-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2009-07-03 11:12:31 UTC
-
Revision ID:
james.westby@ubuntu.com-20090703111231-69ysyk0sykhb826b
Tags: 1:2.5.2-0ubuntu1.3
* SECURITY UPDATE: denial of service via ICQWebMessage message type in
OSCAR protocol. (LP: #393736)
- debian/patches/85_security_CVE-2009-1889.patch: make the check better
in libpurple/protocols/oscar/oscar.c, only allocate memory if len is
valid in libpurple/protocols/oscar/bstream.c.
- CVE-2009-1889