# HG changeset patch
# User Ethan Blanton <elb@pidgin.im>
# Date 1317753280 0
# Node ID 81d3c4d2eb731a3e84cfd1adbe00077fd6aec3c8
# Parent  d9d33a4b56327d7361515ddc5755517ce5bae8a9
ChangeLog with CVE for #14636

diff -r d9d33a4b5632 -r 81d3c4d2eb73 ChangeLog
--- a/ChangeLog	Fri Sep 30 01:31:04 2011 +0000
+++ b/ChangeLog	Tue Oct 04 18:34:40 2011 +0000
@@ -1,5 +1,11 @@
 Pidgin and Finch: The Pimpin' Penguin IM Clients That're Good for the Soul
 
+version 2.10.1 (??/??/????):
+	SILC:
+	* Fix CVE-2011-3594, by UTF-8 validating incoming messages before
+	  passing them to glib or libpurple.  Identified by Diego Bauche
+	  Madero from IOActive.  (#14636)
+
 version 2.10.0 (08/18/2011):
 	Pidgin:
 	* Make the max size of incoming smileys a pref instead of hardcoding it.