Commit graph

170 commits

Author SHA1 Message Date
Joe Marcus Clarke
ef8ce85600 Fix the remotely exploitable buffer overflows in the MSN protocol.
Submitted by:	nectar
Obtained from:	Sebastian Krahmer
2004-08-12 20:38:43 +00:00
Jacques Vidrine
13b1c529df The MSN component of gaim contains remotely exploitable buffer
overflows.
<URL: http://vuxml.freebsd.org/5b8f9a02-ec93-11d8-b913-000c41e2cdad.html >
2004-08-12 19:25:14 +00:00
Joe Marcus Clarke
1a32a03d68 Update to 0.81. For a list of what's changed, see
http://gaim.sourceforge.net/ChangeLog.

Submitted by:	Matthew Luckie <mjl@luckie.org.nz>
2004-08-08 21:36:53 +00:00
Joe Marcus Clarke
b872f8be85 Update to 0.80. For a list of what's changed, see
http://gaim.sourceforge.net/ChangeLog.

Submitted by:	Matthew Luckie <mjl@luckie.org.nz>
2004-07-20 05:50:19 +00:00
Joe Marcus Clarke
a5463711fe Update to 0.79. See http://gaim.sourceforge.net/ChangeLog for the usual list
of goodies.
2004-06-27 05:56:55 +00:00
Joe Marcus Clarke
72ea1de3cc Do not escape HTML messages in ICQ if the message beings with <HTML>. This
works around a bug with messages sent by the sim client where they would
be displayed as:

<HTML><BODY BGCOLOR="#FFFFFF">hello</BODY></HTML>

Submitted by:	ale
2004-06-09 06:55:48 +00:00
Joe Marcus Clarke
23f903a4a3 Add optional SILC (Secure Internet Live Conference) support to Gaim.
PR:		67483
Submitted by:	Evgueni V. Gavrilov <aquatique-ports@rambler.ru>
2004-06-02 17:52:38 +00:00
Joe Marcus Clarke
5a3e62b076 Update to 0.78. The list of changes can be found at:
http://gaim.sourceforge.net/ChangeLog
2004-05-30 22:35:48 +00:00
Joe Marcus Clarke
1c66f13280 Fix a potential crash when sending the MSN BYE command.
Submitted by:	Jeremy Johnston <jeremy@smart-serv.net>
Obtained from:	Gaim CVS
2004-05-12 03:23:38 +00:00
Joe Marcus Clarke
0051d74cb8 Fix the rich text copy/paste problem. Basically, text from any rich text
application (e.g. gaim itself, Mozilla, Galeon, etc.) would fail to paste
or paste incorrectly into Gaim.  This has been fixed, and has been committed
to Gaim CVS.
2004-05-04 22:11:53 +00:00
Joe Marcus Clarke
de4dc29cba Update the COMMENT and pkg-descr to reflect modern-day Gaim.
Pointed out by:	Gaim developers
2004-05-03 05:47:57 +00:00
Joe Marcus Clarke
b445cbfc28 Update to 0.77. For a list of all the goodies see:
http://gaim.sourceforge.net/ChangeLog

Submitted by:	Matthew Luckie <mjl@luckie.org.nz>
2004-04-28 17:32:05 +00:00
Jacques Vidrine
03d0a4a8f5 The last commit lost previously applied security fixes. Again.
Re-apply my fix.  Again.

Specifically, the GAIM developers have still not addressed the
``Yahoo Octal-Encoding Decoder'' issues.

http://www.vuxml.org/freebsd/6fd02439-5d70-11d8-80e3-0020ed76ef5a.html
http://security.e-matters.de/advisories/012004.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0005
2004-04-07 15:17:37 +00:00
Joe Marcus Clarke
7e249e103b Update to 0.76. For a list of what's new and exciting, see:
http://gaim.sourceforge.net/ChangeLog

Also, provide a better fix for quoted printable text. [1]

PR:		65110 [1]
Submitted by:	green [1]
2004-04-05 04:18:39 +00:00
Joe Marcus Clarke
3ee652d35f Fix gaim's name resolution on 64-bit platforms.
Submitted by:	Kenneth Culver <culverk@sweetdreamsracing.biz>
2004-03-25 17:38:45 +00:00
Joe Marcus Clarke
2655d09556 SIZEify
Submitted by:	trevor
2004-03-19 07:47:02 +00:00
Joe Marcus Clarke
5c2f7eb4df The Perl module was broken in gaim since perl.h defined STATIC which
broke the plug-in initialization.  To fix this, check for a namespace
friendly GAIM_STATIC_PRPL macro definition to decide if we need to build
modules statically.

