Josh Bressers wrote:
> On Mon, Jul 04, 2005 at 05:08:29PM -0400, Sean Egan wrote:
>>We're ready to release Gaim v1.4.0 this Thursday.
>>This annoucement is a day later than I usually make them, and today is
>>a holiday (although I doubt that's the case for most of the
>>translators ;)). If anyone needs more time, let me know.
> Will this update be fixing any security issues? If so I'd be more than
> happy to take care of the CVE bits.
I know there's more protection and some tidying up (plugging potential
leaks) of the existing protection against the exploitable Yahoo servers
which send through bad packets (aka 'booters'). Previous discussions
have lead this to not require a CVE against gaim, as the fault's with Y!.
As for other areas, I'm not sure.