Download  Pidgin

Pidgin 2.10.10

Pidgin - 9.2MB (Freeware)

Version: 2.10.10

Size: 9.2MB

Date Added: Oct 22, 2014

License: Freeware

Languages: Multi-languages

Publisher: Pidgin

Website: http://www.pidgin.im/

OS: Windows All

User Rating:(Rate It!)

  0 (0%)        0 (0%)      Comments

  No Virus

  No Spyware

  No Bundle

  No Adware

Advertisement

Pidgin is a chat program which lets you log in to accounts on multiple chat networks simultaneously. This means that you can be chatting with friends on MSN, talking to a friend on Google Talk, and sitting in a Yahoo chat room all at the same time. 

Pidgin is compatible with the following chat networks out of the box: AIM, ICQ, Google Talk, Jabber/XMPP, MSN Messenger, Yahoo!, Bonjour, Gadu-Gadu, IRC, Novell GroupWise Messenger, Lotus Sametime, SILC, SIMPLE, MXit, MySpaceIM, and Zephyr. It can support many more with plugins.

Pidgin supports many features of these chat networks, such as file transfers, away messages, buddy icons, custom smilies, and typing notifications. Numerous plugins also extend Pidgin's functionality above and beyond the standard features.

Pidgin integrates with the system tray on Windows, GNOME2, KDE 3, and KDE 4.

Pidgin is free and contains no ads. All code is open source and licensed under the GNU General Public License. This means you can get Pidgin's underlying code and modify it to suit your needs, as long as you publish the changes you make for everyone to benefit from as well.
Version 2.10.10

General

  • Check the basic constraints extension when validating SSL/TLS certificates. This fixes a security hole that allowed a malicious man-in-the-middle to impersonate an IM server or any other https endpoint. This affected both the NSS and GnuTLS plugins. (Discovered by an anonymous person and Jacob Appelbaum of the Tor Project, with thanks to Moxie Marlinspike for first publishing about this type of vulnerability. Thanks to Kai Engert for guidance and for some of the NSS changes) (CVE-2014-3694)
  • Allow and prefer TLS 1.2 and 1.1 when using the NSS plugin for SSL. (Elrond and Ashish Gupta)

libpurple3 compatibility

  • Encrypted account passwords are preserved until the new one is set.
  • Fix loading Google Talk and Facebook XMPP accounts.

Windows-Specific Changes

  • Don't allow overwriting arbitrary files on the file system when the user installs a smiley theme via drag-and-drop. (Discovered by Yves Younan of Cisco Talos) (CVE-2014-3697)
  • Updates to dependencies
  • NSS 3.17.1 and NSPR 4.10.7

Finch
  • Fix build against Python 3. (Ed Catmur) 

Gadu-Gadu

  • Updated internal libgadu to version 1.12.0.

Groupwise

  • Fix potential remote crash parsing server message that indicates that a large amount of memory should be allocated. (Discovered by Yves Younan and Richard Johnson of Cisco Talos) (CVE-2014-3696)

IRC

  • Fix a possible leak of unencrypted data when using /me command with OTR. (Thijs Alkemade)

MXit

  • Fix potential remote crash parsing a malformed emoticon response. (Discovered by Yves Younan and Richard Johnson of Cisco Talos) (CVE-2014-3695)

XMPP

  • Fix potential information leak where a malicious XMPP server and possibly even a malicious remote user could create a carefully crafted XMPP message that causes libpurple to send an XMPP message containing arbitrary memory. (Discovered and fixed by Thijs Alkemade and Paul Aurich) (CVE-2014-3698)
  • Fix Facebook XMPP roster quirks. 

Yahoo

  • Fix login when using the GnuTLS library for TLS connections. 

Advertisement

  • Copy the following code to link to this page:
Note: This program is advertising supported and may offer
to install third party programs that are not required.
These may include a toolbar, changing your homepage,
default search engine or installing other party programs.
Please watch the installation carefully to opt out.

Filepuma uses cookies to improve content and ensure you get the best experience on our website. By continuing to use this website, you agree to our privacy policy.

ACCEPT