Please update pidgin to fix security vulnerabilities
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
The Dell Mini Project |
Confirmed
|
Undecided
|
Nicolas Valcarcel |
Bug Description
Pidgin in generic hardy has been update to fix three security vulnerabilities. The patches should be applied to tpidgin for the mini. Note that pidgin for the mini is in version 1:2.4.3ubuntu1~
pidgin (1:2.4.
* SECURITY UPDATE: denial of service or possible code execution in XMPP
file transfer
- debian/
correctly in libpurple/
- CVE-2009-1373
* SECURITY UPDATE: denial of service in PurpleCircBuffer object expansion
- debian/
check in libpurple/
- CVE-2009-1375
* SECURITY UPDATE: arbitrary code execution via crafted MSN message
- debian/
variable to guint64 in libpurple/
- CVE-2009-1376
-- Marc Deslauriers <email address hidden> Mon, 25 May 2009 17:24:40 +0200
description: | updated |
security vulnerability: | no → yes |
Changed in dell-mini: | |
status: | New → Confirmed |
Changed in dell-mini: | |
assignee: | nobody → Nicolas Valcárcel (nvalcarcel) |
New security vulnerabilities in current version. Generic hardy already patched to version 1:2.4.1-1ubuntu2.6. The same patch should be applied ASAP to the mini.
CVE-2009-2694