pidgin: 529891a1: ChangeLog the security fix and credit Ma...

rekkanoryo at rekkanoryo at
Thu Mar 10 22:15:47 EST 2011

Revision: 529891a1931cb09a834f9dcff2e389bab6e719c9
Parent:   a7c415abba1f5f01f79295337518837f73d99bb7
Author:   rekkanoryo at
Date:     03/10/11 21:03:45
Branch:   im.pidgin.pidgin


ChangeLog the security fix and credit Marius.  Although he didn't directly
provide a patch, his suggestions and review were helpful in deriving the final
fix for the problem.

Changes against parent a7c415abba1f5f01f79295337518837f73d99bb7

  patched  COPYRIGHT
  patched  ChangeLog

-------------- next part --------------
--- ChangeLog	8c74ab847a6bf1af0701610658a9c2b74b5fa2ad
+++ ChangeLog	b2af1114a9c476abc7eaec4e1626d78a765aa2f2
@@ -37,6 +37,11 @@ version 2.7.11 (??/??/????):
 	  room (not currently supported by Pidgin and Finch).  (Thijs Alkemade)
 	  (#10986, #a14219)
+	Yahoo!/Yahoo! JAPAN:
+	* Fix CVE-2011-1091, denials of service caused by NULL pointer
+	  dereferences due to improper handling of malformed YMSG packets.  Thanks
+	  to Marius Wachtler for reporting this and reviewing the fix!
 version 2.7.10 (02/06/2011):
 	* Force video sources to all have the same capabilities.  This reduces the
--- COPYRIGHT	e533a9fa400e53e4c035301f64132614b9519db4
+++ COPYRIGHT	650fff187e5bd2c9f9e3dfe3f8964deb7aa3e51b
@@ -553,6 +553,7 @@ Peter Volkov
 Jorge Villase?or (Masca)
 Bjoern Voigt
 Peter Volkov
+Marius Wachtler
 Wan Hing Wah
 Philip Walford
 Nathan Walp

More information about the Commits mailing list