[Fwd: Re: [Advisories] Libpurple security vulnerability CORE-2009-0727]

Warren Togami wtogami at redhat.com
Wed Aug 12 23:57:07 EDT 2009


On 08/12/2009 10:48 PM, Mark Doliner wrote:
>> We will be releasing Pidgin 2.5.9, which will contain a patch just for this
>> exploit."
>
> This looks fantastic to me.
>
>> Do we still plan on releasing 2.5.9 with just the patch? Will we release
>> 2.6.0 at the same time?
>
> I think we should definitely release 2.6.0--aside from this change
> everything is ready, right?  I don't have a strong opinion about
> releasing 2.5.9, but I'm mildly in favor.

Could we please have a coordinated pidgin-1.5.2 as well?  Due to the 
confusion of the earlier incomplete patch and distros shipping different 
versions of earlier patch, it would be good to agree upon a common release?

Warren



More information about the Packagers mailing list