Mercurial > pidgin.yaz

changeset 32719:81d3c4d2eb73

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
ChangeLog with CVE for #14636
author Ethan Blanton <elb@pidgin.im>
date Tue, 04 Oct 2011 18:34:40 +0000
parents d9d33a4b5632
children 952120a8ee02
files ChangeLog
diffstat 1 files changed, 6 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/ChangeLog	Fri Sep 30 01:31:04 2011 +0000
+++ b/ChangeLog	Tue Oct 04 18:34:40 2011 +0000
@@ -1,5 +1,11 @@
 Pidgin and Finch: The Pimpin' Penguin IM Clients That're Good for the Soul
 
+version 2.10.1 (??/??/????):
+	SILC:
+	* Fix CVE-2011-3594, by UTF-8 validating incoming messages before
+	  passing them to glib or libpurple.  Identified by Diego Bauche
+	  Madero from IOActive.  (#14636)
+
 version 2.10.0 (08/18/2011):
 	Pidgin:
 	* Make the max size of incoming smileys a pref instead of hardcoding it.