cvs commit: ports/net-im/libpurple Makefile distinfo
Peter Jeremy
peterjeremy at acm.org
Sun Mar 18 23:26:53 UTC 2012
On 2012-Mar-18 17:00:35 +0000, Joe Marcus Clarke <marcus at FreeBSD.org> wrote:
>marcus 2012-03-18 17:00:35 UTC
>
> FreeBSD ports repository
>
> Modified files:
> net-im/libpurple Makefile distinfo
> Log:
> Update to 2.10.2. See http://developer.pidgin.im/wiki/ChangeLog for a
> list of changes in this release.
Based on Mandriva security advisory MDVSA-2012:029, this appears to
also fix CVE-2012-1178 (it's not clear to me whether the fix is in
pidgin or libpurple). That advisory also lists CVE-2011-4939 that is
fixed in pidgin 2.10.2 - do you have any plans to upgrade that port?
(And a recent SANS @RISK also listed CVE-2012-1257 - which is fixed in
libpurple/pidgin 2.10.1) These should probably all be listed in vuxml.
--
Peter Jeremy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 196 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/cvs-ports/attachments/20120318/59dfd8fc/attachment.pgp
More information about the cvs-ports
mailing list