Subject: CVS commit: pkgsrc/chat/bitlbee
To: None <pkgsrc-changes@NetBSD.org>
From: Antoine Reilles <tonio@netbsd.org>
List: pkgsrc-changes
Date: 08/02/2005 15:22:30
Module Name: pkgsrc
Committed By: tonio
Date: Tue Aug 2 15:22:30 UTC 2005
Modified Files:
pkgsrc/chat/bitlbee: Makefile distinfo
pkgsrc/chat/bitlbee/patches: patch-aa
Log Message:
update bitlbee to 0.92
Main changelog entries are:
Security:
- Fixed a bug in http_encode that might have caused buffer overflows
(although not likely to be exploitable) when trying to encode strings
with non-ASCII characters.
- Newline stripping added to prevent newline-in-friendlyname attacks.
(Which allowed remote people to make BitlBee send raw custom IRC lines.)
Bugs:
- Many crashes
- Yahoo! cleanup code to avoid 100% CPU time usage
- fixes for ICQ and MSN
approved by wiz@
To generate a diff of this commit:
cvs rdiff -r1.21 -r1.22 pkgsrc/chat/bitlbee/Makefile
cvs rdiff -r1.9 -r1.10 pkgsrc/chat/bitlbee/distinfo
cvs rdiff -r1.3 -r1.4 pkgsrc/chat/bitlbee/patches/patch-aa
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.