diff ChangeLog @ 32257:81d3c4d2eb73

ChangeLog with CVE for #14636
author Ethan Blanton <elb@pidgin.im>
date Tue, 04 Oct 2011 18:34:40 +0000
parents 7963daba699d
children 44fc11beefab 9c4fec824cb3
line wrap: on
line diff
--- a/ChangeLog	Fri Sep 30 01:31:04 2011 +0000
+++ b/ChangeLog	Tue Oct 04 18:34:40 2011 +0000
@@ -1,5 +1,11 @@
 Pidgin and Finch: The Pimpin' Penguin IM Clients That're Good for the Soul
 
+version 2.10.1 (??/??/????):
+	SILC:
+	* Fix CVE-2011-3594, by UTF-8 validating incoming messages before
+	  passing them to glib or libpurple.  Identified by Diego Bauche
+	  Madero from IOActive.  (#14636)
+
 version 2.10.0 (08/18/2011):
 	Pidgin:
 	* Make the max size of incoming smileys a pref instead of hardcoding it.