Security fixes for CAN-2005-2102 and CAN-2005-2103.

- An error in the handling of away messages can be exploited to cause a heap-based buffer overflow by sending a specially crafted away message to a user logged into AIM or ICQ. Successful exploitation allows execution of arbitrary code. - An error in the handling of file transfers can be exploited to crash the application by attempting to upload a file with a non-UTF8 filename to a user logged into AIM or ICQ. Patches from RedHat.
author: salo <salo@pkgsrc.org> 2005-08-10 16:13:33 +0000
committer: salo <salo@pkgsrc.org> 2005-08-10 16:13:33 +0000
commit: 6e773a73bf26c32be43e1ce10f3352567b3235d6 (patch)
tree: c5f0b4f8aa7f79f9b74c09b2a3e276611b8a3b90 /chat/gaim/buildlink3.mk
parent: 1c398d82990c6faed2de4582e7b0bbd972365371 (diff)
download: pkgsrc-6e773a73bf26c32be43e1ce10f3352567b3235d6.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/chat/gaim/buildlink3.mk b/chat/gaim/buildlink3.mk
index d213606c29e..0bc4e40ad39 100644
--- a/chat/gaim/buildlink3.mk
+++ b/chat/gaim/buildlink3.mk
@@ -1,4 +1,4 @@
-# $NetBSD: buildlink3.mk,v 1.6 2005/08/05 14:33:53 salo Exp $
+# $NetBSD: buildlink3.mk,v 1.7 2005/08/10 16:13:34 salo Exp $
 
 BUILDLINK_DEPTH:=	${BUILDLINK_DEPTH}+
 GAIM_BUILDLINK3_MK:=	${GAIM_BUILDLINK3_MK}+
@@ -12,7 +12,7 @@ BUILDLINK_PACKAGES+=	gaim
 
 .if !empty(GAIM_BUILDLINK3_MK:M+)
 BUILDLINK_DEPENDS.gaim+=	gaim>=1.1.2
-BUILDLINK_RECOMMENDED.gaim+=	gaim>=1.4.0nb1
+BUILDLINK_RECOMMENDED.gaim+=	gaim>=1.4.0nb2
 BUILDLINK_PKGSRCDIR.gaim?=	../../chat/gaim
 
 PRINT_PLIST_AWK+=	/^@dirrm lib\/gaim$$/ \
author	salo <salo@pkgsrc.org>	2005-08-10 16:13:33 +0000
committer	salo <salo@pkgsrc.org>	2005-08-10 16:13:33 +0000
commit	6e773a73bf26c32be43e1ce10f3352567b3235d6 (patch)
tree	c5f0b4f8aa7f79f9b74c09b2a3e276611b8a3b90 /chat/gaim/buildlink3.mk
parent	1c398d82990c6faed2de4582e7b0bbd972365371 (diff)
download	pkgsrc-6e773a73bf26c32be43e1ce10f3352567b3235d6.tar.gz