - Add patches to address CVE issues:
    + pidgin-CVE-2014-3698: bnc#902408: remote information leak via
      crafted XMPP message.
    + pidgin-CVE-2014-3696: bnc#902410: denial of service parsing
      Groupwise server message.
    + pidgin-CVE-2014-3695: bnc#902409: crash in MXit protocol
* Mon Nov 24 2014
  - Update to version 2.10.11:
    + General:
    - Fix handling of Self-Signed SSL/TLS Certificates when using
      the NSS plugin (
    - Improve default cipher suites used with the NSS plugin
    - Add NSS Preferences plugin which allows the SSL/TLS Versions
      and cipher suites to be configured (
    + Gadu-Gadu:
    - Fix a bug that prevented plugin to load when compiled without
      GnuTLS (
    - Fix build for platforms without AF_LOCAL definition
    + MSN:
    - Fix broken login due to server change (,
    - Fail early when buddy list is unavailable instead of wasting
      bandwidth endlessly re-trying.
* Sat Oct 25 2014
  - Remove pidgin-mono-buildfix.patch: Mono bindings are deprecated
    upstream and no plugin exists making use of them.
  - Rebase pidgin-gnome-keyring.patch.
  - Make openSUSE 11.1 (SLE 11) minimal requirement.
  - Remove obsoletions of gaim: incredibly old.
  - Move Tango and NLD emoticons to separate packages.
  - Spec cleanup.
* Fri Oct 24 2014
  - Update to version 2.10.10:
    + General:
    - Check the basic constraints extension when validating
      SSL/TLS certificates. This fixes a security hole that allowed
      a malicious man-in-the-middle to impersonate an IM server or
      any other https endpoint. This affected both the NSS and
      GnuTLS plugins (CVE-2014-3694, boo#902495).
    - Allow and prefer TLS 1.2 and 1.1 when using the NSS plugin
      for SSL (im#15909).
    + libpurple3 compatibility:
    - Encrypted account passwords are preserved until the new one
      is set.
    - Fix loading Google Talk and Facebook XMPP accounts.
    + Windows-Specific Changes: Don't allow overwriting arbitrary
      files on the file system when the user installs a smiley theme
      via drag-and-drop (CVE-2014-3697).
    + Finch: Fix build against Python 3 (im#15969).
    + Gadu-Gadu: Updated internal libgadu to version 1.12.0.
    + Groupwise: Fix potential remote crash parsing server message
      that indicates that a large amount of memory should be
      allocated (CVE-2014-3696, boo#902410).
    + IRC: Fix a possible leak of unencrypted data when using /me
      command with OTR (im#15750).
    + MXit: Fix potential remote crash parsing a malformed emoticon
      response (CVE-2014-3695, boo#902409).
    + XMPP:
    - Fix potential information leak where a malicious XMPP server
      and possibly even a malicious remote user could create a
      carefully crafted XMPP message that causes libpurple to send
      an XMPP message containing arbitrary memory (CVE-2014-3698,
    - Fix Facebook XMPP roster quirks (im#15041, im#15957).
    + Yahoo: Fix login when using the GnuTLS library for TLS
      connections (im#16172, boo#874606).
  - Drop pidgin-gstreamer1.patch: causes crashes and Video still does
    not work (boo#853038). Drop BuildRequires conditions switching to
    GStreamer 1.0.
  - Rebase pidgin-crash-missing-gst-registry.patch.



Generated by rpm2html 1.8.1

Fabrice Bellet, Mon Nov 29 23:59:34 2021