UbuntuUpdates.org

Package "libotr2-dev"

Name: libotr2-dev

Description:

Off-the-Record Messaging library development files
Latest version: 3.2.0-4ubuntu0.3
Release: precise (12.04)
Level: security
Repository: main
Head package: libotr
Homepage: http://www.cypherpunks.ca/otr/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libotr2-dev"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libotr2-dev" in Precise

Repository Area Version
base main 3.2.0-4
updates main 3.2.0-4ubuntu0.3

Changelog

Version: 3.2.0-4ubuntu0.3 2016-03-10 16:06:30 UTC

  libotr (3.2.0-4ubuntu0.3) precise-security; urgency=medium

  * SECURITY UPDATE: memory corruption vulnerability
    - debian/patches/CVE-2016-2851.patch: prevent integer overflow in
      src/proto.c.
    - CVE-2016-2851

 -- Marc Deslauriers <email address hidden> Thu, 10 Mar 2016 08:31:43 -0500
Source diff to previous version

Version: 3.2.0-4ubuntu0.2 2014-01-30 18:06:36 UTC

  libotr (3.2.0-4ubuntu0.2) precise-security; urgency=low

  * SECURITY UPDATE: disable insecure OTRv1 protocol to prevent downgrade
    attacks (LP: #1266016)
    - Add disable_otr_v1.patch, patch taken from Debian
 -- Felix Geyer <email address hidden> Sat, 04 Jan 2014 13:22:42 +0100
Source diff to previous version
1266016 Disable insecure OTRv1 protocol

Version: 3.2.0-4ubuntu0.1 2012-08-16 19:07:17 UTC

  libotr (3.2.0-4ubuntu0.1) precise-security; urgency=low

  * SECURITY UPDATE: multiple heap-based buffer overflows (LP: #1034623)
    - 0001-Use-ceil-instead-of-floor-to-compute-the-size-of-the.patch,
      0002-More-thorough-base64-fix.patch,
      0003-One-more-otrl_base64_decode-in-the-toolkit.patch:
      patches from upstream
    - CVE-2012-3461
 -- Felix Geyer <email address hidden> Thu, 09 Aug 2012 15:12:38 +0200
1034623 Multiple heap-based buffer overflows
CVE-2012-3461 base64 buffer overflows


About   -   Send Feedback to @ubuntu_updates