Re: Accepted gaim 1:1.3.0-1 (i386 source all)

To: debian-release@lists.debian.org
Cc: gaim@packages.debian.org
Subject: Re: Accepted gaim 1:1.3.0-1 (i386 source all)
From: Joey Hess <joeyh@debian.org>
Date: Wed, 11 May 2005 11:31:55 -0400
Message-id: <[🔎] 20050511153155.GA9740@kitenet.net>
Mail-followup-to: debian-release@lists.debian.org, gaim@packages.debian.org
In-reply-to: <E1DVs1v-0005Ah-00@newraff.debian.org>
References: <E1DVs1v-0005Ah-00@newraff.debian.org>

Ari Pollak wrote:
>  gaim (1:1.3.0-1) unstable; urgency=high
>  .
>    * New upstream version. Fixes two remote DoS/overflow security bugs,
>      CAN-2005-1262 and CAN-2005-1261.

Of which details are available at http://gaim.sourceforge.net/security/.

At 183272 lines, the diff between gaim 1.2.1 and 1.3.0 is too large for
me to review before sarge releases. Even excluding the po file changes
it's still 6229 lines and has many non-security changes.

Can we get a backported version of these security fixes into t-p-u for
1.2.1? The description of the fixes, especially for CAN-2005-1262, look
easy enough to backport.

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: Accepted gaim 1:1.3.0-1 (i386 source all)
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Re: [Fwd: Accepted xosd 2.2.14-1.1 (i386 source)]
Next by Date: Re: libosip2 and libosip2-3
Previous by thread: Re: Please consider wmakerconf 2.11-2 for Sarge
Next by thread: Re: Accepted gaim 1:1.3.0-1 (i386 source all)
Index(es):
- Date
- Thread