[ubuntu/karmic-security] pidgin_2.6.2-1ubuntu7.2_powerpc_translations.tar.gz, pidgin_2.6.2-1ubuntu7.2_ia64_translations.tar.gz, pidgin_2.6.2-1ubuntu7.2_sparc_translations.tar.gz (delayed), pidgin, pidgin_2.6.2-1ubuntu7.2_lpia_translations.tar.gz, pidgin_2.6.2-1ubuntu7.2_armel_translations.tar.gz, pidgin_2.6.2-1ubuntu7.2_amd64_translations.tar.gz, pidgin_2.6.2-1ubuntu7.2_i386_translations.tar.gz 1:2.6.2-1ubuntu7.2 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Mon Feb 22 16:03:59 GMT 2010
pidgin (1:2.6.2-1ubuntu7.2) karmic-security; urgency=low
* SECURITY UPDATE: denial of service via malformed SLP message
- debian/patches/65_security_CVE-2010-0277.patch: validate input in
libpurple/protocols/msn/{slp.c,slpcall.c,slplink.c,slpmsg.h}.
- CVE-2010-0277
* SECURITY UPDATE: denial of service via certain nicknames in Finch
- debian/patches/66_security_CVE-2010-0420.patch: properly unescape
text in finch/libgnt/gnttree.c, libpurple/protocols/bonjour/parser.c,
libpurple/protocols/jabber/parser.c, libpurple/xmlnode.c.
- CVE-2010-0420
* SECURITY UPDATE: denial of service via large number of smileys
- debian/patches/67_security_CVE-2010-0423.patch: limit the number of
smileys in pidgin/gtkimhtml.c.
- CVE-2010-0423
Date: Thu, 18 Feb 2010 13:44:53 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/karmic/+source/pidgin/1:2.6.2-1ubuntu7.2
-------------- next part --------------
Format: 1.8
Date: Thu, 18 Feb 2010 13:44:53 -0500
Source: pidgin
Binary: libpurple0 pidgin pidgin-data pidgin-dev pidgin-dbg finch finch-dev libpurple-dev libpurple-bin
Architecture: source
Version: 1:2.6.2-1ubuntu7.2
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
finch - text-based multi-protocol instant messaging client
finch-dev - text-based multi-protocol instant messaging client - development
libpurple-bin - multi-protocol instant messaging library - extra utilities
libpurple-dev - multi-protocol instant messaging library - development files
libpurple0 - multi-protocol instant messaging library
pidgin - graphical multi-protocol instant messaging client for X
pidgin-data - multi-protocol instant messaging client - data files
pidgin-dbg - Debugging symbols for Pidgin
pidgin-dev - multi-protocol instant messaging client - development files
Changes:
pidgin (1:2.6.2-1ubuntu7.2) karmic-security; urgency=low
.
* SECURITY UPDATE: denial of service via malformed SLP message
- debian/patches/65_security_CVE-2010-0277.patch: validate input in
libpurple/protocols/msn/{slp.c,slpcall.c,slplink.c,slpmsg.h}.
- CVE-2010-0277
* SECURITY UPDATE: denial of service via certain nicknames in Finch
- debian/patches/66_security_CVE-2010-0420.patch: properly unescape
text in finch/libgnt/gnttree.c, libpurple/protocols/bonjour/parser.c,
libpurple/protocols/jabber/parser.c, libpurple/xmlnode.c.
- CVE-2010-0420
* SECURITY UPDATE: denial of service via large number of smileys
- debian/patches/67_security_CVE-2010-0423.patch: limit the number of
smileys in pidgin/gtkimhtml.c.
- CVE-2010-0423
Checksums-Sha1:
acc5c753e06b9c898d17f25d6b03235f7495fe6a 2023 pidgin_2.6.2-1ubuntu7.2.dsc
d65e0c866ab576c14efe386bb71d30b6fea58d56 67077 pidgin_2.6.2-1ubuntu7.2.diff.gz
Checksums-Sha256:
ffb93e977e68dccbfc11139b67c92786a98664f20e79e75a0d011f52fde23f1b 2023 pidgin_2.6.2-1ubuntu7.2.dsc
4447063d253aba73c46e8a904bbc4e9af9badafd0419b73d5178d25d520eaabd 67077 pidgin_2.6.2-1ubuntu7.2.diff.gz
Files:
ba82289757f109bf769984298f3245e9 2023 net optional pidgin_2.6.2-1ubuntu7.2.dsc
7f4c8387391d874020768d27c2d4335a 67077 net optional pidgin_2.6.2-1ubuntu7.2.diff.gz
Original-Maintainer: Ari Pollak <ari at debian.org>
More information about the Karmic-changes
mailing list