Bug #6629

Many security issues in Pidgin

Added by intrigeri 2014-01-29 11:41:02 . Updated 2014-02-05 01:43:59 .

Status:
Resolved
Priority:
Elevated
Assignee:
Category:
Target version:
Tails_0.22.1
Start date:
2014-01-29
Due date:
% Done:

100%

Feature Branch:
feature/pidgin-2.10
Type of work:
Code
Blueprint:

Starter:
0
Affected tool:
Deliverable for:

Description

Pidgin 2.10.8 came out and fixes lots of security issues. The Debian security plans to:

  • take it as is into Wheezy (instead of trying to backport all the bugfixes)
  • EOL Pidgin in Squeeze

So, we cannot simply wait for things to be fixed elsewhere.

I think our only option is to backport Pidgin 2.10.8 for Squeeze, which I’ve done in a branch, and successfully tested (IRC, XMPP, OTR for both).

Once 2.10.8 reaches Wheezy, I’ll upload the backport to the official Debian squeeze-backports.

Subtasks

History

#1 Updated by bertagaz 2014-01-31 10:22:12

  • Status changed from Confirmed to Fix committed
  • Assignee deleted (sajolida)
  • QA Check changed from Ready for QA to Pass

Works, see the tails-dev list for more. Merged into devel.

#2 Updated by bertagaz 2014-01-31 10:22:53

  • % Done changed from 50 to 100

#3 Updated by intrigeri 2014-01-31 22:38:18

Also merged into stable for 0.22.1.

#4 Updated by intrigeri 2014-02-05 01:43:59

  • Status changed from Fix committed to Resolved