--- a/ChangeLog Mon Oct 13 23:06:08 2014 -0700
+++ b/ChangeLog Mon Oct 13 23:47:37 2014 -0700
@@ -45,6 +45,11 @@
+ * Fix potential information leak where a malicious XMPP server and + possibly even a malicious remote user could create a carefully crafted + XMPP message that causes libpurple to send an XMPP message containing + arbitrary memory. (Discovered and fixed by Thijs Alkemade and Paul + Aurich) (CVE-2014-NNNN) * Fix Facebook XMPP roster quirks. (#15041, #15957)
--- a/libpurple/protocols/jabber/jutil.c Mon Oct 13 23:06:08 2014 -0700
+++ b/libpurple/protocols/jabber/jutil.c Mon Oct 13 23:47:37 2014 -0700
@@ -81,10 +81,10 @@
domain_len = slash - str;
resource_len = null - (slash + 1);
- domain_len = null - (str + 1);
+ domain_len = null - str; @@ -126,6 +126,8 @@
+ jid->domain = g_strndup(domain, domain_len); if (stringprep_nameprep(idn_buffer, sizeof(idn_buffer)) != STRINGPREP_OK) {