Ubuntu
gajim package

gajim 0.13.4-3ubuntu2.1 source package in Ubuntu

Changelog

gajim (0.13.4-3ubuntu2.1) natty-security; urgency=low

  * SECURITY UPDATE: assisted code execution (LP: #992618)
    - debian/patches/CVE-2012-2085.patch: fix subprocess call to prevent
      shell escape from via crafted messages
      https://trac.gajim.org/changeset/bc296e96ac10
    - CVE-2012-2085
  * SECURITY UPDATE: sql injection in logging code (LP: #992618)
    - debian/patches/CVE-2012-2086.patch: use a prepated statement
      https://trac.gajim.org/changeset/bfd5f94489d8
    - CVE-2012-2086
  * SECURITY UPDATE: insecure tmpfile creation (LP: #992613)
    - debian/patches/CVE-2012-2093.patch: use safe tmpfile functions
      when convering LaTeX IM messages to png images
      Thanks to Nico Golde
    - CVE-2012-2093
 -- Julian Taylor <email address hidden>   Thu, 10 May 2012 17:48:45 -0700

Upload details

Uploaded by:
Julian Taylor
Sponsored by:
Tyler Hicks
Uploaded to:
Natty
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
gajim_0.13.4.orig.tar.gz 4.9 MiB 70489184ac7829b6457b2bbe213669ca43c863bc4d96454c2a787a291cc75c67
gajim_0.13.4-3ubuntu2.1.diff.gz 16.6 KiB 0b97e6203d7d60ac72d8ddf01fd181ac0065883fe0db00e55b01b5fdb5110e11
gajim_0.13.4-3ubuntu2.1.dsc 2.0 KiB 181bb527bb23842a78cc8c2e600ffbdcfc92293c768abbe85f3ef407f8099b62

View changes file

Binary packages built by this source

gajim: No summary available for gajim in ubuntu natty.

No description available for gajim in ubuntu natty.