On Tue, Aug 14, 2012 at 06:14:59PM -0400, Greg Troxel wrote: > > Is there a CVE for the new issue? It seems that 3.2.1 also fixes > CVE-2012-3461, but has an additional patch.
There is not, as far as I know. > I've updated pkgsrc for the new libotr. Once it's had a few days, I'll > request that this be pulled up to the pkgsrc-2012Q2 branch. Cool, thanks! > NITS: > > When diffing the two tarballs, there are lots of spurious autotools > differences. That's unfortunate, but I think it's an artifact of > installed tools differing on the system used to make the tarball, or > over time. Over time, most likely. My Ubuntu changed to Lucid in the mean time. > NEWS is unmaintained in the tarball. There's new NEWS in 4.0.0. ;-) - Ian _______________________________________________ OTR-dev mailing list [email protected] http://lists.cypherpunks.ca/mailman/listinfo/otr-dev