Obtained from:	GAIM CVS
2004-02-27 20:21:58 +00:00
Jacques Vidrine
e4ef9cc2bd The last commit lost previously applied security fixes. Back it out,
and then re-fix the Yahoo! issue.

Approved by:	marcus
2004-02-09 18:09:08 +00:00
Joe Marcus Clarke
036c49626a Fix the recent connectivity problems with Yahoo!.
Submitted by:	Roman Shterenzon <roman@xpert.com>
Adapted from:	Gaim CVS
2004-02-08 05:46:30 +00:00
Joe Marcus Clarke
73f7c91b5d Bump PORTREVISION on all ports that depend on gettext to aid with upgrading.
(Part 1)
2004-02-04 05:10:27 +00:00
Jacques Vidrine
40334469cd Correct a regression introduced in the previous security fix that
could cause Gaim to go into a tight loop and ultimately crash on
receipt of a malformed Yahoo! Messenger packet.

Reported by:	Joseph Martin via Stefan Esser ("the other one, not ours")
2004-01-29 13:15:44 +00:00
Jacques Vidrine
5872ad0839 Patch almost a dozen vulnerabilities, see
<URL:http://security.e-matters.de/advisories/012004.txt>.

Some fixes were
Obtained from:	Gaim CVS, originally submitted by Stefan Esser
2004-01-26 13:06:02 +00:00
Jacques Vidrine
56256f5564 Fix a regression in the upgrade to gaim 0.75: sscanf() was called with
an unterminated buffer, resulting in a segfault depending upon the
environment e.g. locale settings.  If you are getting crashes when
attempting to sign onto Yahoo! messenger, this may be the issue.

This is being tracked at gaim.sf.net as request ID 876365.

Approved by:	marcus (maintainer)
2004-01-13 21:28:43 +00:00
Joe Marcus Clarke
4a18c8b0dc Revert last night's distinfo commit. They rerolled the distfile again, and
restored the previous distfile.
2004-01-11 18:47:29 +00:00
Joe Marcus Clarke
2cc2b9c5b7 Looks like 0.75 was respun. The differences are superficial. The NEWS file
changed (a lot of text was removed including a thank you to me :-( ).  Also,
the VERSION file was changed from 0.75 to 0.75cvs, the RPM spec file was
slightly altered to remove the COPYRIGHT file, and a lot of the translation
files had their dates changed.

Also, remove text talking about OpenSSL.  We no longer support OpenSSL in
gaim. [1]

Reported by:	bland [1]
2004-01-11 04:20:52 +00:00
Joe Marcus Clarke
72711ad66e Update to 0.75. 2004-01-10 19:19:00 +00:00
Joe Marcus Clarke
15fcaf4314 Re-enable NSS as the default SSL implementation. 2003-12-18 03:49:21 +00:00
Joe Marcus Clarke
5e7c256a95 Remove the OpenSSL plug-in. The gaim authors do not feel OpenSSL is
a system library, and thus not part of the GPL exemption.
2003-12-17 19:12:25 +00:00
Joe Marcus Clarke
e8c087b5d0 Update to 0.74.
---
Add a patch to fix a memory leak (PORTREVISION=1 for people that got the 0.74
update during the freeze). [1]

Submitted by:	Matthew Luckie <mjl@luckie.org.nz>
Obtained from:	http://web.ics.purdue.edu/~eblanton/gaim/gaim-0.75cvs-gaim_log_free.diff [1]
2003-12-04 06:49:23 +00:00
Joe Marcus Clarke
476480f856 Update to 0.73. The new OpenSSL patch was provided by
Matthew Luckie <mjl@luckie.org.nz>.
2003-11-22 09:56:28 +00:00
Joe Marcus Clarke
d430b2ef10 Update to 0.72.
OpenSSL patch by:	Matthew Luckie <mjl@luckie.org.nz>
2003-11-01 22:13:04 +00:00
Joe Marcus Clarke
67b18ab90c Don't be such a cruel master to my slaves.
PR:		58593
Submitted by:	Takahiro Morishita <morishita@skywing.org>
2003-11-01 00:47:00 +00:00
Joe Marcus Clarke
ce45c68a30 * Document two more options available in the Makefile
* Remove the Oscar IP address patch.  It does not appear to be needed
  anymore, and may actually cause breakage

Submitted by:	Matthew Luckie <mjl@luckie.org.nz>
2003-10-23 20:46:11 +00:00
Joe Marcus Clarke
9bb21391ee Add optional (default to ON) SSL support built on OpenSSL. All the other SSL
backends are still supported.

