diff options
| author | Natanael Copa <ncopa@alpinelinux.org> | 2014-03-03 10:20:18 +0000 |
|---|---|---|
| committer | Natanael Copa <ncopa@alpinelinux.org> | 2014-03-03 10:20:18 +0000 |
| commit | 9fc8798bff8fb121be4a3bda0075f124967b12e7 (patch) | |
| tree | e0844620b303608d3b17d9ef04feef425cf96d2b /main/python | |
| parent | 2bb44c021f13a71d3069579c18934f47bbf319c6 (diff) | |
| download | aports-9fc8798bff8fb121be4a3bda0075f124967b12e7.tar.bz2 aports-9fc8798bff8fb121be4a3bda0075f124967b12e7.tar.xz | |
main/pidgin: security upgrade to 2.10.9 (various CVEs)
fixes #2681
CVE-2014-0020 Remotely triggerable crash in IRC argument parsing
CVE-2013-6490 Buffer overflow in SIMPLE header parsing
CVE-2013-6489 Buffer overflow in MXit emoticon parsing
CVE-2013-6487 Buffer overflow in Gadu-Gadu HTTP parsing
CVE-2013-6486 Pidgin uses clickable links to untrusted executables
CVE-2013-6485 Buffer overflow parsing chunked HTTP responses
CVE-2013-6484 Crash reading response from STUN server
CVE-2013-6483 XMPP doesn't verify 'from' on some iq replies
CVE-2013-6482 NULL pointer dereference parsing SOAP data in MSN
CVE-2013-6482 NULL pointer dereference parsing OIM data in MSN
CVE-2013-6482 NULL pointer dereference parsing headers in MSN
CVE-2013-6481 Remote crash reading Yahoo! P2P message
CVE-2013-6479 Remote crash parsing HTTP responses
CVE-2013-6478 Crash when hovering pointer over a long URL
CVE-2013-6477 Crash handling bad XMPP timestamp
CVE-2012-6152 Yahoo! remote crash from incorrect character encoding
Diffstat (limited to 'main/python')
0 files changed, 0 insertions, 0 deletions