Ubuntu
libotr package

libotr 3.2.0-4ubuntu0.1 source package in Ubuntu

Changelog

libotr (3.2.0-4ubuntu0.1) precise-security; urgency=low

  * SECURITY UPDATE: multiple heap-based buffer overflows (LP: #1034623)
    - 0001-Use-ceil-instead-of-floor-to-compute-the-size-of-the.patch,
      0002-More-thorough-base64-fix.patch,
      0003-One-more-otrl_base64_decode-in-the-toolkit.patch:
      patches from upstream
    - CVE-2012-3461
 -- Felix Geyer <email address hidden>   Thu, 09 Aug 2012 15:12:38 +0200

Upload details

Uploaded by:
Felix Geyer
Sponsored by:
Steve Beattie
Uploaded to:
Precise
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
libotr_3.2.0.orig.tar.gz 420.2 KiB d83b9d20e36e2a4a55e5336f15d1d218d627bc0af7af94e3835bdc8b6d8b6693
libotr_3.2.0-4ubuntu0.1.debian.tar.gz 6.3 KiB 1c1fe89f71203bd0f5d2c8429dfe0fa78248389b2db5d34ddb53117e918a0a5e
libotr_3.2.0-4ubuntu0.1.dsc 1.9 KiB dfa0f87c86bd3ec740bbcd62828b672df6c2d17e8d3a0874c1caec555db0fee2

View changes file

Binary packages built by this source

libotr2: Off-the-Record Messaging library

 Off-the-Record (OTR) Messaging Library and Toolkit
 .
 OTR allows you to have private conversations over IM by providing:
  - Encryption
    - No one else can read your instant messages.
  - Authentication
    - You are assured the correspondent is who you think it is.
  - Deniability
    - The messages you send do _not_ have digital signatures that are
      checkable by a third party. Anyone can forge messages after a
      conversation to make them look like they came from you. However,
      _during_ a conversation, your correspondent is assured the messages
      he sees are authentic and unmodified.
  - Perfect forward secrecy
    - If you lose control of your private keys, no previous conversation
      is compromised.

libotr2-bin: toolkit for Off-the-Record Messaging library

 Off-the-Record (OTR) Messaging Library toolkit
 .
 OTR allows you to have private conversations over IM by providing:
  - Encryption
    - No one else can read your instant messages.
  - Authentication
    - You are assured the correspondent is who you think it is.
  - Deniability
    - The messages you send do _not_ have digital signatures that are
      checkable by a third party. Anyone can forge messages after a
      conversation to make them look like they came from you. However,
      _during_ a conversation, your correspondent is assured the messages
      he sees are authentic and unmodified.
  - Perfect forward secrecy
    - If you lose control of your private keys, no previous conversation
      is compromised.
  .
  This package contains the program files for the OTR library.

libotr2-dev: Off-the-Record Messaging library development files

 Off-the-Record (OTR) Messaging Library
 .
 OTR allows you to have private conversations over IM by providing:
  - Encryption
    - No one else can read your instant messages.
  - Authentication
    - You are assured the correspondent is who you think it is.
  - Deniability
    - The messages you send do _not_ have digital signatures that are
      checkable by a third party. Anyone can forge messages after a
      conversation to make them look like they came from you. However,
      _during_ a conversation, your correspondent is assured the messages
      he sees are authentic and unmodified.
  - Perfect forward secrecy
    - If you lose control of your private keys, no previous conversation
      is compromised.
  .
  This package contains the header files and static libraries needed to
  develop applications using libotr.