Mercurial > pidgin3 / file diff

diff: ChangeLog

ChangeLog

changeset 28467
83590fc6c2aa
parent 28466
c96b00ae630f
child 28469
ef955a2c4128
--- a/ChangeLog	Thu Sep 03 16:17:12 2009 +0000
+++ b/ChangeLog	Thu Sep 03 18:20:53 2009 +0000
@@ -26,6 +26,9 @@
 	  room@conference.example.net is a MUC.
 	* Don't crash when receiving "smileyfied" XHTML-IM from clients that don't
 	  support bits of binary (ie. when getting an empty <data/> in return)
+	* Fix bug where SSL/TLS was not required even though the
+	  "require SSL/TLS" preference checked when connecting to servers
+	  that use the older iq-based authentication.  (CVE-2009-3026)
 
 	Yahoo!/Yahoo! JAPAN:
 	* Accounts now have "Use account proxy for SSL connections" option.  This

Mercurial Repository: pidgin3

mercurial