Re: Accepted gaim 1:1.3.0-1 (i386 source all)

To: Joey Hess <joeyh@debian.org>
Cc: debian-release@lists.debian.org, robot101@debian.org, ari@debian.org
Subject: Re: Accepted gaim 1:1.3.0-1 (i386 source all)
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Mon, 16 May 2005 13:42:40 +0200
Message-id: <[🔎] 20050516114239.GA7247@informatik.uni-bremen.de>
In-reply-to: <[🔎] 20050511153155.GA9740@kitenet.net>
References: <E1DVs1v-0005Ah-00@newraff.debian.org> <[🔎] 20050511153155.GA9740@kitenet.net>

In gmane.linux.debian.devel.release, you wrote:
>>  gaim (1:1.3.0-1) unstable; urgency=3Dhigh
>>  .
>>    * New upstream version. Fixes two remote DoS/overflow security bugs,
>>      CAN-2005-1262 and CAN-2005-1261.
>
> At 183272 lines, the diff between gaim 1.2.1 and 1.3.0 is too large for
> me to review before sarge releases. Even excluding the po file changes
> it's still 6229 lines and has many non-security changes.
>
> Can we get a backported version of these security fixes into t-p-u for
> 1.2.1? The description of the fixes, especially for CAN-2005-1262, look
> easy enough to backport.

Extracted patches can be found at
http://www.inutil.org/jmm/patches/CAN-2005-1261.patch
http://www.inutil.org/jmm/patches/CAN-2005-1262.patch
 
Cheers,
        Moritz

Reply to:

References:
- Re: Accepted gaim 1:1.3.0-1 (i386 source all)
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: Volunteers for upgrade reports
Next by Date: Professional blame assigner, at your service
Previous by thread: Re: Accepted gaim 1:1.3.0-1 (i386 source all)
Next by thread: [Fwd: [Powerdns-debian] Please approve pdns to Sarge]
Index(es):
- Date
- Thread