pidgin/nest

Update the changelog for the 2.14.7 release
default tip
8 days ago, Gary Kramlich
d040bee36d7c
Update the changelog for the 2.14.7 release

Testing Done:
None

Reviewed at https://reviews.imfreedom.org/r/928/
---
title: cve-2005-1261-00
date: 2005-05-10T00:00:00.000Z
cveNumber: cve-2005-1261
summary: Remote crash on some protocols
discoveredBy: Stu Tomlinson
fixedInRelease: 1.3.0
type: security
layout: cve
hidden: true
---
### Description
It is possible for a remote user to overflow a static buffer by sending an IM
containing a very large URL (greater than 8192 bytes) to the Gaim user. This is
not possible on all protocols, due to message length restrictions. Jabber are
SILC are known to be vulnerable.
### Mitigation
The URL parsing function was modified to not use a static buffer.