On Sat, 12 Dec 2009 16:05:55 -0800 Ludovico Cavedon wrote: > Hi Michael, > > Michael Gilbert wrote: > > the following CVE (Common Vulnerabilities & Exposures) id was published > > for libgadu. Centerim embeds libpurple, which embeds libgadu, so it is > > affected. > > I am sure what stated above is correct. According to my investigation: > -libpurble does not embded libgadu directly, but has its own > implementation of the gadugadu protocol > -centerim embeds libgadu directly > > Therefore this CVE does not apply to qutecom.
based on [0], qutecom embeds the exact same code as libpurple, so it is indeed affected. mike [0] http://source.debian.net/source/search?q=&defs=&refs=&path=libgadu.c&hist= -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
