~ubuntu-branches/ubuntu/gutsy/pidgin/gutsy-proposed

Viewing all changes in revision 16.

  • Committer: Bazaar Package Importer
  • Author(s): Stephan Hermann
  • Date: 2007-11-26 16:32:57 UTC
  • Revision ID: james.westby@ubuntu.com-20071126163257-wl7rki2sgh3igbkp
Tags: 1:2.2.1-1ubuntu4.1
* SECURITY UPDATE: (LP: #158400)
  + CVE-2007-4999: libpurple in Pidgin 2.1.0 through 2.2.1, when using HTML
    logging, allows remote attackers to cause a denial of service (NULL
    dereference and application crash) via a message that contains invalid HTML
    data, a different vector than CVE-2007-4996.
* debian/patches/99_CVE-2007-4999.patch:
  - Applied patch by upstream
  - Link: http://developer.pidgin.im/viewmtn/revision/diff/0810c68ce97a8213a5edbf5ffe7c1418915d3dfe/with/aff089bc73ecc6fe8ebbeac670db8be13511fcf4
* References: 
  CVE-2007-4999
  http://developer.pidgin.im/ticket/3436

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: