-
pidgin (1:2.10.12-0ubuntu9.1) yakkety-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds write when stripping xml
- debian/patches/CVE-2017-2640.patch: improve entity processing in
libpurple/util.c.
- CVE-2017-2640
-- Marc Deslauriers <email address hidden> Mon, 13 Mar 2017 14:28:04 -0400
-
pidgin (1:2.10.12-0ubuntu9) yakkety; urgency=medium
* Include fix from Debian for FTBFS with full hardening flags
-- Graham Inggs <email address hidden> Sat, 08 Oct 2016 21:15:40 +0200
-
pidgin (1:2.10.12-0ubuntu8) yakkety; urgency=medium
* User dpkg-dev's hardening support instead of hardening-wrapper.
-- Matthias Klose <email address hidden> Wed, 05 Oct 2016 05:55:22 +0200
-
pidgin (1:2.10.12-0ubuntu7) yakkety; urgency=medium
[ AsciiWolf ]
* Fix desktop file (LP: #1575338)
-- Gianfranco Costamagna <email address hidden> Fri, 16 Sep 2016 17:58:36 +0200
-
pidgin (1:2.10.12-0ubuntu6) yakkety; urgency=medium
* SECURITY UPDATE: denial of service and code execution in MXIT protocol
- debian/patches/CVE-2016-*.patch: fix multiple issues.
- CVE-2016-2365
- CVE-2016-2366
- CVE-2016-2367
- CVE-2016-2368
- CVE-2016-2369
- CVE-2016-2370
- CVE-2016-2371
- CVE-2016-2372
- CVE-2016-2373
- CVE-2016-2374
- CVE-2016-2375
- CVE-2016-2376
- CVE-2016-2377
- CVE-2016-2378
- CVE-2016-2380
- CVE-2016-4323
-- Marc Deslauriers <email address hidden> Tue, 12 Jul 2016 08:17:31 -0400
-
pidgin (1:2.10.12-0ubuntu5) xenial; urgency=medium
[ Julien Lavergne ]
* debian/pidgin*.install
- Don't install gconf schemas to avoid depends on gconf (LP: #1550896).
[ Tim Lunn ]
* debian/control
- Drop build-depend on gconf2 it's not need with the above change
-- Tim Lunn <email address hidden> Thu, 10 Mar 2016 17:06:47 +1100