Package: pidgin Version: 2.10.11-1 X-Debbugs-CC: t...@security.debian.org secure-testing-t...@lists.alioth.debian.org Severity: grave Tags: security Control: fixed -1 2.11.0-0+deb8u2
Hi, the following vulnerability was published for pidgin. Filling this with RC severity, since it's although fixed in sid and in stable, and means a regression while updating to stretch. CVE-2017-2640[0]: Out-of-bounds write when stripping xml If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2017-2640 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2640 Please adjust the affected versions in the BTS as needed. Regards, Salvatore
