CVE-2017-2640 in libpurple

erythronium23 erythronium23 at gmail.com
Wed Mar 15 23:46:05 UTC 2017


Recently a security issue (CVE-2017-2640) was fixed in libpurple:

https://www.pidgin.im/news/security/?id=109

SecurityFocus and Ubuntu say the vulnerability impact is arbitrary code
execution on the client.

Is the Adium team aware of this issue? Is there a response in the works?
Does the Adium team have processes in place for handling and responding to
security errata in libpurple? I'd be happy to help with any or all of the
above.

Thanks,

Eryt
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://adium.im/pipermail/devel_adium.im/attachments/20170315/c8a3ca9b/attachment.html>


More information about the devel mailing list