Fwd: FYI: Remote DOS in Pidgin 2.2.0 over MSN
seanegan at gmail.com
Fri Sep 28 01:10:14 EDT 2007
On 9/27/07, Luke Schierer <lschiere at pidgin.im> wrote:
> > I think you mean 2.2.1, and the MSN code is nowhere near release-worthy.
> > I suggest, if we're going to release for this, we create a branch from
> > 2.2.0 for 2.2.1 and include this fix and other known good fixes (such as
> > the multiple memory leaks) in that (we can probably do this without
> > adding new strings).
This sounds like the right thing to do. I'm out of town for a wedding
and can't be much help for a while. Stu and Luke, do you think you
could get all the known good fixes to 2.2.1 branch and release it
Kevin, do you think you can create a new version of our old security
bugs page and updatae it with this information. It sounds like Josh
Bressers (bressers at redhat.com) will get us a CVE number.
More information about the Packagers