Mercurial > pidgin.yaz

changeset 32723:952120a8ee02

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
merge of '0b7caf6b17815fe333d151369f26330d4c662bda' and 'efec3dc757b27366c8b23ca5c0bf1d8605084798'
author Ethan Blanton <elb@pidgin.im>
date Tue, 04 Oct 2011 18:34:45 +0000
parents 714e25ef2550 (current diff) 81d3c4d2eb73 (diff)
children 44fc11beefab 9c4fec824cb3
files
diffstat 1 files changed, 6 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/ChangeLog	Sat Oct 01 23:29:40 2011 +0000
+++ b/ChangeLog	Tue Oct 04 18:34:45 2011 +0000
@@ -1,5 +1,11 @@
 Pidgin and Finch: The Pimpin' Penguin IM Clients That're Good for the Soul
 
+version 2.10.1 (??/??/????):
+	SILC:
+	* Fix CVE-2011-3594, by UTF-8 validating incoming messages before
+	  passing them to glib or libpurple.  Identified by Diego Bauche
+	  Madero from IOActive.  (#14636)
+
 version 2.10.0 (08/18/2011):
 	Pidgin:
 	* Make the max size of incoming smileys a pref instead of hardcoding it.