/pidgin/main: 82ec5fb22ce9: Add ChangeLog entry for datallah's 2...

Mark Doliner mark at kingant.net
Tue Jan 28 10:38:11 EST 2014 

Changeset: 82ec5fb22ce9ca5cdea0f9da0807d2085ebd2730
Author:	 Mark Doliner <mark at kingant.net>
Date:	 2014-01-12 13:08 -0800
Branch:	 release-2.x.y
URL: https://hg.pidgin.im/pidgin/main/rev/82ec5fb22ce9

Description:

Add ChangeLog entry for datallah's 2a77da513a03

diffstat:

 ChangeLog |  12 ++++++++----
 1 files changed, 8 insertions(+), 4 deletions(-)

diffs (45 lines):

diff --git a/ChangeLog b/ChangeLog
--- a/ChangeLog
+++ b/ChangeLog
@@ -7,7 +7,7 @@ version 2.10.8:
 
 	libpurple:
 	* Fix buffer overflow when parsing a malformed HTTP response with
-	  chunked Transfer-Encoding. (discovered by Matt Jones, Volvent)
+	  chunked Transfer-Encoding. (Discovered by Matt Jones, Volvent)
 	  (CVE-2014-NNNN)
 	* Fix handling of SSL certificates without subjects when using libnss.
 	* Fix handling of SSL certificates with timestamps in the distant future
@@ -34,7 +34,7 @@ version 2.10.8:
 	Gadu-Gadu:
 	* Fix buffer overflow with remote code execution potential. Only
 	  triggerable by a Gadu-Gadu server or a man-in-the-middle.
-	  (discovered by Yves Younan, Sourcefire VRT) (CVE-2014-NNNN)
+	  (Discovered by Yves Younan, Sourcefire VRT) (CVE-2014-NNNN)
 	* Disabled buddy list import/export from/to server (it didn't work
 	  anymore). Buddy list synchronization will be implemented in 3.0.0.
 
@@ -43,9 +43,13 @@ version 2.10.8:
 	* Fix bug where IRC wasn't available when libpurple was compiled with
 	  Cyrus SASL support. (#15517)
 
+	MSN:
+	* Fix possible crash when sending very long messages. Not
+	  remotely-triggerable. (Discovered by Matt Jones, Volvent)
+
 	MXit:
 	* Fix buffer overflow with remote code execution potential.
-	  (discovered by Sourcefire VRT) (CVE-2014-NNNN)
+	  (Discovered by Sourcefire VRT) (CVE-2014-NNNN)
 	* Fix sporadic crashes that can happen after user is disconnected.
 	* Fix crash when attempting to add a contact via search results.
 	* Show error message if file transfer fails.
@@ -57,7 +61,7 @@ version 2.10.8:
 
 	SIMPLE:
 	* Fix buffer overflow with remote code execution potential.
-	  (discovered by Sourcefire VRT) (CVE-2014-NNNN)
+	  (Discovered by Sourcefire VRT) (CVE-2014-NNNN)
 
 	XMPP:
 	* Fix possible crash or other erratic behavior when selecting a very

More information about the Commits mailing list