lp:ubuntu/lucid-security/pidgin

Created by James Westby and last modified
Get this branch:
bzr branch lp:ubuntu/lucid-security/pidgin
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

58. By Marc Deslauriers

* SECURITY UPDATE: denial of service in Yahoo! protocol via malormed
  YMSG message
  - debian/patches/97_CVE-2011-1091.patch: validate messages in
    libpurple/protocols/yahoo/libymsg.c.
  - CVE-2011-1091
* SECURITY UPDATE: denial of service in MSN protocol via HTTP 100
  response size
  - debian/patches/97_CVE-2011-3184.patch: properly calculate size in
    libpurple/protocols/msn/httpconn.c.
  - CVE-2011-3184
* SECURITY UPDATE: denial of service in SILC protocol via invalid UTF-8
  sequence
  - debian/patches/97_CVE-2011-3594.patch: properly handle utf-8 in
    libpurple/protocols/silc/ops.c.
  - CVE-2011-3594

57. By Marc Deslauriers

* SECURITY UPDATE: denial of service via custom emoticon
  - debian/patches/93_CVE-2010-1624.patch: make sure body is valid in
    libpurple/protocols/msn/slp.c.
  - CVE-2010-1624
* SECURITY UPDATE: denial of service via base64 decoding (LP: #666998)
  - debian/patches/94_CVE-2010-3711.patch: correctly handle
    purple_base64_decode return codes in libpurple/ntlm.c,
    libpurple/plugins/perl/common/Util.xs,
    libpurple/protocols/{jabber/auth_digest_md5.c,msn/slp.c,
    myspace/message.c,oscar/clientlogin.c,qq/im.c,yahoo/libymsg.c}.
  - CVE-2010-3711

56. By Marc Deslauriers

* debian/patches/92_gtkstatusicon_blink.patch: add blink support to
  GtkStatusIcon backport.
* debian/patches/62_tray_icon_size_kde.patch: removed as no longer
  needed with GtkStatusIcon support.

55. By Marc Deslauriers

* debian/patches/91_gtkstatusicon_backport.patch: backport GtkStatusIcon
  support to get proper icon transparency with new default theme.
  (LP: #532789)
* debian/pidgin-data.links: symlink pixmaps to location GtkStatusIcon
  expects them to be.

54. By Sebastien Bacher

* debian/patches/90_icq_login_fix.patch:
  - upstream change to fix aim and icq login issues when clientlogin is used
    which is the case in empathy by default (lp: #524221, #526146)

53. By Sebastien Bacher

Resync on Debian

52. By Sebastien Bacher

* Sync on Debian
  - fix login on aim and icq (lp: #506647)
* debian/control:
  - Build-Depends on liblaunchpad-integration-dev and libtool
  - Drop libpurple0 dependency from libpurple-bin
  - Drop pidgin-data dependency from libpurple0
  - Recommends pidgin-libnotify
* debian/libpurple0.symbols:
  - add epochs
* debian/patches/02_lpi.patch:
  - launchpad integration
* debian/patches/04_let_crasher_for_apport.patch:
  - stop catching the SIGSEGV signal and let apport handle it
* debian/patches/05_default_to_irc_ubuntu_com.patch:
  - set the default IRC server to irc.ubuntu.com
* debian/patches/10_docklet_default_off.patch:
  - default behavior to have no notification area icon.
* debian/patches/11_buddy_list_really_show.patch:
  - the buddy list tries harder to appear. This fixes some issues with it
    not appearing.
* debian/patches/ 13_sounds_and_timers.patch:
  - adjusts the time out for sounds to be 15 seconds,
    which helps get fewer spurious login notifications on slow connections.
* debian/patches/60_1024x600_gtk*.c.patch:
  - add scrollbars into preferences and pounce dialogs
* debian/patches/62_tray_icon_size_kde.patch:
  - always use default tray icon size on KDE
* debian/prefs.xml:
  - Update to set the notify plugin prefs /plugins/gtk/X11/notify/*,
    set /pidgin/plugins/loaded to load the notify plugin and enable
    the standard logging options by default
* debian/rules:
  - install a launcher in the message indicator
  - set translation domain and update template
  - use simple-patchsys rules

51. By Sebastien Bacher

* Sync on Debian
* debian/control:
  - Build-Depends on liblaunchpad-integration-dev and libtool
  - Drop libpurple0 dependency from libpurple-bin
  - Drop pidgin-data dependency from libpurple0
  - Recommends pidgin-libnotify
* debian/libpurple0.symbols:
  - add epochs
* debian/patches/02_lpi.patch:
  - launchpad integration
* debian/patches/04_let_crasher_for_apport.patch:
  - stop catching the SIGSEGV signal and let apport handle it
* debian/patches/05_default_to_irc_ubuntu_com.patch:
  - set the default IRC server to irc.ubuntu.com
* debian/patches/10_docklet_default_off.patch:
  - default behavior to have no notification area icon.
* debian/patches/11_buddy_list_really_show.patch:
  - the buddy list tries harder to appear. This fixes some issues with it
    not appearing.
* debian/patches/ 13_sounds_and_timers.patch:
  - adjusts the time out for sounds to be 15 seconds,
    which helps get fewer spurious login notifications on slow connections.
* debian/patches/60_1024x600_gtk*.c.patch:
  - add scrollbars into preferences and pounce dialogs
* debian/patches/62_tray_icon_size_kde.patch:
  - always use default tray icon size on KDE
* debian/prefs.xml:
  - Update to set the notify plugin prefs /plugins/gtk/X11/notify/*,
    set /pidgin/plugins/loaded to load the notify plugin and enable
    the standard logging options by default
* debian/rules:
  - install a launcher in the message indicator
  - set translation domain and update template
  - use simple-patchsys rules

50. By Sebastien Bacher

* debian/patches/60_1024x600_gtkprefs.c.patch:
  - updated to apply correctly to the new source

49. By Sebastien Bacher

* debian/control:
  - Build-Depends on libtool to workaround build issues

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/natty/pidgin
This branch contains Public information 
Everyone can see this information.

Subscribers