pidgin 1:2.5.2-0ubuntu1.6 source package in Ubuntu
Changelog
pidgin (1:2.5.2-0ubuntu1.6) intrepid-security; urgency=low * SECURITY UPDATE: denial of service via TOPIC message - debian/patches/87_security_CVE-2009-2703.patch: validate args in libpurple/protocols/irc/msgs.c. - CVE-2009-2703 * SECURITY UPDATE: information disclosure via incorrect jabber TLS handling - debian/patches/88_security_CVE-2009-3026.patch: bail out if encryption is not available in libpurple/protocols/jabber/auth.c. - CVE-2009-3026 * SECURITY UPDATE: denial of service via malformed SLP invite message - debian/patches/89_security_CVE-2009-3083.patch: validate branch, content_type and content in libpurple/protocols/msn/slp.c. - CVE-2009-3083 * SECURITY UPDATE: denial of service via XHTML-IM content with cid: images - debian/patches/90_security_CVE-2009-3085.patch: validate raw_data in libpurple/protocols/jabber/data.c. - CVE-2009-3085 * SECURITY UPDATE: denial of service via crafted contact list data - debian/patches/91_security_CVE-2009-3615.patch: validate contact list structure in libpurple/protocols/oscar/oscar.c. - CVE-2009-3615 * SECURITY UPDATE: directory traversal via custom smiley request (LP: #501089) - debian/patches/92_security_CVE-2010-0013.patch: ignore request for smileys that don't exist in the image store in libpurple/protocols/msn/slp.c, backport purple_strequal in libpurple/util.{c,h}. - CVE-2010-0013 * WARNING: This package does not contain the changes from 1:2.5.2-0ubuntu1.5 that is in intrepid-proposed. -- Marc Deslauriers <email address hidden> Thu, 14 Jan 2010 15:23:24 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Intrepid
- Original maintainer:
- Ubuntu Core Development Team
- Architectures:
- any
- Section:
- net
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
pidgin_2.5.2.orig.tar.gz | 11.1 MiB | 4d4327ec79d0b361638e8338eb32effc72e0e21eb191294fa817223484f284d6 |
pidgin_2.5.2-0ubuntu1.6.diff.gz | 64.0 KiB | 2091dea06787725d01048e2b7e381a4c3889ca8fa2783b66d16bfe16ed60e2c6 |
pidgin_2.5.2-0ubuntu1.6.dsc | 1.9 KiB | a9e3d30b3a24499b5797f0e061b19719912c5b8c4922b8935d8f9421d625734c |
Available diffs
Binary packages built by this source
- finch: No summary available for finch in ubuntu intrepid.
No description available for finch in ubuntu intrepid.
- finch-dev: No summary available for finch-dev in ubuntu intrepid.
No description available for finch-dev in ubuntu intrepid.
- libpurple-bin: No summary available for libpurple-bin in ubuntu intrepid.
No description available for libpurple-bin in ubuntu intrepid.
- libpurple-dev: No summary available for libpurple-dev in ubuntu intrepid.
No description available for libpurple-dev in ubuntu intrepid.
- libpurple0: No summary available for libpurple0 in ubuntu intrepid.
No description available for libpurple0 in ubuntu intrepid.
- pidgin: No summary available for pidgin in ubuntu intrepid.
No description available for pidgin in ubuntu intrepid.
- pidgin-data: No summary available for pidgin-data in ubuntu intrepid.
No description available for pidgin-data in ubuntu intrepid.
- pidgin-dbg: No summary available for pidgin-dbg in ubuntu intrepid.
No description available for pidgin-dbg in ubuntu intrepid.
- pidgin-dev: No summary available for pidgin-dev in ubuntu intrepid.
No description available for pidgin-dev in ubuntu intrepid.