Possible libpurple vulnerability in multiple prpls

Warren Togami wtogami at redhat.com
Sun Aug 16 15:06:43 EDT 2009

On 08/15/2009 08:10 PM, Warren Togami wrote:
> On 08/15/2009 08:07 PM, John Bailey wrote:
>> Warren Togami wrote:
>>> Is this important enough to add to 2.5.9? (It seems not, but asking
>>> before I build from the tarball.)
>>> Warren
>> I assumed we would want this in 2.5.9, but I doubt it's critical. That
>> said, I
>> have not made any changes locally yet. If we don't want to put this in
>> 2.5.9, I
>> don't have to do anything.
>> John
> If the patch looks good, then might as well add it.
> Warren

OK, sitting for this long without a new 2.5.9 is more uncertainty as to 
what exactly 2.5.9 will be.  I'm going ahead with the 2.5.8 + 
CVE-2009-2694 that I built on Friday.


More information about the Packagers mailing list