Bug#655178: pu: package pidgin/2.7.3-1+squeeze1
On Sun, 2012-01-08 at 19:40 -0500, Ari Pollak wrote:
> The security team asked me to prepare an update for squeeze that
> includes fixes for the outstanding minor security issues (all remote
> crashers with no remote code execution). That diff is attached.
Something odd appears to have happened to CVE-2011-4602.patch; it looks
like a diff of a brokenly wrapped diff. For instance: (sic)
+============================================================ Index:
+pidgin/libpurple/protocols/jabber/jingle/jingle.c
+=================================================================== ---
+pidgin.orig/libpurple/protocols/jabber/jingle/jingle.c +++
+pidgin/libpurple/protocols/jabber/jingle/jingle.c @@ -119,7 +119,7 @@
+jingle_handle_content_modify(JingleSessi if (local_content != NULL) { const
+gchar *senders = xmlnode_get_attrib(content, "senders"); gchar *local_senders =
+jingle_content_get_senders(local_content);
+- if (strcmp(senders,
+ local_senders)) + if
Regards,
Adam
Reply to: