ubuntu/+source/pidgin:applied/ubuntu/hardy-proposed

Last commit made on 2009-10-30
Get this branch:
git clone -b applied/ubuntu/hardy-proposed https://git.launchpad.net/ubuntu/+source/pidgin
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/hardy-proposed
Repository:
lp:ubuntu/+source/pidgin

Recent commits

6aa89ca... by Chris Coulson on 2009-10-30

Import patches-applied version 1:2.4.1-1ubuntu2.7 to applied/ubuntu/hardy-proposed

Imported using git-ubuntu import.

Changelog parent: 3667e9395bc67d912c6dc13aef300f67a3e88d3b
Unapplied parent: faeb93998f5ad1ca5a3f1317d3b697a8e9f844f5

New changelog entries:
  * debian/patches/86_yahoo_protocol_fix.patch:
    - Backport upstream changes to use version 16 of the Yahoo!
      Messenger Protocol. The old authentication mechanism was
      disabled, meaning that it can no longer be used for signing in
      to Yahoo! services (LP: #389322)

faeb939... by Chris Coulson on 2009-10-30

Import patches-unapplied version 1:2.4.1-1ubuntu2.7 to ubuntu/hardy-proposed

Imported using git-ubuntu import.

Changelog parent: dd3cab1f8ec8d9f80893b202e9bd8f22af3337ee

New changelog entries:
  * debian/patches/86_yahoo_protocol_fix.patch:
    - Backport upstream changes to use version 16 of the Yahoo!
      Messenger Protocol. The old authentication mechanism was
      disabled, meaning that it can no longer be used for signing in
      to Yahoo! services (LP: #389322)

3667e93... by Marc Deslauriers on 2009-08-19

Import patches-applied version 1:2.4.1-1ubuntu2.6 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 96dbd7c31d5be5800e67b345a0d317f192d1481b
Unapplied parent: dd3cab1f8ec8d9f80893b202e9bd8f22af3337ee

New changelog entries:
  * SECURITY UPDATE: arbitrary code execution via crafted MSNSLP packet
     (LP: #415863)
    - debian/patches/85_security_CVE-2009-2694.patch: properly destroy
      slpmsg in libpurple/protocols/{msn,msnp9}/slplink.c.
    - CVE-2009-2694

dd3cab1... by Marc Deslauriers on 2009-08-19

Import patches-unapplied version 1:2.4.1-1ubuntu2.6 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: a32b16d6fc4dd07c2b3e2cf635bd2dfb75d6a683

New changelog entries:
  * SECURITY UPDATE: arbitrary code execution via crafted MSNSLP packet
     (LP: #415863)
    - debian/patches/85_security_CVE-2009-2694.patch: properly destroy
      slpmsg in libpurple/protocols/{msn,msnp9}/slplink.c.
    - CVE-2009-2694

96dbd7c... by Marc Deslauriers on 2009-07-03

Import patches-applied version 1:2.4.1-1ubuntu2.5 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 6fc8f7a0ccc2fd42b2338188f906010613b3c840
Unapplied parent: a32b16d6fc4dd07c2b3e2cf635bd2dfb75d6a683

New changelog entries:
  * SECURITY UPDATE: denial of service via ICQWebMessage message type in
    OSCAR protocol. (LP: #393736)
    - debian/patches/84_security_CVE-2009-1889.patch: make the check better
      in libpurple/protocols/oscar/oscar.c, only allocate memory if len is
      valid in libpurple/protocols/oscar/bstream.c.
    - CVE-2009-1889

a32b16d... by Marc Deslauriers on 2009-07-03

Import patches-unapplied version 1:2.4.1-1ubuntu2.5 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 4785d7871cb9c58abd8061309b8f214fa5bce20a

New changelog entries:
  * SECURITY UPDATE: denial of service via ICQWebMessage message type in
    OSCAR protocol. (LP: #393736)
    - debian/patches/84_security_CVE-2009-1889.patch: make the check better
      in libpurple/protocols/oscar/oscar.c, only allocate memory if len is
      valid in libpurple/protocols/oscar/bstream.c.
    - CVE-2009-1889

6fc8f7a... by Marc Deslauriers on 2009-05-25

Import patches-applied version 1:2.4.1-1ubuntu2.4 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: b9cde4b62701b2be8c1672edcee384e7f9e9ad2e
Unapplied parent: 4785d7871cb9c58abd8061309b8f214fa5bce20a

New changelog entries:
  * SECURITY UPDATE: denial of service or possible code execution in XMPP
    file transfer
    - debian/patches/81_security_CVE-2009-1373.patch: calculate lengths
      correctly in libpurple/protocols/jabber/si.c.
    - CVE-2009-1373
  * SECURITY UPDATE: denial of service in PurpleCircBuffer object expansion
    - debian/patches/82_security_CVE-2009-1375.patch: add an additional
      check in libpurple/circbuffer.c.
    - CVE-2009-1375
  * SECURITY UPDATE: arbitrary code execution via crafted MSN message
    - debian/patches/83_security_CVE-2009-1376.patch: switch offset
      variable to guint64 in libpurple/protocols/msn/slplink.c.
    - CVE-2009-1376

4785d78... by Marc Deslauriers on 2009-05-25

Import patches-unapplied version 1:2.4.1-1ubuntu2.4 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 855e7b11fd1908cbb43bb4094d580bebbbb2119a

New changelog entries:
  * SECURITY UPDATE: denial of service or possible code execution in XMPP
    file transfer
    - debian/patches/81_security_CVE-2009-1373.patch: calculate lengths
      correctly in libpurple/protocols/jabber/si.c.
    - CVE-2009-1373
  * SECURITY UPDATE: denial of service in PurpleCircBuffer object expansion
    - debian/patches/82_security_CVE-2009-1375.patch: add an additional
      check in libpurple/circbuffer.c.
    - CVE-2009-1375
  * SECURITY UPDATE: arbitrary code execution via crafted MSN message
    - debian/patches/83_security_CVE-2009-1376.patch: switch offset
      variable to guint64 in libpurple/protocols/msn/slplink.c.
    - CVE-2009-1376

b9cde4b... by Didier Roche on 2009-03-10

Import patches-applied version 1:2.4.1-1ubuntu2.3 to applied/ubuntu/hardy-proposed

Imported using git-ubuntu import.

Changelog parent: 427b3327b0adae4f5135f020cc639fee6836effd
Unapplied parent: 855e7b11fd1908cbb43bb4094d580bebbbb2119a

New changelog entries:
  * Apply upstream patch to fix connexion issue with new ICQ
    protocol: debian/patches/80_fix_ICQ_new_protocol.patch (LP: #340151)

855e7b1... by Didier Roche on 2009-03-10

Import patches-unapplied version 1:2.4.1-1ubuntu2.3 to ubuntu/hardy-proposed

Imported using git-ubuntu import.

Changelog parent: 2a74ca509d3c168bf6a1fcfc5e7d7c6cad2a56a0

New changelog entries:
  * Apply upstream patch to fix connexion issue with new ICQ
    protocol: debian/patches/80_fix_ICQ_new_protocol.patch (LP: #340151)