Package: pidgin
Version: 2.6.4-1
Severity: important
Tags: patch
Everything is in the subject.
Description: Upstream changes introduced in version 2.6.5-1
This patch has been created by dpkg-source during the package build.
Here's the last changelog entry, hopefully it gives details on why
those changes were made:
.
pidgin (2.6.5-1) unstable; urgency=low
.
* New upstream release
* debian/patches/CVE-2010-0013.patch:
- Fix MSN local file disclosure vulnerability (Closes: #563206)
(CVE-2010-0013)
.
The person named in the Author field signed this changelog entry.
Author: Ari Pollak <[email protected]>
Bug-Debian: http://bugs.debian.org/563206
---
The information above should follow the Patch Tagging Guidelines, please
checkout http://dep.debian.net/deps/dep3/ to learn about the format. Here
are templates for supplementary fields that you might want to add:
Origin: <vendor|upstream|other>, <url of original patch>
Bug: <url in upstream bugtracker>
Bug-Debian: http://bugs.debian.org/<bugnumber>
Forwarded: <no|not-needed|url proving that it has been forwarded>
Reviewed-By: <name and email of someone who approved the patch>
Last-Update: <YYYY-MM-DD>
--- pidgin-2.6.5.orig/libpurple/plugins/ssl/ssl-nss.c
+++ pidgin-2.6.5/libpurple/plugins/ssl/ssl-nss.c
@@ -131,7 +131,7 @@ ssl_nss_init_nss(void)
/* TODO: Fix this so autoconf does the work trying to find this lib. */
#ifndef _WIN32
- lib = g_strdup(LIBDIR "/libnssckbi.so");
+ lib = g_strdup("libnssckbi.so");
#else
lib = g_strdup("nssckbi.dll");
#endif