Submitted by:	Matthew Luckie <mjl@luckie.org.nz>
2003-10-21 06:12:29 +00:00
Joe Marcus Clarke
e4459075d6 Fix Perl installation.
Submitted by:	Pav Lucistnik <pav@oook.cz>
2003-10-13 21:30:41 +00:00
Joe Marcus Clarke
f9f42cfaaf *Sigh* let's try this again. Link all of gaim to ${PTHREAD_LIBS} to ensure
that the loaded plug-in modules can resolve all threading symbols.  This
should fix the problem with the MSN plug-in not loading on 4.x.
2003-10-13 04:42:36 +00:00
Joe Marcus Clarke
b312c51570 Fix a linking bug with NSS support. 2003-10-12 22:44:44 +00:00
Joe Marcus Clarke
6cf1a4f093 Enable NSS encryption support by default so that packages can be built with
MSN enabled.  NSS can still be disabled if so desired.

Suggested by:	Pav Lucistnik <pav@oook.cz>
2003-10-11 23:03:16 +00:00
Joe Marcus Clarke
63b5d4e7ce Warn the user that MSN will not work unless they specify either WITH_GNUTLS
or WITH_NSS (or both).

Suggested by:	Tuc <tuc@ttsg.com>
2003-10-10 21:27:52 +00:00
Joe Marcus Clarke
7ff57c1e2e Add a missing dependency on startup-notification. 2003-10-10 21:20:36 +00:00
Joe Marcus Clarke
382e9b638c * Update to 0.71 [1]
* Add optional Mozilla NSS support

Submitted by:	Matthew Luckie <mjl@luckie.org.nz> [1]
2003-10-10 17:33:31 +00:00
Joe Marcus Clarke
9ebeb2962e Do not make the Japanese character support the default since it crashes
Yahoo! chats that contain a '~' character.

Reported by:	Adam McLaurin <adam.mclaurin@gmx.net>
2003-10-08 02:32:40 +00:00
Alexander Nedotsukov
d4bb4bce45 Fix crash in IP address formatting code for buddy tooltip.
Reported by: Aleksey Sosnin <sam@macomnet.ru>
2003-10-02 07:21:32 +00:00
Joe Marcus Clarke
08b8a9fb73 Update to 0.70 which fixes the Yahoo! login problem.
Submitted by:	Andrew J Caines <A.J.Caines@halplant.com>
		Takahiro Morishita <morishita@skywing.org>
2003-09-29 16:57:18 +00:00
Joe Marcus Clarke
6d624d9479 * Add optional GnuTLS support
* Add optional Tcl support

PR:		57262
Submitted by:	mi (based on)
2003-09-26 20:24:27 +00:00
Joe Marcus Clarke
e964519196 Add Japanese character support.
PR:		57242
Submitted by:	Takahiro Morishita <morishita@skywing.org>
2003-09-26 16:58:59 +00:00
Joe Marcus Clarke
bc356a80fd Update to 0.69 which fixes, among other things, the recent Yahoo! problems.
Submitted by:	Eric Anderson <anderson@centtech.com> (based on)
2003-09-25 16:35:58 +00:00
Joe Marcus Clarke
a4a6de06f0 Add a missing @dirrm. 2003-09-03 01:17:06 +00:00
Joe Marcus Clarke
af9d08185d * Update to 0.68 [1]
* Nasty hack to allow Perl to work where its supported, and install in the
  default Perl prefix

Submitted by:	Matthew Luckie <mjl@luckie.org.nz> [1] (based on)
2003-09-03 01:13:36 +00:00
Joe Marcus Clarke
5878fb898f Fix sending pre-edit characters after hitting Enter. This mainly affects
CJK users.

Submitted by:	perky
Obtained from:	Gentoo Linux
2003-08-26 01:44:47 +00:00